(Tenant) Restrict Personal Access Token lifespan.

Why This Matters

Personal Access Tokens (PATs) with excessively long lifespans increase the risk of credential theft and abuse. An attacker who gains access to a long-lived token can maintain unauthorized access to your Azure DevOps resources for extended periods, potentially causing significant data breaches or service disruption.

What Aether365 Checks

Aether365 verifies that your Azure DevOps tenant enforces a maximum lifespan policy for Personal Access Tokens. This check appears in the Aether365 dashboard under the microsoft-365 category.