Aether365

English

Deutsch
Français
Español
Nederlands
Türkçe
Italiano
Ελληνικά
Polski
Български
Čeština
Dansk
Eesti
Suomi
Magyar
Lietuvių
Latviešu
Norsk bokmål
Português
Română
Slovenčina
Slovenščina
Svenska
Українська

English

Deutsch
Français
Español
Nederlands
Türkçe
Italiano
Ελληνικά
Polski
Български
Čeština
Dansk
Eesti
Suomi
Magyar
Lietuvių
Latviešu
Norsk bokmål
Português
Română
Slovenčina
Slovenščina
Svenska
Українська

Appearance

Introduction

Aether365 is a cloud-based security scanning platform for Microsoft 365 tenants. It runs automated checks against industry-standard compliance frameworks and analyzes your tenant configuration for risky or misconfigured settings - giving you a clear security score and actionable remediation steps.

What Aether365 does

Aether365 connects to your Microsoft 365 tenant using a read-only service principal. Once connected, it runs three types of scans:

  • Compliance scans test your tenant against established security benchmarks: CIS Microsoft 365 Foundations Benchmark, EIDSCA (Entra ID Security Config Analyzer), and CISA SCuBA. Each check returns a pass, fail, or skip result along with the relevant control ID.
  • Exposure scans analyze your tenant configuration for risky settings across Entra ID, Exchange Online, SharePoint, Teams, Defender, Intune, and general M365 settings. Results are grouped by service and assigned a severity level.
  • Full scans run both compliance and exposure scans simultaneously in a single operation.

Scans run automatically on a recurring schedule based on your plan. You receive an email report when each scan completes. You can also trigger scans manually from the dashboard at any time.

Prerequisites

Before connecting a tenant, make sure you have:

  • An Aether365 account - sign up at app.aether365.io
  • Microsoft 365 Global Administrator access to the tenant you want to connect, required to complete the admin consent step
  • An active Microsoft 365 or Microsoft Entra ID tenant

Read-only access

Aether365 never modifies your tenant. All permissions requested are read-only. Your data stays in your tenant - Aether365 only reads configuration and policy information to evaluate it against security benchmarks.

How scanning works

When a scan runs, Aether365 authenticates to your Microsoft 365 tenant using its own registered multi-tenant application and the permissions you granted during the consent step. It reads configuration data across your tenant, evaluates each check, and writes the results to your dashboard.

Scans typically take 10 to 15 minutes. You receive an email when the scan completes. Historical results are retained according to your plan.

No agents, scripts, or software need to be installed in your tenant.

What you will see

After your first scan, the Aether365 dashboard shows:

  • A large security posture score with a visual stacked bar of passed, failed, and skipped checks
  • Stat cards for total checks, passed, and failed counts - each with a trend sparkline showing change over time
  • A top failing list highlighting your most critical failed controls
  • A framework breakdown donut chart (compliance) or service breakdown tiles (exposure) showing where weaknesses are concentrated
  • A severity breakdown donut chart highlighting critical, high, medium, and low findings
  • Your plan info showing scan frequency, tenant limit, and data retention
  • A recent activity table listing your latest scans with status, type, pass rate, and duration

Each failed check includes remediation guidance explaining how to fix the issue in the Microsoft 365 admin center or via PowerShell.

Was this page helpful?

© 2026 Aether365. All rights reserved.