{"version":1,"pages":[{"id":"omCipfPFbeSVNIbHRQ1b","title":"Welcome to Tminus365 Docs","pathname":"/","siteSpaceId":"sitesp_SHJxX","emoji":"1f680","description":""},{"id":"twCeZje2vxS1mikxFn15","title":"Azure AD (Entra)","pathname":"/security/azure-ad-entra","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"}]},{"id":"2n5cgaSh2ooCGgtIWp9I","title":"MFA Shall Be Required for All Users","pathname":"/security/azure-ad-entra/mfa-shall-be-required-for-all-users","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"CT4ofR8Q5M3pV6WUheH7","title":"MFA is enforced on accounts with Highly Privileged Roles","pathname":"/security/azure-ad-entra/mfa-is-enforced-on-accounts-with-highly-privileged-roles","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"dDBklVst2SSrGJUZl2jm","title":"MFA is enforced for Azure Management","pathname":"/security/azure-ad-entra/mfa-is-enforced-for-azure-management","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"KappzqOg2InzAzpYSsr7","title":"MFA registration and usage shall be periodically reviewed","pathname":"/security/azure-ad-entra/mfa-registration-and-usage-shall-be-periodically-reviewed","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"Wxb9gNy5x1ul7pu3bG3f","title":"Legacy Authentication shall be blocked","pathname":"/security/azure-ad-entra/legacy-authentication-shall-be-blocked","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"v1SRf8zuLrrEsyhaKc4z","title":"High Risk Users Shall Be Blocked","pathname":"/security/azure-ad-entra/high-risk-users-shall-be-blocked","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"5MKZNlTPvccZMZu4BCSX","title":"High Risk Sign-Ins Shall Be Blocked","pathname":"/security/azure-ad-entra/high-risk-sign-ins-shall-be-blocked","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"RxiBBrxgEne7FqMx2Wt7","title":"Browser Sessions shall not be persistent for privileged users","pathname":"/security/azure-ad-entra/browser-sessions-shall-not-be-persistent-for-privileged-users","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"hjchHK7w73NPbEAjTzjB","title":"MFA shall be required to enroll devices to Azure AD","pathname":"/security/azure-ad-entra/mfa-shall-be-required-to-enroll-devices-to-azure-ad","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"EjkpVbpG1dtJXGaZegva","title":"Managed Devices shall be required for authentication","pathname":"/security/azure-ad-entra/managed-devices-shall-be-required-for-authentication","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"fsy7n5iFvteiO3SNKB02","title":"Guest User Access Shall be restricted","pathname":"/security/azure-ad-entra/guest-user-access-shall-be-restricted","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"rqH3k7sTMNRZlwr3ZhYg","title":"The number of users with highly privileged roles shall be limited","pathname":"/security/azure-ad-entra/the-number-of-users-with-highly-privileged-roles-shall-be-limited","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"DNoj8CYGRUiolpMMNdA6","title":"Users assigned highly privileged roles shall not have permanent permissions","pathname":"/security/azure-ad-entra/users-assigned-highly-privileged-roles-shall-not-have-permanent-permissions","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"vDBl37r0B8QouEWxm1NM","title":"Activation of privileged roles should be monitored and require approval","pathname":"/security/azure-ad-entra/activation-of-privileged-roles-should-be-monitored-and-require-approval","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"CGHlmogISRo8z45QxW6S","title":"Highly privileged accounts shall be cloud-only","pathname":"/security/azure-ad-entra/highly-privileged-accounts-shall-be-cloud-only","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"7C1PimuWTXfz68nfn7bH","title":"Highly privileged role assignments shall be periodically reviewed","pathname":"/security/azure-ad-entra/highly-privileged-role-assignments-shall-be-periodically-reviewed","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"K3VwNwl68vZCUxnI2CwV","title":"Passwords shall not expire","pathname":"/security/azure-ad-entra/passwords-shall-not-expire","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"wDBKpPscDdcRZPN9scD9","title":"Azure