At least one Conditional Access policy is configured to enforce sign-in frequency for non-corporate devices
Why This Matters
Non-corporate devices lack the security controls and management that IT typically applies to company-owned hardware. Without enforced sign-in frequency, an unmanaged device that is compromised or lost could allow an attacker prolonged access to your tenant. Requiring frequent reauthentication reduces the window of risk and limits lateral movement from untrusted endpoints.
What Aether365 Checks
Aether365 verifies that at least one Conditional Access policy in your Microsoft 365 tenant requires a sign-in frequency for non-corporate devices. This check appears in the Aether365 dashboard under the microsoft-365 service category with severity Medium.