Skip to main content

Default Settings - Consent Policy Settings - Block user consent for risky apps

Defines whether user consent will be blocked when a risky request is detected

NameBlockUserConsentForRiskyApps
ControlDefault Settings - Consent Policy Settings
DescriptionDefine the consent configurations that can be used to customize the tenant-wide and object-specific restrictions and allowed behavior
SeverityHigh

How to fix

Details of configuration item

RecommendationConfigure risk-based step-up consent - Microsoft Entra ID - Microsoft Learn
Configurationsettings
Setting`values
Recommended Value'true'
Default Valuetrue
Graph API DocsdirectorySetting resource type - Microsoft Graph beta - Microsoft Learn
Graph ExplorerOpen in Graph Explorer

MITRE ATT&CK

TacticTechniqueMitigation
TA0001 - Initial Access - Initial AccessT1566.002 - Phishing: Spearphishing Link
T1078 - Valid Accounts
M1017 - User Training
M1018 - User Account Management
M1047 - Audit