Stale accounts are not assigned to privileged roles
Why This Matters
Stale accounts that retain privileged role assignments present a significant security risk. If a user account is no longer actively used but still has elevated permissions, it becomes an attractive target for attackers. Unused privileged accounts violate the principle of least privilege and can lead to unauthorized access if compromised.
What Aether365 Checks
Aether365 verifies that Privileged Identity Management (PIM) alerts are configured to detect users with stale sign-ins who still hold privileged roles. This check appears in the Aether365 dashboard under the microsoft-365 service category.