Low Impact
- Configure Temporary Access Pass (TAP) authentication method policy
- Toggle concealed usernames in Microsoft 365 reports
- Configure default timezone for new SharePoint sites
- Configure technical and marketing contact emails
- Set OneDrive for Business retention for deleted users
- Automatically save sent items in delegator’s mailbox
- Set organization-level external sharing setting
- Set permissions options for Anyone links
- Send email from alias
- External email warning tag in Outlook
- Disable Legacy Email Protocols (POP, IMAP) – Default Setting for New Mailboxes
- Set Maximum Message Size – Setting for Existing Mailboxes
- Set Maximum Message Size – Default Setting for New Mailboxes
- Check and Notify when SharePoint storage goes below certain limit
- Enable Litigation Hold
- Set deleted items retention period
- Disable Focused Inbox – Tenant Wide
- Disable insecure legacy email protocols (eg SMTP, POP3, IMAP) – Default Setting for New Mailboxes
- Enable Plus Addressing
- Set OneDrive for Business storage quota
- Prevent the Download button from being displayed on the Virus Found warning page
- Enable Idle Session Timeout
- Block Sign-in to Shared Mailboxes
- Disable TNEF Encoding
- Disable Password Expiry – Tenant Wide
- Enable Unified Audit Log