AD Logs shall be collected","pathname":"/security/azure-ad-entra/azure-ad-logs-shall-be-collected","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"JjraZws3NsyO8RU8AlSa","title":"Only Admins shall be allowed to register 3rd party applications","pathname":"/security/azure-ad-entra/only-admins-shall-be-allowed-to-register-3rd-party-applications","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"alsrTy7nVSwR4XK8G5g0","title":"Non-admin users shall be prevented from providing consent to 3rd party applications","pathname":"/security/azure-ad-entra/non-admin-users-shall-be-prevented-from-providing-consent-to-3rd-party-applications","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"KEK9oGxiqGcvgB22jrLd","title":"Authorized Applications shall be configured for Single Sign-On","pathname":"/security/azure-ad-entra/authorized-applications-shall-be-configured-for-single-sign-on","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"a7dXkdboWmJA66uTbnAW","title":"Inactive accounts shall be blocked or deleted","pathname":"/security/azure-ad-entra/inactive-accounts-shall-be-blocked-or-deleted","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Azure AD (Entra)"}]},{"id":"iPj5Txb0GpdqkoYK4QwH","title":"Teams","pathname":"/security/teams","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"}]},{"id":"jVaq8yI2PL26fIkHKa1t","title":"Private Channels shall be utilized to restrict access to sensitive information","pathname":"/security/teams/private-channels-shall-be-utilized-to-restrict-access-to-sensitive-information","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"4OaBEGsGYVIYKA6FMwjI","title":"External Participants SHOULD NOT Be Enabled to Request Control of Shared Desktops or Windows in Meet","pathname":"/security/teams/external-participants-should-not-be-enabled-to-request-control-of-shared-desktops-or-windows-in-meet","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"wYgTSXvMJ3q5HfUUvja4","title":"Anonymous Users SHALL NOT Be Enabled to Start Meetings","pathname":"/security/teams/anonymous-users-shall-not-be-enabled-to-start-meetings","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"LSV92PUpfmuIU0OBAwWA","title":"Automatic Admittance to Meetings SHOULD Be Restricted","pathname":"/security/teams/automatic-admittance-to-meetings-should-be-restricted","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"sFPYVsX8g7hLzcaKZR6Q","title":"External User Access SHALL Be Restricted","pathname":"/security/teams/external-user-access-shall-be-restricted","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"dmb5kwgMlyBBst1b02X2","title":"Unmanaged User Access SHALL Be Restricted","pathname":"/security/teams/unmanaged-user-access-shall-be-restricted","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"tucr8oU7qOcdkRTkZ1yI","title":"Contact with Skype Users SHALL Be Blocked","pathname":"/security/teams/contact-with-skype-users-shall-be-blocked","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"58WCR2frCNnF7fvdurFY","title":"Teams Email Integration SHALL Be Disabled","pathname":"/security/teams/teams-email-integration-shall-be-disabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"U493drQivfvUPv0dSy63","title":"Only Approved Apps SHOULD Be Installed","pathname":"/security/teams/only-approved-apps-should-be-installed","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"3N13EPewXbkLEfLr54eY","title":"File Sharing and File Storage Options shall be blocked","pathname":"/security/teams/file-sharing-and-file-storage-options-shall-be-blocked","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"H3XFEV0dfXUPnHPGXHNW","title":"Only the Meeting Organizer SHOULD Be Able to Record Live Events","pathname":"/security/teams/only-the-meeting-organizer-should-be-able-to-record-live-events","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"RQ1TFsQk1l1nU2Lxhd8U","title":"Attachments SHOULD Be Scanned for Malware","pathname":"/security/teams/attachments-should-be-scanned-for-malware","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"kn4yabpxfJ2Iyl52VByw","title":"Link