Microsoft Teams: Introducing new IT administrator policies to control Town hall Event Access

🚨 The Signal: Microsoft Teams now allows administrators to control who can attend Town Hall events. This closes a previous security gap where all Town Halls were publicly accessible, enhancing control over sensitive internal communications and preventing unauthorized access.

The Impact

Security teams and Teams administrators are affected, gaining new capabilities to prevent unauthorized access to internal Town Hall events.

• Security Teams: Reduced risk of sensitive information exposure in Town Halls.
• Teams Administrators: New policy controls require configuration to secure events.
• Event Organizers: Must now consider audience policies when scheduling Town Halls.
• Internal Users: Access to Town Halls will now be explicitly controlled by policy.

The Action

1. Review existing Teams Town Hall usage and identify events requiring restricted access.
2. Navigate to the Microsoft Teams admin center > Meetings > Meeting policies.
3. Create or modify a meeting policy to define 'Who can attend' Town Hall events (e.g., 'Only people in my organization', 'Specific users or groups').
4. Assign the new or updated policy to relevant users or groups who create Town Halls.
5. Communicate new Town Hall access policies to event organizers and users.

Domain: Teams · Impact: high · Workload: Teams · Essential Eight: Restrict Administrative Privileges · ISM: ISM-0445, ISM-1175, ISM-1380, ISM-1507, ISM-1508, ISM-1509, ISM-1647, ISM-1648, ISM-1650, ISM-1686, ISM-1688, ISM-1689, ISM-1883, ISM-1897, ISM-1898