What's wrong? Please be specific.
MS.AAD.5.4v1 notes Group owners SHALL NOT be allowed to consent to applications. An FCEB agency during a technical exchange meeting has noted that this option is no longer supported in the admin center and thus the policy needs to be updated to reflect the change.
This includes removal of the current policy and checks and investigation into the new "Team owner consent settings"
To reproduce
Steps to reproduce the behavior:
Run Scubagear and receive a "FAIL" for MS.AAD.5.4v1
Return to the admin center and view the notice that "Group owener consent settings have been removed and replaced with team owner consent settings". Screenshot attached below
Expected behavior
What did you expect to happen that didn't?
PASS / FAIL test results based upon the previously set setting.
🐛 Summary
What's wrong? Please be specific. MS.AAD.5.4v1 notes Group owners SHALL NOT be allowed to consent to applications. An FCEB agency during a technical exchange meeting has noted that this option is no longer supported in the admin center and thus the policy needs to be updated to reflect the change.
This includes removal of the current policy and checks and investigation into the new "Team owner consent settings"
To reproduce
Steps to reproduce the behavior:
Expected behavior
What did you expect to happen that didn't?
PASS / FAIL test results based upon the previously set setting.