EXT-05HighEnhanced Security

Cross-Tenant Access Policy Review

Guest & External Access control for Microsoft 365 and Entra ID

Why This Control Matters

Permissive cross-tenant defaults allow any external organization to collaborate with your tenant. Restricting defaults and configuring partner-specific policies ensures only approved organizations can access your resources.

Expected State

When this control is compliant, your tenant should meet these criteria:

1Default cross-tenant access policy is not overly permissive
2Partner-specific configurations exist for known collaborators
3Inbound and outbound B2B access is explicitly controlled

Enforcement

Default Mode

Advisory

Alerts on deviations but does not make changes

Auto-Remediation

Available

Can restrict cross-tenant access defaults automatically

Ready to implement this control?

TrueConfig continuously monitors your Microsoft 365 tenant for compliance with this and 50+ other security controls.