Microsoft Teams: Permission and Privilege level of Apps and Agents

🚨 The Signal: Teams admin center now shows risk ratings for app/agent permissions and overall privilege levels. This helps security teams quickly assess and approve or deny app access to organizational data, improving data protection.

The Impact

Security teams and Teams administrators are affected, reducing the risk of over-privileged applications accessing sensitive data.

• Security Teams: Reduced risk of unauthorized data access by Teams apps.
• Teams Administrators: Improved visibility into app permissions and associated risks.
• Data Owners: Enhanced protection for sensitive organizational data within Teams.

The Action

1. Review existing Teams app and agent permissions using the new risk ratings.
2. Establish or refine internal policies for approving Teams apps based on privilege levels.
3. Regularly audit approved Teams apps for adherence to least privilege principles.

Domain: Teams · Impact: medium · Workload: Teams · Essential Eight: Restrict Administrative Privileges · ISM: ISM-0445, ISM-1175, ISM-1380, ISM-1507, ISM-1508, ISM-1509, ISM-1647, ISM-1648, ISM-1650, ISM-1686, ISM-1688, ISM-1689, ISM-1883, ISM-1897, ISM-1898