Ensure app permission policies are configured
Why This Matters
Allowing users to install third-party or unverified apps in Microsoft Teams introduces a vector for malicious software to enter your environment. Uncontrolled app installations can lead to data exfiltration, compliance violations, or lateral movement by attackers. By restricting app permissions to only approved classes, you reduce the attack surface and maintain control over the applications your users can access.
What Aether365 Checks
This check verifies that app permission policies in Microsoft Teams are configured to block third-party and custom apps by default. It appears in your Aether365 dashboard under the Microsoft 365 checks section.