Require approval for agent-based Office 365 group membership changes [New in Security Center 7.0]
Enable the approval flow for adding or removing Office 365 group members through the Microsoft 365 group membership AI Agent using a system property.
Use the sn_itsm_aia.office_365_group_member_approval.required system property to control whether the approval flow for adding or removing Office 365 group members through the AI agent is on or off. When the approval workflow is enabled, an approval record must be set to approved by a member of the group specified in the sn_itsm_aia.office_365_group_member_approval.group_id system property. If the sn_itsm_aia.office_365_group_member_approval.group_id property isn't configured, the Microsoft 365 group member approvers group is used.
More information
| Attribute | Description |
|---|---|
| Configuration name | sn_itsm_aia.office_365_group_member_approval.required |
| Configuration type | System Properties (/sys_properties_list.do) |
| Data type | Boolean |
| Recommended value | true |
| Default value | true |
| Fallback value | true |
| Category | Access control |
| Security risk |
|
| Functional impact |
When sn_itsm_aia.office_365_group_member_approval.required is set to true, a member of the group specified in sn_itsm_aia.office_365_group_member_approval.<group_id> must approve the Incident requesting addition or removal of Office 365 group members. If sn_itsm_aia.office_365_group_member_approval.required is set to false then no approval is required and the AI Agent can autonomously handle the process of adding or removing members from an Office 365 group. |
| Dependencies and prerequisites | None |
To learn more about adding or creating a system property, see Add a system property.