Applies to Product - Power Apps
What’s happening?
Customers have inquired about the possibility of bypassing consent for Spatial Services and the Tenant Isolation setting, specifically regarding access to SharePoint workflows.
Reason:
Bypassing tenant isolation can introduce several security risks, including:
What’s happening?
Customers have inquired about the possibility of bypassing consent for Spatial Services and the Tenant Isolation setting, specifically regarding access to SharePoint workflows.
Reason:
Bypassing tenant isolation can introduce several security risks, including:
- Unauthorized access to sensitive information
- Potential data exfiltration
- Compromised security boundaries
Resolution:
- Consultation: Before attempting to bypass the Tenant Isolation setting, it is recommended to engage with representatives from the security team, service design team, and system admin team to assess the implications and risks.
- Security Considerations: It is strongly advised not to bypass tenant isolation due to potential security breaches that could impact the organization in the long run.
- Access Control: If access is necessary, consider limiting it to specific workflows rather than allowing unrestricted tenant-wide access.
- Risk Evaluation: Organizations should carefully evaluate the risks associated with allowing external workflows to access SharePoint, as this increases the attack surface and vulnerability to security threats.
- Restrict cross-tenant inbound and outbound access in Power Platform
- Bypassing Tenant Isolation in Microsoft Power Platform