Protection SHOULD Be Enabled","pathname":"/security/teams/link-protection-should-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"DghallMVUlDGuudilG3d","title":"Restrict Users who can Create Teams Channels","pathname":"/security/teams/restrict-users-who-can-create-teams-channels","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"e7zlglDN9fFs5AGPgl5k","title":"Teams Channels shall have an expiration policy","pathname":"/security/teams/teams-channels-shall-have-an-expiration-policy","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"9BMRTUdtMpTeFAT4QWiL","title":"Data Loss Prevention Solutions SHALL Be Enabled","pathname":"/security/teams/data-loss-prevention-solutions-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Teams"}]},{"id":"mdb2ZRBCstWF7KATRMpN","title":"Exchange","pathname":"/security/exchange","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"}]},{"id":"EgCFMRQ9IPoF7pLiG4ZY","title":"Automatic Forwarding to External Domains SHALL Be Disabled","pathname":"/security/exchange/automatic-forwarding-to-external-domains-shall-be-disabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"Xl1lhiWY092DMxv6TYmR","title":"Sender Policy Framework SHALL Be Enabled","pathname":"/security/exchange/sender-policy-framework-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"ajEFsSphE7LlWi3kswfz","title":"DomainKeys Identified Mail SHOULD Be Enabled","pathname":"/security/exchange/domainkeys-identified-mail-should-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"JGRMVzlwcrsSq71eWGnF","title":"Domain-Based Message Authentication, Reporting, and Conformance SHALL Be Enabled","pathname":"/security/exchange/domain-based-message-authentication-reporting-and-conformance-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"QHLaEoBSQejh2tHIknBu","title":"Enable Email Encryption","pathname":"/security/exchange/enable-email-encryption","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"9fgFk47xxRDp2L0nY0g7","title":"Simple Mail Transfer Protocol Authentication SHALL Be Disabled","pathname":"/security/exchange/simple-mail-transfer-protocol-authentication-shall-be-disabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"YdWupUsqbXqS9zgutkTg","title":"Calendar and Contact Sharing SHALL Be Restricted","pathname":"/security/exchange/calendar-and-contact-sharing-shall-be-restricted","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"mYt2tFQzDKbaTpzjc1Ra","title":"External Sender Warnings SHALL Be Implemented","pathname":"/security/exchange/external-sender-warnings-shall-be-implemented","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"w7nYAvhRTcMCMFcpOq6t","title":"Data Loss Prevention Solutions SHALL Be Enabled","pathname":"/security/exchange/data-loss-prevention-solutions-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"P1a9TFB3deuwYLcyoQ2N","title":"Emails SHALL Be Filtered by Attachment File Type","pathname":"/security/exchange/emails-shall-be-filtered-by-attachment-file-type","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"SARu4rplmaHqPs1NZfna","title":"Zero-Hour Auto Purge for Malware SHOULD Be Enabled","pathname":"/security/exchange/zero-hour-auto-purge-for-malware-should-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"FW2GQfhlOWh1ifqx82Bw","title":"Phishing Protections SHOULD Be Enabled","pathname":"/security/exchange/phishing-protections-should-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"JagDD78bpTYmfXFu2rSR","title":"Inbound Anti-Spam Protections SHALL Be Enabled","pathname":"/security/exchange/inbound-anti-spam-protections-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"NxckARhFslOHlY96vGsO","title":"Safe Link Policies SHOULD Be Enabled","pathname":"/security/exchange/safe-link-policies-should-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"imp25lNo75mliJrGgZEL","title":"Safe Attachments SHALL Be Enabled","pathname":"/security/exchange/safe-attachments-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"2MwYCvO5Chy78U1lLgRv","title":"IP Allow Lists SHOULD NOT be