No—reviewing agent risk activities does not require blocking the agent. IRM is designed to allow organizations to detect and investigate risk first, with actions like blocking applied only if DLP or Conditional Access policies dictate (typically for higher-risk scenarios).