📄️ TEAMS.TC.5001 - Dropbox integration should be disabled
Ensures Dropbox integration is disabled in Teams to prevent data exfiltration
📄️ TEAMS.TC.5002 - Box integration should be disabled
Ensures Box integration is disabled in Teams to prevent data exfiltration
📄️ TEAMS.TC.5003 - Google Drive integration should be disabled
Ensures Google Drive integration is disabled in Teams to prevent data exfiltration
📄️ TEAMS.TC.5004 - Citrix files integration should be disabled
Ensures Citrix files integration is disabled in Teams to prevent data exfiltration
📄️ TEAMS.TC.5005 - Egnyte integration should be disabled
Ensures Egnyte integration is disabled in Teams to prevent data exfiltration
📄️ TEAMS.TC.5006 - Anonymous users should not join meetings
Ensures anonymous users are restricted from joining Teams meetings
📄️ TEAMS.TC.5007 - Anonymous users should not start meetings
Ensures anonymous users are restricted from starting Teams meetings
📄️ TEAMS.TC.5008 - Anonymous users should not dial out
Ensures anonymous users are restricted from dialing out to prevent toll fraud
📄️ TEAMS.TC.5009 - App sideloading should be disabled
Ensures app sideloading is disabled to enforce security review processes
📄️ TEAMS.TC.5010 - Auto-admitted users should be restricted
Ensures auto-admitted users setting is properly restricted to prevent unauthorized access
📄️ TEAMS.TC.5011 - Broadcast Transcription Settings
Reviews broadcast transcription settings for accessibility and compliance requirements
📄️ TEAMS.TC.5012 - Call Forwarding to Phone
Checks if call forwarding to PSTN is configured appropriately to prevent toll fraud
📄️ TEAMS.TC.5013 - Data Loss Prevention for Teams
Provides guidance on configuring DLP policies to protect sensitive data in Teams
📄️ TEAMS.TC.5014 - Channel Meeting Scheduling
Checks if channel meeting scheduling is appropriately configured for governance
📄️ TEAMS.TC.5015 - Broadcast Recording Settings
Reviews broadcast recording settings based on compliance and data retention requirements
📄️ TEAMS.TC.5016 - Chat Data Protection
Checks if chat settings protect sensitive data from leaking to external services
📄️ TEAMS.TC.5017 - Broadcast Attendee Visibility
Ensures broadcast attendee visibility is configured to protect attendee privacy
📄️ TEAMS.TC.5018 - Chat Permission Roles
Checks if chat permission roles align with collaboration and security requirements
📄️ TEAMS.TC.5019 - Email into channel should be disabled
Ensures email into channel is disabled to prevent bypassing email security controls
📄️ TEAMS.TC.5020 - External collaboration should be configured with security controls
Reviews external collaboration settings including federation, guests, and public users
📄️ TEAMS.TC.5021 - External non-trusted meeting chat should be disabled
Ensures external non-trusted meeting chat is disabled to prevent data exfiltration and phishing attacks
📄️ TEAMS.TC.5022 - External participants should not be allowed to give or request control
Prevents external participants from controlling shared screens to protect against security risks
📄️ TEAMS.TC.5023 - Federation should be restricted to specific allowed domains
Ensures Teams federation is restricted to trusted domains instead of open federation
📄️ TEAMS.TC.5024 - Giphy content rating should be set to Strict if enabled
Ensures Giphy content rating is set to Strict to prevent inappropriate content
📄️ TEAMS.TC.5025 - Guest IP video settings should be reviewed
Reviews guest IP video permissions based on organizational requirements
📄️ TEAMS.TC.5026 - Guest meeting chat settings should be reviewed
Reviews guest meeting chat permissions based on collaboration and security requirements
📄️ TEAMS.TC.5027 - Guests should not be able to start ad-hoc meetings
Ensures guests cannot use Meet Now to prevent unauthorized meetings
📄️ TEAMS.TC.5028 - Guest screen sharing should be limited to prevent data leakage
Ensures guest screen sharing is restricted to Disabled or SingleApplication mode
📄️ TEAMS.TC.5029 - Guests should not control transcription
Ensures guests cannot control meeting transcription to prevent unauthorized data capture
📄️ TEAMS.TC.5030 - URL previews should be disabled
Ensures URL previews are disabled to prevent information leakage and phishing exposure
📄️ TEAMS.TC.5031 - Security end user reporting should be enabled
Ensures users can report security concerns directly from Teams
📄️ TEAMS.TC.5032 - Immersive Reader accessibility feature review
Review of Immersive Reader accessibility feature status
📄️ TEAMS.TC.5033 - Meeting recording security review
Reviews security settings for meeting recordings including storage location and transcription
📄️ TEAMS.TC.5034 - Meet Now should be disabled for anonymous users
Ensures anonymous users cannot start ad-hoc meetings
📄️ TEAMS.TC.5035 - Memes should be disabled
Ensures memes are disabled to prevent inappropriate content sharing
📄️ TEAMS.TC.5036 - Skype for Business user notifications review
Review of notifications sent to Skype for Business users during Teams migration
📄️ TEAMS.TC.5037 - Outlook Add-In integration review
Review of Microsoft Teams Meeting Add-In for Outlook status
📄️ TEAMS.TC.5038 - Private meeting scheduling review
Review of private meeting scheduling capabilities
📄️ TEAMS.TC.5039 - PSTN users should not bypass lobby
Ensures PSTN callers must wait in lobby for admission
📄️ TEAMS.TC.5040 - Recording storage should stay within region
Ensures meeting recordings are stored within the organization's geographic region for compliance
📄️ TEAMS.TC.5041 - Chat message deletion review
Review of owner permissions to delete messages in group chats
📄️ TEAMS.TC.5042 - Scoped people search review
Review of directory search scope restrictions in Teams
📄️ TEAMS.TC.5043 - Teams security posture comprehensive review
Comprehensive review of multiple Teams security settings including anonymous meetings, third-party storage, and external access
📄️ TEAMS.TC.5044 - Stickers should be disabled
Ensures stickers are disabled to prevent inappropriate content sharing
📄️ TEAMS.TC.5045 - Message translation review for sensitive data
Review of message translation feature considering sensitive data exposure