Ensure external user invitations are restricted
Why This Matters
Unrestricted external user invitations through Power BI can expose your organization to unauthorized data access and potential data leakage. By controlling who can invite external guests, you enforce least privilege and reduce the risk of malicious insiders or compromised accounts bringing in untrusted collaborators. This also strengthens your governance over guest user lifecycle management in Microsoft Entra ID.
What Aether365 Checks
Aether365 verifies that the Power BI tenant setting "Users can invite guest users to collaborate through item sharing and permissions" is either disabled or restricted to a specific security group. This check appears in your Aether365 dashboard under the Microsoft 365 security checks section.