This week, we are releasing SenservaPro Release v2.0.16 to General Availability. This is one that we’ve spent a lot of time working on. Below is a breakdown of the updates included.

Admins – Cloud Only

This is a check on the users identified as Administrators through our analysis. Your Microsoft 365 Admins should be cloud-only accounts. This is a control included on the Users Scan.

Cloud-Only Admin accounts

Conditional Access Evaluation

This is a check on the Conditional Access Evaluation policy in Azure. This policy will enforce status changes to user accounts as soon as possible to user sessions. These events include password changes and account disabling, among others. This is a control included on the Compliance Scan.

Continuous Access Evaluation policy

Custom AD Roles

This is a check on the presence of Custom AD Roles in the Microsoft 365 tenant. Custom AD Roles can have Administrator-level permissions but exist outside a standard Conditional Access Policy. This is a control included on the Compliance Scan.

Custom Active Directory roles

Guest Views of Directory Objects

This is a check on the View that tenant Guests have of Directory Objects, like Groups and Roles. Guests do not need an in-depth view on the architecture of your Microsoft 365 instance. This is a control included on the Compliance Scan.

Guest View on Directory Objects

Azure CIS 1.2.0

Our scan against the Azure CIS IAM Security Benchmark has been updated to version 1.2.0 of the benchmark. This is included on the Compliance Scan.

Wrap-Up

We’ve also included wording updates in controls where appropriate. We hope you find SenservaPro Release v2.0.16 to be an effective tool on your security journey.

As always, questions and feedback can be sent to support@senserva.com