Implemented","pathname":"/security/exchange/ip-allow-lists-should-not-be-implemented","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"TriaYSazhJF0zewXaygF","title":"Mailbox Auditing SHALL Be Enabled","pathname":"/security/exchange/mailbox-auditing-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"vHKKQMSA9uvVyrArehSm","title":"Alerts SHALL Be Enabled","pathname":"/security/exchange/alerts-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"ya4PxJqsFCTPHf77YIpt","title":"Audit Logging SHALL Be Enabled","pathname":"/security/exchange/audit-logging-shall-be-enabled","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"nmpCGjXh8ID2wDVoP4Xv","title":"Enhanced Filtering Shall be configured if a 3rd party email filtering tool is being used","pathname":"/security/exchange/enhanced-filtering-shall-be-configured-if-a-3rd-party-email-filtering-tool-is-being-used","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Exchange"}]},{"id":"GYqoSxYcQaoaqXGiQPjL","title":"SharePoint","pathname":"/security/sharepoint","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"}]},{"id":"VeJNhf7q6yHjiQCJl4is","title":"File and Folder Links Default Sharing Settings SHALL Be Set to Specific People","pathname":"/security/sharepoint/file-and-folder-links-default-sharing-settings-shall-be-set-to-specific-people","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"SharePoint"}]},{"id":"KdBh5TrRALfXWdflOHyK","title":"External Sharing SHOULD be Set to “New and Existing Guests”","pathname":"/security/sharepoint/external-sharing-should-be-set-to-new-and-existing-guests","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"SharePoint"}]},{"id":"s1C6mPQUXx3yoCojNtru","title":"Sensitive SharePoint Sites SHOULD Adjust Their Default Sharing Settings","pathname":"/security/sharepoint/sensitive-sharepoint-sites-should-adjust-their-default-sharing-settings","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"SharePoint"}]},{"id":"STJUkxOhjtapiqF40GIX","title":"Expiration Times for Guest Access to a Site SHOULD Be Determined by specific needs","pathname":"/security/sharepoint/expiration-times-for-guest-access-to-a-site-should-be-determined-by-specific-needs","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"SharePoint"}]},{"id":"Ow02HGPP64mRGtsbA3NS","title":"Users SHALL Be Prevented from Running Custom Scripts","pathname":"/security/sharepoint/users-shall-be-prevented-from-running-custom-scripts","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"SharePoint"}]},{"id":"NLHCvrqyb83OVKWFVFBa","title":"OneDrive","pathname":"/security/onedrive","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"}]},{"id":"slWC50FhZm6pZaxO7m67","title":"Anyone Links SHOULD Be Turned Off","pathname":"/security/onedrive/anyone-links-should-be-turned-off","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"OneDrive"}]},{"id":"0xIQ8l8FzEWFDn9gDI9k","title":"Expiration Date SHOULD Be Set for Anyone Links","pathname":"/security/onedrive/expiration-date-should-be-set-for-anyone-links","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"OneDrive"}]},{"id":"TRmamnDw4nhyQ2KRFVOu","title":"Link Permissions SHOULD Be Set to Enabled Anyone Links to View","pathname":"/security/onedrive/link-permissions-should-be-set-to-enabled-anyone-links-to-view","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"OneDrive"}]},{"id":"zIAj5lBCmwo8Wb4uKjWI","title":"Windows and MacOS devices should be prevented from syncing the OneDrive Client on personal devices","pathname":"/security/onedrive/windows-and-macos-devices-should-be-prevented-from-syncing-the-onedrive-client-on-personal-devices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"OneDrive"}]},{"id":"Vxvpxvx9Fiq4hfJoCGXF","title":"Legacy Authentication SHALL Be Blocked","pathname":"/security/onedrive/legacy-authentication-shall-be-blocked","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"OneDrive"}]},{"id":"Q7IzXBRjT1aa3UTeuDHT","title":"Intune","pathname":"/security/intune","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"}]},{"id":"YRQyfLAaA9KqxElAd2UQ","title":"Personal Devices should be restricted from enrolling into the MDM