[THEME] Guests
The Guests theme ensures that external users who access your Microsoft 365 environment are properly controlled and cannot gain excessive permissions.
What does Attic do?
Attic monitors guest access policies to maintain control over who can be invited, what they can access, and how they can share data.
The checks in this theme cover:
- Guest authorization policies are properly configured
- Resharing by guests is disabled (preventing guests from sharing files with additional external parties)
- Guest invitation restrictions are in place
- Guest invitations are bound to specific email addresses
Why is this important?
Guest accounts provide external collaborators with access to your organization's data. Without proper controls, guests could access sensitive information, share files with unauthorized parties, or retain access long after the collaboration has ended. Tight guest policies ensure external collaboration remains secure and controlled.
Checks in this theme
| ID | Check |
|---|---|
| CHK-1151 | Access Guest Users |
| CHK-1522 | Resharing by Guests |
| CHK-1152 | Guest user invites |
| CHK-1524 | Sharepoint Invites |