Apr 21 2022 08:28 AM
Apr 21 2022 08:28 AM
I've been monitoring our secure score pretty hard lately and noticed "9 points regressed for Create Safe Links policies for email messages". I went to our Safe Links policy and sure enough, the two recommended items were already configured. I restarted the policy, and i'm waiting for the "real-time" secure score to update, but it is not.
How do you guys go about resolving issues like this?
Apr 22 2022 06:51 AM
Same thing here. I'm trying to improve score and created the necessary policies which made me gain some points. Suddenly, one day, I regressed 9 points, next day gained 9 points again, only to lose them again the following day. No changes were made to the organisation or policies.
Safe Links Policy states that 100% of my users are affected by this policy. So they are all covered.
Anyone have a clue?
Apr 23 2022 03:12 AM - edited Apr 26 2022 12:32 AM
Same issue here. Regressed 9 points for the Safe Links suddenly on Apr. 20.
Double checked the policy (which of course was not even changed) and all seems according to recommendation.
Apr 25 2022 05:42 AM
Apr 25 2022 06:54 AM
Apr 26 2022 01:15 AM - edited Apr 28 2022 01:47 AM
@SeniorBraddah The test I started yesterday (see my other comment) has been completed. I created a new policy with the correct settings and assigned it to a single user. Secure Score now mentions both policies with the correct number of users and states that both policies are configured less securely than recommended.
So it seems the detection is incorrect.
Apr 26 2022 08:34 AM
Thanks for your input in this thread. Our Safe links check looks like it corrected itself on the 24th and gained us 9 points, hooray! I am still having a few other checks not reporting correctly, but I have been checking the policy is in place, and marking the status as "resolved through alternate mitigation".
Fair warning though, you can only mark the status for App and Identity actions.
Apr 28 2022 03:52 AM - edited Apr 29 2022 05:21 AM
@SeniorBraddah marking as "resolved through alternate mitigation" means that even if you delete the Safe Links policy the points will still be granted. Not an ideal solution if you really want to track the score.
Hopefully Microsoft will fix this issue soon as it becomes annoying.
May 01 2022 09:48 PM