Teams management policies

Description

This playbook quickly identifies Microsoft Teams groups that currently have no members. 

It provides the group's name, confirms the member count is zero, indicates the type of access, and shows when the group was last modified and created.

It's a simple way to spot and clean up any unused Teams groups in your organization.

Remediation action

1. Execute the Action “Archive Teams group” or “Remove Teams group”

What you can configure

• Choose between two actions: “Archive Teams group” or “Remove Teams group”
• Schedule the recurrence of the remediation action
• Enable/disable the email alert if the workflow fails
• Schedule the recurrence of the remediation action

Description

This playbook provides a list of guest users in Microsoft Teams groups. 

It displays their principal name, display name, and confirms their guest status as true. 

Additionally, it shows the display name of the Microsoft 365 group they're part of, as well as the group's unique identifier (GUID). This helps you manage guest access within your Teams environment efficiently.
 

Description

This playbook leverages informations about Microsoft Teams groups that have been inactive for the last 180 days. 

It gets the name of each group, its unique identifier (GUID), and the date of the last activity.

This tool is useful for identifying and possibly cleaning up Teams groups that are no longer active or needed.

Remediation action

1. Send attestation to a specified recipient (optional)
2. Execute the Action “Archive Teams group” or “Remove Teams group”

What you can configure

• Change the recipient of the attestation to either the group owner, a custom address, or choose not to send the attestation
• Insert an additional message
• Set time-out days (min: 1 day – max: 180 days)
• Choose between two actions: “Archive Teams group” or “Remove Teams group”
• Enable/disable the email alert if the workflow fails
• Schedule the recurrence of the remediation action

Description

This playbook is set up to list all public Microsoft Teams groups. 

It shows the name of each group, the display name, and confirms that the access type is set to public. 

This tool is beneficial for reviewing and managing the visibility and accessibility of Teams groups within your organization.

Remediation action

1. Send attestation to the Group Owner or to a specified recipient (optional)
2. Execute the Action “Archive Teams group” or “Remove Teams group”

What you can configure

• Change the recipient of the attestation to either the group owner, a custom address, or choose not to send the attestation
• Insert an additional message
• Set time-out days (min: 1 day – max: 180 days)
• Choose between two actions: “Archive Teams group” or “Remove Teams group”
• Enable/disable the email alert if the workflow fails
• Schedule the recurrence of the remediation action

Description

This playbook is set up to identify SharePoint sites where files have been shared with external users. It includes the user principal name, the date of the last activity, and the licenses associated with the user. 

Additionally, it provides data on the number of active files, files synced, files shared internally, and files shared externally in the last 30 days, as well as the number of pages visited in the same time frame. 

This tool is vital for monitoring external sharing activities and maintaining control over the distribution of files outside the organization.

Remediation action

1. Send attestation to a specified recipient (optional)
2. Execute the action “Remove Teams member”

What you can configure

• Change the recipient of the attestation to either the group owner, a custom address, or choose not to send the attestation.
• Insert an additional message
• Set time-out days (min: 1 day – max: 180 days)
• Choose between two actions: “Archive Teams group” or “Remove Teams group”
• Enable/disable the email alert if the workflow fails
• Schedule the recurrence of the remediation action

Description

This playbook is focused on identifying Microsoft Teams groups that include guest users and are tagged with specific sensitivity labels. It lists the user principal name, display name, and confirms the presence of guest users. 

It also shows the display name and unique identifier (GUID) of the Microsoft 365 group, along with the applied sensitivity labels. 

This tool is useful for ensuring that guest access in Teams is compliant with the organization's data handling and security policies.

Remediation action

1. Send a communication to group's email owner or a specific recipient

What you can configure

• Change the recipient of the communication to either the group owner or a custom address
• Enable/disable the email alert if the workflow fails
• Schedule the recurrence of the remediation action

Description

This playbook identifies Microsoft Teams groups that currently have no assigned owners. It lists the name of each group, the display name, and the primary SMTP address associated with the group. 

It also verifies that the total number of owners is zero, indicating that these groups lack owner management. 

This tool is critical for ensuring that all Teams groups have responsible individuals assigned for proper governance and oversight.

Remediation action

1. Send a communication to group's email owner or a specific recipient

What you can configure

• Change the recipient of the communication to either the group's email or a custom address
• Enable/disable the email alert if the workflow fails
• Schedule the recurrence of the remediation action