Devices with critical credentials should be protected by TPM.

Why This Matters

If devices storing critical credentials lack Trusted Platform Module (TPM) protection, those credentials are vulnerable to theft or extraction by attackers who gain physical or remote access. A TPM provides hardware-level security by binding credentials to the device, making them inaccessible even if the operating system is compromised. Without this protection, your organization risks credential theft, lateral movement, and privilege escalation.

What Aether365 Checks

Aether365 scans your Microsoft 365 tenant to identify devices with critical credentials that are not protected by a TPM. This check appears in the Aether365 dashboard under the microsoft-365 security checks section.