If any user in your organization decides to use Microsoft Azure, he/she can by default log in at https://portal.azure.com and view the entire AAD catalog with object details. Within their own subscription the user can add a credit card andcspin up resources. The user can also invite users from the corporate catalog. Resources will be billed directly to the user’s credit card if not a subscription from the corporate enrollment has beenggranted.
In order to hide the Azure AD catalog for your organization you may do the following:
You have now hidden your Azure Active Directory from all non-admin users when accessing the AAD blade in the azure portal.
Next you may want to review the guest invitation permissions so users can not invite external users into your organization.
Leave a Reply