Description
- Type: CUSTOMER
- Severity: WARNING
- Protection against: HACKING
- FIX Available: YES
This Customer Check verifies if there are outdated guest invitations present in the Microsoft environment.
Why this check?
When a guest is invited to your tenant, that invitation remains until the guest has accepted or declined it. However, if the guest does not respond at all, the invitation remains open.
This gives attackers the opportunity to take over such an invitation and thus maintain access to the environment. Therefore, it is wise to remove old, unaccepted invitations. We apply a period of 30 days after which an invitation is considered 'old'.
What are the possible outcomes of the check?
This check has two possible outcomes. In Attic, this is expressed as follows:
- Okay: there are no old invitations present in the tenant
- Warning: one or more old invitations have been found in the tenant, action from the customer is required
How should this be followed up?
If the check results in an output of Warning, we advise removing the old invitations.
A Fix is available for this check, which we will offer via Attic.
Comments
0 comments
Please sign in to leave a comment.