IAM misconfigurations

Azure subscription contains Active Directory guest users

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Azure Active Directory (Azure AD) B2B collaboration is a feature within External Identities that lets you invite guest users to collaborate with your organization. Guest users are set to a limited permission level by default in Azure AD. However, a guest user permission can be set to a higher level than default (as same as member users). Thus, guest user can gain unrestricted access to various services.

  • Recommended Mitigation

    {CloudAccount} Azure subscription contains guest users. Delete all unwanted guest users.

Need help?

Get a free Security Risk Assessment. Start today

Orca Security Demo Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.