solution","pathname":"/security/intune/personal-devices-should-be-restricted-from-enrolling-into-the-mdm-solution","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"k2Cs1N3AKc2Yej4IlhQ5","title":"Devices shall be deleted that haven’t checked in for over 30 days","pathname":"/security/intune/devices-shall-be-deleted-that-havent-checked-in-for-over-30-days","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"FLCLA861dSfsIkDyYAmj","title":"Devices compliance policies shall be configured for every supported device platform","pathname":"/security/intune/devices-compliance-policies-shall-be-configured-for-every-supported-device-platform","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"GBtEWU6cdwMOCOFLFXEF","title":"Noncompliant devices shall be blocked from accessing corporate resources","pathname":"/security/intune/noncompliant-devices-shall-be-blocked-from-accessing-corporate-resources","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"oGiioywF4tM4zeKxYcro","title":"MFA Shall be required for Intune Enrollment","pathname":"/security/intune/mfa-shall-be-required-for-intune-enrollment","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"gsrCBZ2hlYd0FZ0S2qwS","title":"Security Baselines should be configured for Windows Devices","pathname":"/security/intune/security-baselines-should-be-configured-for-windows-devices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"dawXRK10R6UmnsOk5RHU","title":"Windows Update Rings shall be configured for Windows Devices","pathname":"/security/intune/windows-update-rings-shall-be-configured-for-windows-devices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"fyCZkYb3tfJ3wmWb40r2","title":"Update Policies shall be configured for Apple Devices","pathname":"/security/intune/update-policies-shall-be-configured-for-apple-devices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"YUUlv6lhKrwitQf70cjO","title":"App Protection policies should be created for mobile devices","pathname":"/security/intune/app-protection-policies-should-be-created-for-mobile-devices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"WWJrc90GZAUC7fp8aepY","title":"Mobile devices shall only be able to access corporate data through approved client apps","pathname":"/security/intune/mobile-devices-shall-only-be-able-to-access-corporate-data-through-approved-client-apps","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"VmdvmVZuWfJZCT8xlRmL","title":"Lockout screen and password settings shall be configured for each device","pathname":"/security/intune/lockout-screen-and-password-settings-shall-be-configured-for-each-device","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"kMFMf6XAzdNwzWiSZby3","title":"Encryption shall be required on all devices","pathname":"/security/intune/encryption-shall-be-required-on-all-devices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"fVV3z5iqHDwQKDIU0V0e","title":"Windows Hello for Business should be configured where applicable","pathname":"/security/intune/windows-hello-for-business-should-be-configured-where-applicable","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"HtQxTHzGGTGRDtQKTpb8","title":"Authorized Applications should be deployed to managed devices","pathname":"/security/intune/authorized-applications-should-be-deployed-to-managed-devices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"Odwk0NZBR00Quldr51Gh","title":"Device Use Shall be restricted until required applications are installed","pathname":"/security/intune/device-use-shall-be-restricted-until-required-applications-are-installed","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"lT5fRActv4XRoP7HNBj1","title":"Devices and Applications shall be wiped when a user leaves the organization or reports a lost/stolen","pathname":"/security/intune/devices-and-applications-shall-be-wiped-when-a-user-leaves-the-organization-or-reports-a-lost-stolen","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Security","emoji":"1f510"},{"label":"Intune"}]},{"id":"sjGNU3nUjK9U0AecKtUx","title":"GDAP","pathname":"/configurations/gdap","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"}]},{"id":"79XLptSpRFFEvVoCl3h5","title":"My Automations Break with