Email to Teams channel addresses is disabled
teams_email_sending_to_channel_disabled
Microsoft 365 Teams tenant configuration for channel email addresses determines if channels can receive messages via email. This evaluates the allow_email_into_channel setting.
Risk
Allowing email into channels lets outsiders inject content, links, and attachments into Teams. Leaked addresses enable phishing, malware delivery, and spam, undermining confidentiality and integrity, and adding noise that affects availability; posts may bypass user-authenticated context.
prowler m365 --checks teams_email_sending_to_channel_disabled
Recommendation
Disable email into channels by default. If needed, limit senders to approved domains, apply anti-phishing/malware filtering, enforce DLP and retention on inbound mail, monitor postings, rotate channel addresses, and prefer authenticated connectors-applying least privilege and defense in depth.
Remediation
Set-CsTeamsClientConfiguration -Identity Global -AllowEmailIntoChannel $false
- Sign in to the Microsoft Teams admin center: https://admin.teams.microsoft.com
- Go to Teams > Teams settings
- Under Email integration, set "Users can send emails to a channel email address" to Off
- Click Save
Source Code
Resource Type
NotDefined