Ensure devices without a compliance policy are marked 'not compliant'

Why This Matters

If devices without a compliance policy are not marked as non-compliant, they can access corporate resources without meeting security baselines. This creates a blind spot where unmanaged or improperly configured devices bypass conditional access controls. For IT administrators, this risk can lead to data exposure from devices that lack encryption, patching, or antivirus protection.

What Aether365 Checks

Aether365 verifies that your Microsoft 365 tenant enforces a default rule marking any device without an assigned compliance policy as non-compliant. This check appears in your Aether365 dashboard under the Microsoft 365 services section, specifically within the CIS benchmark category.