GDAP: The Fix!","pathname":"/configurations/gdap/my-automations-break-with-gdap-the-fix","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"},{"label":"GDAP"}]},{"id":"D7x38RsJFVnCsrtG4oUE","title":"Vendor Integrations Break with GDAP: The Fix!","pathname":"/configurations/gdap/vendor-integrations-break-with-gdap-the-fix","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"},{"label":"GDAP"}]},{"id":"0TukFg9IcRjAwmYYspRd","title":"Adding GDAP Relationships","pathname":"/configurations/gdap/adding-gdap-relationships","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"},{"label":"GDAP"}]},{"id":"TbeyPGXOaemNsF0ViPQN","title":"Leveraging PIM with GDAP","pathname":"/configurations/gdap/leveraging-pim-with-gdap","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"},{"label":"GDAP"}]},{"id":"P93K8l7HpTdGDnBCYMWV","title":"GDAP Migration with Microsoft 365 Lighthouse","pathname":"/configurations/gdap/gdap-migration-with-microsoft-365-lighthouse","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"},{"label":"GDAP"}]},{"id":"dn86aKxl9UzYEgCZGw92","title":"GoDaddy","pathname":"/configurations/godaddy","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"}]},{"id":"waE2vuzENWcKvzBu4deE","title":"Defederating GoDaddy 365","pathname":"/configurations/godaddy/defederating-godaddy-365","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Configurations","emoji":"2699"},{"label":"GoDaddy"}]},{"id":"xC3gslB5vWeLE8lpdos6","title":"CIS Mapped to M365","pathname":"/cis-controls/cis-mapped-to-m365","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"CIS Controls","emoji":"1f6e1"}]},{"id":"gRvxX6Mn4NPr7EVpQJOM","title":"Pax8","pathname":"/vendor-integrations/pax8","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"}]},{"id":"QrIBGlOwRTQ0Q6rgu4B6","title":"Automating NCE subscription renewal notices","pathname":"/vendor-integrations/pax8/automating-nce-subscription-renewal-notices","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"Pax8"}]},{"id":"VV7aSU8ASeoF07miSSWQ","title":"Leveraging the Pax8 API in Power Automate","pathname":"/vendor-integrations/pax8/leveraging-the-pax8-api-in-power-automate","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"Pax8"}]},{"id":"onlnZ70iomhWZKHQJbBi","title":"IT Glue","pathname":"/vendor-integrations/it-glue","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"}]},{"id":"8toNtOs6fvwnwR69J16k","title":"Automating Intune Device Documentation in IT Glue","pathname":"/vendor-integrations/it-glue/automating-intune-device-documentation-in-it-glue","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"IT Glue"}]},{"id":"8Xxm3o0iFjvHZQmjx10W","title":"Automating Microsoft Documentation","pathname":"/vendor-integrations/it-glue/automating-microsoft-documentation","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"IT Glue"}]},{"id":"GxPqv9zy8MuqfDfB0PCJ","title":"Huntress","pathname":"/vendor-integrations/huntress","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"}]},{"id":"TAkibu88ZIrHnB4X3sH4","title":"Leveraging the Huntress API in Power Automate","pathname":"/vendor-integrations/huntress/leveraging-the-huntress-api-in-power-automate","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"Huntress"}]},{"id":"GwT2l2AxKWQ8tbQxmEn8","title":"Syncro","pathname":"/vendor-integrations/syncro","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"}]},{"id":"3j9rIc1t9RZZyDsq2YzL","title":"Automating Microsoft 365 Documentation in Syncro","pathname":"/vendor-integrations/syncro/automating-microsoft-365-documentation-in-syncro","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"Syncro"}]},{"id":"UIcmc655UyrZsgjM1itp","title":"Custom Connector in Power Automate","pathname":"/vendor-integrations/syncro/custom-connector-in-power-automate","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"Syncro"}]},{"id":"Ib3tcPRCuFept3BxNPSa","title":"Creating Tickets for Azure AD Risky Users","pathname":"/vendor-integrations/syncro/creating-tickets-for-azure-ad-risky-users","siteSpaceId":"sitesp_SHJxX","description":"","breadcrumbs":[{"label":"Vendor Integrations","emoji":"1f50c"},{"label":"Syncro"}]}]}