rules/findings/m365/microsoft_teams/meetings/ms-teams-only-org-people-can-bypass-lobby.json
|
{
"args": [ ], "provider": "Microsoft365", "serviceType": "Microsoft Teams", "serviceName": "Microsoft 365", "displayName": "Ensure only people in my org can bypass the lobby", "description": "This policy setting controls who can join a meeting directly and who must wait in the lobby until they\u0027re admitted by an organizer, co-organizer, or presenter of the meeting.", "rationale": "For meetings that could contain sensitive information, it is best to allow the meeting organizer to vet anyone not directly sent an invite before admitting them to the meeting. This will also prevent the anonymous user from using the meeting link to have meetings at unscheduled times.", "impact": "Individuals who are not part of the organization will have to wait in the lobby until they\u0027re admitted by an organizer, co-organizer, or presenter of the meeting. Any individual who dials into the meeting regardless of status will also have to wait in the lobby. This includes internal users who are considered unauthenticated when dialing in.", "remediation": { "text": "\r\n\t\t\t###### To remediate using the UI: \r\n\t\t\t1. Navigate to Microsoft Teams admin center https://admin.teams.microsoft.com. \r\n\t\t\t2. Click to expand Meetings select Meeting policies. \r\n\t\t\t3. Click Global (Org-wide default). \r\n\t\t\t4. Under meeting join \u0026 lobby set Who can bypass the lobby to People in my org. \r\n\t", "code": { "powerShell": null, "iac": null, "terraform": null, "other": null } }, "recommendation": null, "references": [ "https://learn.microsoft.com/en-US/microsoftteams/who-can-bypass-meeting-lobby?WT.mc_id=TeamsAdminCenterCSH", "https://learn.microsoft.com/en-us/powershell/module/skype/set-csteamsmeetingpolicy?view=skype-ps" ], "compliance": [ { "name": "CIS Microsoft 365 Foundations Benchmark", "version": "7.0.0", "reference": "8.5.3", "profile": [ "E3 Level 1", "E5 Level 1" ] } ], "level": "medium", "tags": [ ], "rule": { "path": "o365_teams_skype_meeting_policies", "subPath": null, "selectCondition": { }, "query": [ { "filter": [ { "conditions": [ [ "Identity", "eq", "Global" ], [ "AutoAdmittedUsers", "ne", "EveryoneInCompanyExcludingGuests" ] ], "operator": "and" } ] } ], "shouldExist": null, "returnObject": null, "removeIfNotExists": null }, "output": { "html": { "data": { "properties": { "Identity": "Identity", "Description": "Description", "AllowAnonymousUsersToJoinMeeting": "Allow Anonymous Users To Join Meeting", "AutoAdmittedUsers": "Auto Admitted Users" }, "expandObject": null }, "table": "default", "decorate": [ { "itemName": "Allow Anonymous Users To Join Meeting", "itemValue": "enabled", "className": "badge badge-danger badge-xl" }, { "itemName": "Auto Admitted Users", "itemValue": "EveryoneInCompany", "className": "badge badge-danger badge-xl" } ], "emphasis": [ ], "actions": { "objectData": { "properties": [ "*" ], "expandObject": null, "limit": null }, "showGoToButton": "True", "showModalButton": "True", "directLink": null } }, "text": { "data": { "properties": { }, "expandObject": null }, "status": { "keyName": [ ], "message": "Ensure only people in my org can bypass the lobby", "defaultMessage": null }, "properties": { "resourceName": "Description", "resourceId": "ConfigId", "resourceType": "TeamsMeetingPolicy" }, "onlyStatus": false } }, "idSuffix": "teams_bypass_lobby_not_configured", "notes": [ ], "categories": [ ], "immutable_properties": [ "Description", "ConfigId", "Key.SchemaId.XName.name" ], "id": "microsoft365_2175" } |