Apr 14 2020 09:53 AM
I have an all staff account DDG that was created for sending to all users in my organization. It was restricted to certain users and has worked flawless for years. Recently I noticed that the DDG is no longer restricted. Anyone can send to the group despite being locked down.
Anyone else experiencing this issue?
Apr 14 2020 10:20 AM
@Shivam_balroop It would seem unlikely that this could occur without an admin specifically changing the setting. Do you have access to Audit logs in the Security and Compliance Center? Try running an audit log search to see if anyone has updated the group. If you have Azure AD Premium P2, you can also check audit activity under Identity Governance.
Hope this helps.
Peter
Apr 14 2020 10:23 AM
Thanks for your input. However, no changes were made on the settings. I checked the logs myself.
Apr 14 2020 10:24 AM
@Shivam_balroop Hmm, interesting. Hard to see how that could happen.
Apr 14 2020 10:39 AM
@Shivam_balroop So just to be clear, does the group still show as restricted when you check the settings, but is acting as not restricted when in use?
Apr 14 2020 10:42 AM
That is correct in the ECP the DDG is locked to specific user who are authorized to send to it. However, when tested outside of those authorized users, apparently anyone can send.
Apr 14 2020 10:52 AM
@Shivam_balroop Guessing that you have Azure AD Premium P1 licensing?
Also, have you checked the settings via PowerShell by using Get-UnifiedGroup -Identity "Groupname" | Format-List
Should show who messages are accepted from in the output