Privileged Azure Entra user is a guest account

azure.compute
이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Description

Guest accounts are users external to your organization that have been invited into your Azure tenant. They open an additional attack vector within your tenant. Guest accounts should be reviewed to ensure their level of access is the minimum required for their role and that they are removed when no longer required.

Remediation

  1. Review the access level of all guest accounts in your tenant.
  2. Remove any guest accounts that do not require access to your tenant.
  3. Ensure that the access level of guest accounts is the minimum required for their role.