Comments (8)
Thanks to everyone that reported and responded. Turns out that MS added some data to the API output which broke the policy check logic in the tool. The fix #1043 is currently in review so look for that soon.
from scubagear.
We hit it aswell, and just started using it, so can't tell if it is new or not. We have E5 licenses, and have configured the settings seemingly correct in Entra. We were also unable to disable the setting in admin center like @amandaw33 pointed out.
Thank you for making this tool avaliable to the public.
Happy to know that people are using it! Appreciate the feedback.
from scubagear.
from scubagear.
@sgendron50 Thanks for reporting this. We are starting to see if we can re-produce it. @dagarwal-mitre
- What type of tenant license do you have? E5, G5, G3, etc.
- Is this a new problem?
- Do you see any error messages in the terminal when running ScubaGear?
from scubagear.
@tkol2022 - We have an E5 license. I can't tell you if this is a new problem because we just used this for the first time. No, no error messages were displayed in the terminal. Let me know if there is anything else I can provide to assist.
from scubagear.
We similarly hit this and similarly to @sgendron50 in Entra we do have user consent disabled, but over in admin center --> settings --> org settings --> services --> user consent to apps is checked, but I get an error trying to uncheck it (I thought I'd uncheck it to just stay consistent). "We couldn't save your changes. Close and reopen this setting to try again"
Googling hasn't led me to how this setting interacts or may be overridden by the Entra setting.
from scubagear.
We hit it aswell, and just started using it, so can't tell if it is new or not. We have E5 licenses, and have configured the settings seemingly correct in Entra. We were also unable to disable the setting in admin center like @amandaw33 pointed out.
Thank you for making this tool avaliable to the public.
from scubagear.
FYI - The fix for this has been merged into the main branch. You can download the zip file from main if you want to test it - see screenshot below. It will also be included in our upcoming official release bundle.
from scubagear.
Related Issues (20)
- PSGallery v1.3.0 package signatures not valid HOT 3
- Add shields.io badges to README HOT 1
- AAD functional test 3.2 fails against our G3 test tenant
- AAD report link to config file exclusions is incorrect
- AAD Rego policies that examine conditional access are not checking for guest user exclusions or application exclusions HOT 1
- Determine if ScubaGear will support guest user or application exclusions from conditional access policies
- Add error handling and unit tests to publish public package workflow
- AAD 3.2 Has Unit Test Failing
- Review latest CIS M365 Benchmark
- Regal (Rego Linter) Line Length
- Error when executing from alternate drive HOT 2
- Submit consolidated change document for CISA review and approval (Iceberg Release) HOT 1
- Refactor the MFA ruleset names in AAD Rego so that they accurately reflect their purpose
- Update run_module_version_bump.yml to include psgallery.md HOT 2
- Perform detailed code review of AAD Rego policies that check conditional access
- Fix the OPA version bump workflow to work with the new README HOT 3
- ScubaGear does not check for the prevention of users from downloading malicious files HOT 1
- Improper Handling of Connect-IPPSSession Errors
- Provider output should always encapsulate ScubaGear configuration
- Individual product report.json files are not covered by smoke test
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from scubagear.