About Security Score of SharePoint?

Israt Jahan Tulin 20 Reputation points
2024-12-23T06:51:43.9666667+00:00

Hi. I was redirected to ask the questions here regarding SharePoint. There are few Security Score relative to SharePoint. I have few questions, please help me clarify.

  1. Security Score Recommendation: Ensure modern authentication for SharePoint applications is required

Question:

a. What office app version won’t work after enabling the modern authentication for SharePoint? Current infrastructure is Windows 10/11 and Office App is 2016 and up.

b. Which type of modern authentication methods are being refereed here to authenticate for SharePoint?

  1. Security Score Recommendation: Block OneDrive for Business sync from unmanaged devices.

Question:

a. For the Block OneDrive business sync from unmanaged devices, is the implementation of Intune required?

b. When implementing, it requires GUID. Which GUID is it referring to? Where can I find this GUID for Cloud? We have hybrid infrastructure.

c. Does the policy implemented on SharePoint will impact on OneDrive as well?

  1. Security Score Recommendation: Restrict anonymous users from joining meetings

Question:

a. Which type of users are referred as anonymous users?

b. By default, the option is on. What happens if I turn this option off?

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
7,510 questions
SharePoint Development
SharePoint Development
SharePoint: A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.Development: The process of researching, productizing, and refining new or existing technologies.
3,154 questions
0 comments No comments
{count} votes

Accepted answer
  1. Xyza Xue_MSFT 26,961 Reputation points Microsoft Vendor
    2024-12-23T08:24:51.4866667+00:00

    Hi @Israt Jahan Tulin ,

    For your questions:

    1.Security Score Recommendation: Ensure modern authentication for SharePoint applications is required

    a.What office app version won’t work after enabling the modern authentication for SharePoint? Current infrastructure is Windows 10/11 and Office App is 2016 and up.

    Legacy client apps, such as Office 2010 and Office for Mac 2011, do not support modern authentication and can only be used with basic authentication.Office 2016 and up, which you are currently using, will work with modern authentication enabled.

    b.Which type of modern authentication methods are being refereed here to authenticate for SharePoint?

    This option is recommended for organizations that use modern authentication as the identity management approach, having multi-factor authentication (MFA) enabled for their user accounts.

    2.Security Score Recommendation: Block OneDrive for Business sync from unmanaged devices.

    a. For the Block OneDrive business sync from unmanaged devices, is the implementation of Intune required?

    Yes, implementing Intune is recommended for managing and enforcing policies on devices, including blocking OneDrive sync from unmanaged devices. Intune helps ensure that only compliant and managed devices can sync with OneDrive.

    b. When implementing, it requires GUID. Which GUID is it referring to? Where can I find this GUID for Cloud? We have hybrid infrastructure.

    The GUID referred to here is the Azure Active Directory (AAD) device ID. This ID is used to identify and manage devices in your organization. You can find this GUID in the Azure portal under the device's properties.

    c. Does the policy implemented on SharePoint will impact on OneDrive as well?

    Yes, policies implemented on SharePoint, such as blocking sync from unmanaged devices, will also impact OneDrive for Business.

    3.Security Score Recommendation: Restrict anonymous users from joining meetings

    a. Which type of users are referred as anonymous users?

    Anonymous users are those who do not have an Azure Active Directory (AAD) login or any other authenticated identity. They join meetings without signing in, typically by clicking on a meeting link.

    b. By default, the option is on. What happens if I turn this option off?

    If you turn off the option to allow anonymous users to join meetings, only authenticated users will be able to join. This means that participants will need to sign in with their AAD or other authenticated credentials before joining the meeting. This enhances security by ensuring that only verified users can participate5.


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.