Combine Sharepoint with OneDrive and address feedback from review period #393

tkol2022 · 2023-06-20T23:34:38Z

This PR contains a single new combined and enhanced baseline document for Sharepoint and OneDrive. It also includes enhancements to the policies that came from the document review period.

💭 Motivation and context

We adjudicated all the comments from document reviewers
Due to the fact that the Sharepoint and OneDrive baselines share almost 100% the same configuration settings it didn't make sense to have redundant baselines
We enhanced the grouping of policies so that there is better logical organization
We added a strong security warning for the usage of Anyone links and verification code links since those violate the tenant wide MFA policy in AAD
We removed a policy that did not offer specific configuration guidance (Sharing settings for specific SharePoint sites SHOULD align to their sensitivity level). Via testing we found out that specific Sharepoint sites cannot set their external sharing value to be less restrictive than the organizational setting.
We removed a policy that is too restrictive for cross-agency collaboration, especially given the fact that phishing-resistant MFA and managed devices are required to access the tenant via AAD policies (Expiration timers for guest access to a site or OneDrive SHOULD be set to 30 days or less.)

📷 Screenshots

✅ Pre-approval checklist

This PR has an informative and human-readable title.
Changes are limited to a single goal - eschew scope creep!
All future TODOs are captured in issues, which are referenced
in code comments.
All relevant type-of-change labels have been added.
I have read the CONTRIBUTING document.
These code changes follow cisagov code standards.
All relevant repo and/or project documentation has been updated
to reflect the changes in this PR.
Tests have been added and/or modified to cover the changes in this PR.
All new and existing tests pass.

closes #115
closes #264
closes #263

tkol2022 · 2023-06-20T23:36:55Z

I'd like to thank @Dylan-MITRE, @Sloane4 , @ahuynhMITRE for taking the deluge of feedback that I provided on these two baselines over the past several months. I feel confident that we transformed these two products into a better state.

tkol2022 · 2023-06-22T18:37:01Z

@Dylan-MITRE Please update the original comment for this issue and add the list of "closes #X" items. There are at least a few OneDrive ones open but there could be some Sharepoint ones as well if you can please see if there are any.

schrolla · 2023-06-28T13:08:50Z

@tkol2022 We still have at least one outstanding PR related to adding SharePoint rationales. I believe there are a couple others. How does this new document correlate back to make sure that ongoing work on SP and OneDrive gets integrated into this new single document? Should the work be delayed until this new baseline can be merged in?

nanda-katikaneni

A few minor changes are suggested.

baselines/sharepointonedrive.md

adhilto

Overall looks good. I just had two minor suggestions; please consider them, but either way you have my approval.

baselines/sharepointonedrive.md

nanda-katikaneni

Reviewed changes - looks good to me.

schrolla · 2023-07-05T15:22:20Z

Please ensure the pre-approval checklist is completed (boxes checked) prior to requesting reviews. Looks like most if not all should already be complete.

tkol2022 · 2023-07-05T16:26:09Z

This pull request will be merged after we have a vote on the product identifier and ScubaGear command line argument name at tomorrow's stand-up. That vote could trigger some simple changes of the product ID in this PR.

tkol2022 · 2023-07-13T18:30:57Z

The team voted and "Sharepoint" was the winning baseline identifier and command line argument name. I will update the baseline document accordingly.

…iod (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org>

@Sloane4

* Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

…ion (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Add rego for MS.AAD.3.8v1 * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Add rego for MS.AAD.3.8v1 * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Add exclusion exception checks AAD 3.8 * Update Testing/Unit/Rego/Teams/TeamsConfig_07_test.rego Merged incorrectly * Fix merge conflict * Fix merge issue --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

…iod (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org>

@Sloane4

* Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

* Implement AAD 3.4 * Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Implement AAD 3.4 --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

…iod (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org>

@Sloane4

* Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

…ion (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Add rego for MS.AAD.3.8v1 * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Add rego for MS.AAD.3.8v1 * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Add exclusion exception checks AAD 3.8 * Update Testing/Unit/Rego/Teams/TeamsConfig_07_test.rego Merged incorrectly * Fix merge conflict * Fix merge issue --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

* Implement AAD 3.4 * Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Implement AAD 3.4 --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

* Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Add rego for MS.AAD.3.8v1 - Managed device required for MFA registration (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-author…

…iod (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org>

@Sloane4

* Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

…ion (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Add rego for MS.AAD.3.8v1 * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Add rego for MS.AAD.3.8v1 * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Add exclusion exception checks AAD 3.8 * Update Testing/Unit/Rego/Teams/TeamsConfig_07_test.rego Merged incorrectly * Fix merge conflict * Fix merge issue --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

