Ensure shareable links are restricted
Why This Matters
Unrestricted shareable links in Power BI can expose sensitive data to unauthorized users within your organization, potentially leading to information leakage. When a user creates a link set to "People in your organization," anyone inside the tenant can access the shared report or dashboard without additional permission checks. Restricting this capability helps enforce data access controls and reduces the risk of accidental data exposure, especially in departments like Human Resources or Finance that handle confidential information.
What Aether365 Checks
This check verifies that the "Allow shareable links to grant access to everyone in your organization" setting in the Power BI tenant admin portal is either Disabled or Enabled only for specific security groups. It appears in the Aether365 dashboard under the microsoft-365 checks section for the CIS Microsoft 365 Foundations Benchmark.