LinkedIn Contact Synchronization [CHK-1046]
This customer check verifies if the synchronization of the address book with LinkedIn is blocked.
Rationale
By default, employees can synchronize the entire Outlook contact list with LinkedIn. This can lead to a data breach as it involves sharing contact data with LinkedIn, potentially without the contacts' prior permission. Blocking synchronization is advised.
Fix
An automated fix is available through Attic.
To fix it yourself:
- Connect to Exchange Online via Connect-ExchangeOnline.
- Run the following command:
text
$policies=Get-OwaMailboxPolicy
foreach($policy in $policies){
Set-OwaMailboxPolicy -Identity $policy.Identity -LinkedInEnabled=$False
}
Impact
The check has two possible outcomes:
- Okay: LinkedIn synchronization is disabled
- Warning: LinkedIn synchronization is not yet disabled
If the output is Warning, disabling LinkedIn synchronization is advised.
More Information
This measure aligns with the Center for Internet Security (CIS) Microsoft 365 Foundations Benchmark:
- CIS M365 4.16 - (L2) Ensure that LinkedIn contact synchronization is disabled