InformationRestrict Microsoft 365 group creation to administrators only.
Restricting Microsoft 365 group creation to administrators only ensures that creation of Microsoft 365 groups is controlled by the administrator. Appropriate groups should be created and managed by the administrator and group creation rights should not be delegated to any other user.
Enabling this setting could create a number of request that would need to be managed by an administrator.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
SolutionFrom Azure Console
Go to Azure Active Directory
Go to Groups
Go to General in setting
Set Users can create Microsoft 365 groups in Azure Portals to No
By default, Users can create Microsoft 365 groups in Azure Portals is set to Yes.