Why it is important to block access to Azure AD PowerShell
In one of my recent blogs, I’ve published a tool to use Intune as your e-mail signature manager for Outlook. This tool uses the AzureAD PowerShell module. Leveraging Single Sign On (SSO) on Azure AD joined devices, it queries for the user’s contact information of the user that’s signed in on the device. In doing so, I found that, as a non-administrative user, I was also able to query the contact information of all other users. Dumping the Azure AD…