External Users access.

Why This Matters

Allowing external users access to your Azure DevOps organization without proper oversight introduces significant security and compliance risks. Malicious actors or unauthorized third parties could gain entry, potentially leading to data exfiltration, privilege escalation, or lateral movement within connected Microsoft 365 services. IT administrators should actively monitor and control external guest access to maintain a secure environment and adhere to least-privilege principles.

What Aether365 Checks

Aether365 verifies whether external users have been granted any form of access within your Azure DevOps organization. This check appears in the Aether365 dashboard under the microsoft-365 checks section, flagging when external identities are present without clear justification.