(Tenant) Enable automatic revocation of leaked Personal Access Tokens.

Why This Matters

Personal Access Tokens (PATs) are a common vector for unauthorized access if leaked. Without automatic revocation, a compromised PAT can be used for an extended period, increasing the risk of data exfiltration, privilege escalation, or lateral movement within your Microsoft 365 tenant. Enabling automatic revocation limits the window of exposure and strengthens your identity security posture.

What Aether365 Checks

Aether365 verifies that automatic revocation of leaked Personal Access Tokens is enabled at the tenant level. This check appears in the Aether365 dashboard under the microsoft-365 service checks.