The 25 Microsoft Teams security checks Black Cat runs
Black Cat SSPM evaluates 25 security policies against your Microsoft Teams configuration on every scan, classifies each finding by risk, and provides remediation steps. Below is the full list, grouped by category.
access control
Review Teams guest members and remove those who no longer require access
Reduce Teams team owners to 2-3 by demoting unnecessary owners to member role
Disable anonymous meeting join in Teams meeting policies to prevent unauthorized attendees
Restrict Teams meeting lobby bypass to organization members or organizer only
Restrict Teams guest access permissions by disabling calling, screen sharing, and video for guests
Restrict channel deletion to team owners to prevent accidental or malicious data loss
Restrict app installation to team owners to maintain control over third-party integrations
Disable guest channel deletion to prevent external users from removing team channels
Disable guest channel creation and updates to limit external user impact on team structure
Add at least one additional owner to the team to ensure administrative redundancy
Change the auto-admit setting to require lobby screening for external and anonymous participants
Disable communication with personal Microsoft Teams consumer accounts to limit external exposure
compliance
Enable cloud recording in Teams meeting policies and configure retention settings
configuration
Review archived Teams and delete them if no longer needed to reduce attack surface
Disable Skype for Business interop if not required to reduce external communication surface
data exposure
Change Teams team visibility from Public to Private to restrict unauthorized membership
Remove or restrict external sharing on Teams channels to approved organizations only
Disable or restrict external messaging capabilities in Teams messaging policies
Restrict Teams external federation to an approved domain allow list instead of all external domains
governance
Add a meaningful description to Teams teams that lack one to improve governance visibility
Enable channel moderation and assign moderators to large Teams teams without governance controls
Enable channel moderation and configure posting restrictions for unmoderated Teams channels
Restrict message editing and deletion in Teams messaging policies to preserve audit trails
third party risk
Block or submit unapproved third-party Teams apps for organizational review and approval
Disable custom app sideloading in Teams app setup policies to prevent unauthorized apps