Forum Discussion

Frane190's avatar
Frane190
Copper Contributor
Mar 09, 2021

Scheduled access reviews for guests - require Azure AD P2 or not?

On Ignite 2021 Microsoft has announced: 

Streamline the experience of managing guest users
Last month, we turned on guest access by default to simplify an inclusive meeting experience. This month, we are adding scheduled access reviews for guests across all Teams and Groups by default. The system will automatically schedule periodic guest access reviews across Teams, delivering better identity security hygiene.

 

 It is nowhere mentioned is this guest access review that requires Azure AD P2 license for reviewers https://docs.microsoft.com/en-us/azure/active-directory/governance/create-access-review or this is something completely new that will not requires P2 license?

7 Replies

  • Sam0215's avatar
    Sam0215
    Copper Contributor

    It's an old discussion, but i've started working with access reviews quite recently. When I go to myaccess.microsoft.com, I see around 300 access reviews under 'Groups and Apps'. Do I need to go through them individually or is there a faster way?Frane190 

    • Frane190's avatar
      Frane190
      Copper Contributor

      Sam0215 unforutnately no. that's the way microsoft does it things 🙂 

       

      you might look at https://www.syskit.com/products/point/features/office-365-access-management/ for more automation about guest users review, they can o it in bulk, and even remove automagically if they are not active or entitled. 

    • kmktnn's avatar
      kmktnn
      Iron Contributor

      ChristianBergstrom You must be right, it is this option (in red) that is part of the Azure AD access reviews. Azure AD Premium P2 is necessary in that case.

       

      All the confusion is caused because it is presented as 'by default' in the documentation.

       

      Microsoft Teams: Simple Periodic review for guest users Roadmap Feature ID: 70674 April 2021
      Microsoft Teams: Scheduled access reviews for Guest users Roadmap Feature ID: 70778 April 2021
      Azure Active Directory: B2B guest access reviews for Microsoft Teams and Microsoft 365 groups Feature ID: 72252 April 2021

       

      Also on this page https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-february-and-march-2021/ba-p/2245944

      Simple Periodic review for guest users
      We have added scheduled access reviews for guests across all Teams and Groups by default. The system automatically schedules periodic guest access reviews across Teams, delivering better identity security hygiene.

       

      And here https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-microsoft-ignite-2021/ba-p/2118226

      Streamline the experience of managing guest users
      Last month, we turned on guest access by default to simplify an inclusive meeting experience. This month, we are adding scheduled access reviews for guests across all Teams and Groups by default. The system will automatically schedule periodic guest access reviews across Teams, delivering better identity security hygiene.

  • You’re looking for this? https://docs.microsoft.com/en-us/azure/active-directory/governance/access-reviews-overview#license-requirements
    • Frane190's avatar
      Frane190
      Copper Contributor
      so it will require Azure AD P2? because I saw on some blogs it won't require so I am not sure is this the same feature or not.
      • ChristianBergstrom's avatar
        ChristianBergstrom
        Silver Contributor
        Here’s another article linking to the above as well https://docs.microsoft.com/en-us/azure/active-directory/governance/manage-guest-access-with-access-reviews#prerequisites

        I’m not a ”license person” but it seems as if that’s the case.

Resources