Ensure external content sharing is restricted.
sharepoint_external_sharing_restricted
Ensure that external sharing settings in SharePoint are restricted to 'New and existing guests' or a less permissive level to enforce authentication and control over shared content.
Risk
If external sharing is not restricted, unauthorized users may gain access to sensitive information, increasing the risk of data breaches and compliance violations.
Run this check with Prowler CLI
prowler m365 --checks sharepoint_external_sharing_restricted
Remediation
Set-SPOTenant -SharingCapability ExternalUserSharingOnly
1. Navigate to SharePoint admin center https://admin.microsoft.com/sharepoint. 2. Click to expand Policies > Sharing. 3. Locate the External sharing section. 4. Under SharePoint, move the slider bar to 'New and existing guests' or a less permissive level.
Restrict external sharing in SharePoint to 'New and existing guests' or a more restrictive setting to enhance security.
Source Code
Resource Type
Sharepoint Settings