* Implement AAD 3.4 * Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Implement AAD 3.4 --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

* Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Add rego for MS.AAD.3.8v1 - Managed device required for MFA registration (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-author…

…iod (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org>

@Sloane4

* Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

…ion (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Add rego for MS.AAD.3.8v1 * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Add rego for MS.AAD.3.8v1 * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Add exclusion exception checks AAD 3.8 * Update Testing/Unit/Rego/Teams/TeamsConfig_07_test.rego Merged incorrectly * Fix merge conflict * Fix merge issue --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

* Implement AAD 3.4 * Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Implement AAD 3.4 --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

* Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Add rego for MS.AAD.3.8v1 - Managed device required for MFA registration (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-author…

…iod (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org>

@Sloane4

* Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

…ion (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Add rego for MS.AAD.3.8v1 * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Add rego for MS.AAD.3.8v1 * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Testing/Unit/Rego/AAD/AADConfig_03_test.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Add exclusion exception checks AAD 3.8 * Update Testing/Unit/Rego/Teams/TeamsConfig_07_test.rego Merged incorrectly * Fix merge conflict * Fix merge issue --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

@Sloane4

* Implement AAD 3.4 * Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Implement AAD 3.4 --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com>

* Remove MS Graph 2.0 from GitHub Action, Run PowerShell Tests (#446) * Remove MS Graph 2.0 * Add MS Graph 2.0 removal to SmokeTest * Add path to run smoke test * Fix YAML error * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Implement MS.AAD.3.1v1 phishing resistant mfa for all users (#433) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Check if missing reported * Change missing to warning * Fix UT for warning * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Update Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1 * Align with updated defender.md * Update to match defender --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * One drive baseline (#370) * update onedrive baseline * remove should shall language * remove Configuring On-Premises Devices session at the end of the doc * Update wording for policy1 Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update policy 2 to keep consistency Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update wording for note Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Spelling error fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * spelling fix Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * change name to match with sharepoint * Update onedrive.md remove MS.ONEDRIVE.3.1v1 because it is actually duplicate of policy MS.ONEDRIVE.1.1v1 @Sloane4 Might want to remove the reference in MS.SHAREPOINT.2.1v1 * Update onedrive.md revert changes --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * DLP policy group additions and updates (#381) * Adjudicate Substantive AAD Baseline Comments (#379) * Updated to reflect phishing-resistant preferences * Updated to reflect phishing resistant pref'starting * Updates to AAD Policy 2.4 * Updates to aad policies * Updates to aad markdown * aad updates * aad baseline updates * aad baseline update (2.10) * aad baseline updates (removed 2.9) * updates to aad baseline (16.2) * aad 4.1 implementation updates * updates to aad 4 baseline policy implementations * Updates to aad policy 14 * updates to aad baseline * updates to aad.4.7v1 implementation * updates to aad.4.7v1 * Consolidated highly privileged user policies * fixes to aad.11.x * updates to policy 7 * Update to AAD 11 policy front matter (intro text) * updates to aad baseline * testing write to GitHub * backup of revisions 062223 * backup 062323 6:47 * backup 062623 --------- Co-authored-by: Ted Kolovos <tkolovos@mitre.org> * Added SharePoint to MS.DEFENDER.4.2v1 locations (#402) * Update aad scubagear code to align to revised baseline (#408) * Rearranged policies to match baseline updates * Added versioning for duplicate unit test title * Removed unused import * Updated MS.AAD.7.1v1 from less than 5 to less than 9 * Updated comment? * Updated yaml file * Comment update * Differentiate policy id vs implementation (#414) * WIP * Updated ReportDetails on tests to match patch results (#426) * Address Power Platform pilot comments and substantive changes in the baseline document Part 2 (#424) * power platform baseline doc refactor * address Grant's comments * forgot to update this header * consistent Policies header * wip * Implemented AAD 3.1 * WIP * wip * Implemented AAD 3.1 * Update Rego/AADConfig.rego * Update Smoke Test to handle CAP (#418) * Fix CAP table check * Fix lint issue * update MS.AAD.7.6v1 to only check for global admin (#428) * Combine Sharepoint with