InformationLimit guest user permissions.
Limiting guest access ensures that guest accounts do not have permission for certain directory tasks, such as enumerating users, groups or other directory resources, and cannot be assigned to administrative roles in your directory. If guest access in not limited, they have the same access to directory data as regular users.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
SolutionFrom Azure Console
Go to Azure Active Directory
Go to External Identities
Go to External collaboration settings
Set Guest users permissions are limited to Yes
By default, Guest users permissions are limited is set to Yes.