2.11 Ensure that Sways cannot be shared with people outside of your organization

Information

Disable external sharing of Sway items such as reports, newsletters, presentations etc that could contain sensitive information.

Rationale:

Disable external sharing of Sway documents that can contain sensitive information to prevent accidental or arbitrary data leak.

Impact:

Interactive reports, presentations, newsletters and other items created in Sway will not be shared outside the organization by users.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

To ensure Sways cannot be viewed outside of your organization use the Microsoft 365 Admin Center:

Expand Settings then select Org settings.

Under Services select Sway.

Under Sharing uncheck the following

Let people in your organization share their sways with people outside your organization

Click Save

Default Value:

Let people in your organization share their sways with people outside your organization - Enabled

See Also

https://workbench.cisecurity.org/files/3729

Item Details

Category: ACCESS CONTROL, MEDIA PROTECTION

References: 800-53|AC-3, 800-53|AC-4, 800-53|AC-5, 800-53|AC-6, 800-53|MP-2, CSCv7|13.1

Plugin: microsoft_azure

Control ID: 38a726247354a251cf8aa9ea0d1aa7fd5aed6f54d9c205c66914fd20804d9983