OneDrive and address feedback from review period (#393) * draft update & merge of Sharepoint OneDrive * fixed policies wrong spelling * fixed note indent formatting * delete onedrive md file - have a combined file now * missing heading for some implementations * Added rationales for all policy items. * spelling errors and removed instructions comma * changed IDs to SHAREPOINT based on team vote * fixed duplicate ID in instructions --------- Co-authored-by: Addam Schroll <aschroll@mitre.org> * Adjudicate review comments * WIP * wip * Implemented AAD 3.1 * WIP * wip * Update Rego/AADConfig.rego * Adjudicate review comments --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> Co-authored-by: Alden Hilton <106177711+adhilto@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> Co-authored-by: Cassandra Diaz <47129205+Sloane4@users.noreply.github.com> Co-authored-by: Dylan Gao <107067015+Dylan-MITRE@users.noreply.github.com> Co-authored-by: Shanti Satyapal <78565245+ssatyapal123@users.noreply.github.com> Co-authored-by: Ted Kolovos <tkolovos@mitre.org> Co-authored-by: David Bui <105074908+buidav@users.noreply.github.com> Co-authored-by: Ted Kolovos <107076927+tkol2022@users.noreply.github.com> * Add rego for MS.AAD.3.8v1 - Managed device required for MFA registration (#416) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Add quiet mode for invoke-scuba (#357) * Add quiet option * Invert Stance on Defender Preset Policies in Markdown (#355) * Inverted 2.1, removed applicable controls * Ironed out baselines for the using the preset policies * Minor wording updates to MS.DEFENDER.1.1v1 rationale * Minor wording updates to MS.DEFENDER.2.3v1 policy statement * Minor wording updates to MS.DEFENDER.2.3v1 rationale * Update to MS.DEFENDER.2.4v1 license restrictions in GCC high and DoD regions * Minor wording updates to MS.DEFENDER.3.1v1 rationale * Minor wording update to MS.DEFENDER.2.3v1 rationale * Minor wording change to Safe Attachments group text * Remove hyphen from Safe Attachments policy group title. * Added new policy item 1.1v1 and renumered others; added sensitive accounts language --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Addam Schroll <aschroll@mitre.org> * Substantiative changes to Sharepoint Baseline minus Rationale (#360) * Structural baseline updates (cleaned up) (#334) --------- * Split policies for testing purposes * Addition for github issue: Add a new SharePoint Guest sign in Policy #307 * Updated for github issue: Direct the user to save in policy implementation SharePoint #301 * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Fix UT errors * Default baseline for testing * Updates based on review comments * Call Import-SecureBaseline once * Update for review comments * Review updates * Add help comment * remove unused import * Fix OPA check issues * fix opa tests action * Update action to test * Action update * Sum PS/Bug as Errors * Update darkmode colors * Fix UT after Rebase * Fix UT * Fix error log * Update UT for NewReport * Update link color --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Sloane4 <cdiaz@mitre.org> * Update for github issue Sharepoint 2.3 Sharing settings cannot be more restrictive than the tenant level #288 * Updat for github issue Update SharePoint Policy 2.4 Code #300 * Additional changes for #288 * Update with correct implementations * Update for github issue #303 * Added some rational & fixed policy numbers * Split policy 5 to improve setting check & report. * Updated for duplicates with onedrive * Add resource for details about reauthentication github issue #299 * Removed Should & Shall from intro paragraphs. * Split implementation for each policy item * Updated code to match baseline TODO Unit tests * Updated unit tests * Fixed policy 4 * Update commandlet for MS.SHAREPOINT.5.2v1 * Updated content style guide for new rego structure * Readded comments to MS.SHAREPOINT.5.2v1 * Baseline updated with requested fixes (addam) * Move updates to content style guide to new branch (not part of current scope) * Update ErrMsg for MS.SHAREPOINT.4 to be more readable --------- Co-authored-by: Andrew Huynh <113476170+ahuynhMITRE@users.noreply.github.com> Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> Co-authored-by: Richard Crutchfield <crutchfield@users.noreply.github.com> * Fix test location file path (#367) * Enhanced smoke test - check for missing results (#356) * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Initial drop of secure baseline automation (#336) * initial teams drop * Add markdown check * Fix spelling * Check action * Test Action * Check version * Fix Markdown test * Add path *.md * Update anchor func * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/powerbi.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update baselines/aad.md Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * Update aad.md referenced old policy number * Update powerbi.md --------- Co-authored-by: Addam Schroll <108814318+schrolla@users.noreply.github.com> * initial teams drop * Update AAD * WIP * WIP * WIP * WIP * WIP * Structural baseline updates (cleaned up) (#334) * Update aad.md all updates * Update defender.md all updates * Update exchange.md all updates * Rename exchange.md to exo.md * Update onedrive.md * Update powerbi.md all updates * Update powerplatform.md all updates * Update sharepoint.md all updates * Update teams.md all updates * Update baselines/defender.md good catch! Co-author…

