Restrict access to the Azure AD administration portal to administrators only. Rationale: The Azure AD administrative portal has sensitive data. All non-administrators should be prohibited from accessing any Azure AD data in the administration portal to avoid exposure. NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
From Azure Console Go to Azure Active Directory Go to Users Go to User settings Set Restrict access to Azure AD administration portal to Yes Default Value: By default, Restrict access to Azure AD administration portal is set to No.