Eligible role assignments on Control Plane are in use by administrators
Why This Matters
Privileged role assignments that remain unused pose a significant security risk to your Microsoft 365 tenant. Attackers who compromise an inactive administrator account could exploit these dormant permissions to gain elevated access, making it critical to regularly review and remove unnecessary privileged role assignments.
What Aether365 Checks
This check verifies that Privileged Identity Management (PIM) alerts exist for unused privileged roles in your tenant. It appears in the Aether365 dashboard under the microsoft-365 checks section as AE.1030.