tkol2022 added the baseline-document Issues relating to the text in the baseline documents themselves label Jun 20, 2023

tkol2022 added this to the Emerald milestone Jun 20, 2023

tkol2022 requested review from gdasher, nanda-katikaneni, Dylan-MITRE and ahuynhMITRE June 20, 2023 23:34

tkol2022 self-assigned this Jun 20, 2023

Dylan-MITRE approved these changes Jun 21, 2023

View reviewed changes

tkol2022 requested a review from adhilto June 22, 2023 18:04

nanda-katikaneni mentioned this pull request Jun 22, 2023

OneDrive 2.3 Baseline policy clarification #115

Closed

2 tasks

buidav linked an issue Jun 22, 2023 that may be closed by this pull request

OneDrive 2.3 Baseline policy clarification #115

Closed

2 tasks

This was linked to issues Jun 26, 2023

OneDrive / Sharepoint Code revisions to reflect the baseline changes #391

Closed

Split OneDrive 2.3 into two policies #264

Closed

OneDrive 2.2 set to 30 days or less #263

Closed

schrolla force-pushed the emerald branch from 468499d to db94c2a Compare June 27, 2023 14:31

schrolla mentioned this pull request Jun 29, 2023

Adds SharePoint Baseline Rationales #406

Closed

10 tasks

nanda-katikaneni requested changes Jun 29, 2023

View reviewed changes

baselines/sharepointonedrive.md Outdated Show resolved Hide resolved

baselines/sharepointonedrive.md Outdated Show resolved Hide resolved

schrolla force-pushed the sharepoint-emerald-review-updates branch from 83eeaeb to 06aeec8 Compare June 29, 2023 20:37

schrolla linked an issue Jun 30, 2023 that may be closed by this pull request

Add rationale to SharePoint Baseline #359

Closed

2 tasks

adhilto approved these changes Jul 4, 2023

View reviewed changes

baselines/sharepointonedrive.md Show resolved Hide resolved

baselines/sharepointonedrive.md Outdated Show resolved Hide resolved

nanda-katikaneni approved these changes Jul 5, 2023

View reviewed changes

schrolla force-pushed the emerald branch from b94ef55 to 2ade0e4 Compare July 7, 2023 14:52

schrolla force-pushed the sharepoint-emerald-review-updates branch from 834eca9 to 8a20f62 Compare July 7, 2023 17:15

tkol2022 force-pushed the sharepoint-emerald-review-updates branch from 8a20f62 to 79d9af7 Compare July 13, 2023 19:28

tkol2022 force-pushed the sharepoint-emerald-review-updates branch from b317caf to 1424eeb Compare July 14, 2023 14:02

nanda-katikaneni merged commit 34037da into emerald Jul 14, 2023

nanda-katikaneni deleted the sharepoint-emerald-review-updates branch July 14, 2023 14:10

schrolla mentioned this pull request Jul 17, 2023

Add rationale to SharePoint Baseline #359

Closed

2 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Combine Sharepoint with OneDrive and address feedback from review period #393

Combine Sharepoint with OneDrive and address feedback from review period #393

tkol2022 commented Jun 20, 2023 •

edited

Loading

tkol2022 commented Jun 20, 2023

tkol2022 commented Jun 22, 2023

schrolla commented Jun 28, 2023

nanda-katikaneni left a comment

adhilto left a comment

nanda-katikaneni left a comment

schrolla commented Jul 5, 2023

tkol2022 commented Jul 5, 2023

tkol2022 commented Jul 13, 2023

Combine Sharepoint with OneDrive and address feedback from review period #393

Combine Sharepoint with OneDrive and address feedback from review period #393

Conversation

tkol2022 commented Jun 20, 2023 • edited Loading

💭 Motivation and context

📷 Screenshots

✅ Pre-approval checklist

tkol2022 commented Jun 20, 2023

tkol2022 commented Jun 22, 2023

schrolla commented Jun 28, 2023

nanda-katikaneni left a comment

Choose a reason for hiding this comment

adhilto left a comment

Choose a reason for hiding this comment

nanda-katikaneni left a comment

Choose a reason for hiding this comment

schrolla commented Jul 5, 2023

tkol2022 commented Jul 5, 2023

tkol2022 commented Jul 13, 2023

tkol2022 commented Jun 20, 2023 •

edited

Loading