You’re not giving them access to anything. Oauth is an authentication protocol that only grants specific and a very limited access to certain attributes. Of course, as with any third-party add-on depending on what the product does will determine access, so for example if you use a third-party back up to like Veam then it will need a large number of permissions. Other than that you don’t need to be paranoid 😊

Either the Microsoft or Google authenticator apps

Personally, I wouldn’t risk the security of an enterprise by using free tools. You’ll need something more robust.

@@AndyMaloneMVP thank you

These companies do not actually process your data or store your data. They’re essentially a wrap and you can see what permissions they have via the Oauth token when you approve the connection

@@AndyMaloneMVP Can you do a video on this. What is a Oauth token and how do you see it etc.

I’ll cover this in the future session, but for now I would visit the specOps website and look through their documentation

@@AndyMaloneMVP Looks at the documentation... immediately zones out. This is rough to read.