From ec6fcd37f05892d089a15702a44f2334f81a63ac Mon Sep 17 00:00:00 2001 From: Carlos Polop Date: Thu, 6 Feb 2025 00:34:19 +0100 Subject: [PATCH] impr --- .../azure-security/az-basic-information/README.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/src/pentesting-cloud/azure-security/az-basic-information/README.md b/src/pentesting-cloud/azure-security/az-basic-information/README.md index 21f39b3eb..6aa5adc72 100644 --- a/src/pentesting-cloud/azure-security/az-basic-information/README.md +++ b/src/pentesting-cloud/azure-security/az-basic-information/README.md @@ -103,11 +103,11 @@ You can check them in [https://learn.microsoft.com/en-us/entra/fundamentals/user - Restrict users from recovering the BitLocker key(s) for their owned devices: Default No (check in Device Settings) - Read other users: Default **Yes** (via Microsoft Graph) - **Guests** - - **Guest user access restrictions** - - **Guest users have the same access as members** grants all member user permissions to guest users by default. - - **Guest users have limited access to properties and memberships of directory objects (default)** restricts guest access to only their own user profile by default. Access to other users and group information is no longer allowed. + - **Guest user access restrictions** options: + - **Guest users have the same access as members**. + - **Guest users have limited access to properties and memberships of directory objects (default)**. This restricts guest access to only their own user profile by default. Access to other users and group information is no longer allowed. - **Guest user access is restricted to properties and memberships of their own directory objects** is the most restrictive one. - - **Guests can invite** + - **Guests can invite** options: - **Anyone in the organization can invite guest users including guests and non-admins (most inclusive) - Default** - **Member users and users assigned to specific admin roles can invite guest users including guests with member permissions** - **Only users assigned to specific admin roles can invite guest users**