en-US/about_M365FoundationsCISReport.help.txt
TOPIC
about_m365foundationscisreport SHORT DESCRIPTION The `M365FoundationsCISReport` module provides cmdlets for auditing and reporting on the security compliance of Microsoft 365 environments based on CIS benchmarks. LONG DESCRIPTION The `M365FoundationsCISReport` module is designed to help administrators ensure that their Microsoft 365 environments adhere to the security best practices outlined by the Center for Internet Security (CIS). The module includes cmdlets for performing comprehensive security audits, generating detailed reports, and synchronizing audit results with CIS benchmark Excel sheets. It aims to streamline the process of maintaining security compliance and improving the overall security posture of Microsoft 365 environments. Optional Subtopics AUDITING AND REPORTING The module provides cmdlets that allow for the auditing of various security aspects of Microsoft 365 environments, including user MFA status, administrative role licenses, and more. The results can be exported and analyzed to ensure compliance with CIS benchmarks. DATA SYNCHRONIZATION The module includes functionality to synchronize audit results with CIS benchmark data stored in Excel sheets. This ensures that the documentation is always up-to-date with the latest audit findings. EXAMPLES # Example 1: Performing a security audit based on CIS benchmarks $auditResults = Invoke-M365SecurityAudit -TenantAdminUrl "https://contoso-admin.sharepoint.com" # Example 2: Exporting a security audit table to a CSV file Export-M365SecurityAuditTable -ExportAllTests -AuditResults $auditResults -ExportPath "C:\temp" -ExportOriginalTests # Example 3: Retrieving licenses for users in administrative roles Get-AdminRoleUserLicense # Example 4: Getting MFA status of users Get-MFAStatus -UserId "user@domain.com" # Example 5: Removing rows with empty status values from a CSV file Remove-RowsWithEmptyCSVStatus -FilePath "C:\Reports\Report.xlsx" -WorksheetName "Sheet1" # Example 6: Synchronizing CIS benchmark data with audit results Sync-CISExcelAndCsvData -ExcelPath "path\to\excel.xlsx" -CsvPath "path\to\data.csv" -SheetName "Combined Profiles" # Example 7: Granting Microsoft Graph permissions to the auditor Grant-M365SecurityAuditConsent -UserPrincipalNameForConsent 'user@example.com' NOTE Ensure that you have the necessary permissions and administrative roles in your Microsoft 365 environment to run these cmdlets. Proper configuration and setup are required for accurate audit results. TROUBLESHOOTING NOTE If you encounter any issues while using the cmdlets, ensure that your environment meets the module prerequisites. Check for any updates or patches that may address known bugs. For issues related to specific cmdlets, refer to the individual help files for troubleshooting tips. SEE ALSO - CIS Benchmarks - Microsoft 365 Security Documentation - PowerShell Documentation KEYWORDS - Microsoft 365 - Security Audit - CIS Benchmarks - Compliance - MFA - User Licenses - Security Reporting |