Ensure that only organizationally managed/approved public groups exist

Why This Matters

Unmanaged public groups pose a significant security risk because they can be created by any user, potentially leading to data leaks or unauthorized access to sensitive information. Without organizational oversight, these groups may contain outdated or inaccurate membership, making it difficult to control who accesses shared resources. By ensuring all public groups are approved and managed, administrators can reduce the attack surface and maintain compliance with internal security policies.

What Aether365 Checks

Aether365 verifies that no unapproved, unmanaged public groups exist within your Microsoft 365 tenant. This check appears in your Aether365 dashboard under the Microsoft 365 security checks section and flags any public groups not explicitly authorized by your organization.