Ensure users installing Outlook add-ins is not allowed
Why This Matters
Allowing users to install their own Outlook add-ins creates a significant security risk. Malicious or poorly vetted add-ins can access your organization’s email data, potentially leading to data exfiltration or phishing attacks. By restricting add-in installation to administrators only, you maintain tighter control over your Exchange Online environment and reduce the attack surface.
What Aether365 Checks
This Aether365 check verifies that the Exchange Online role assignment policy does not permit users to install or manage custom, marketplace, or read-write mailbox apps in Outlook. It appears in your Aether365 dashboard under the microsoft-365 service checks.