Essential Eight assessment and monitoring for Microsoft 365
Aegis Eight connects with read-only admin consent, scores your tenant against all eight ASD strategies, and — with a subscription — watches for configuration drift between audits.
How it works
- Enter your work email and grant Microsoft 365 admin consent.
- Aegis Eight scans your tenant against the eight ASD-recognised controls.
- You receive a maturity report (ML0 / ML1 / ML2 / ML3) with remediation guidance.
- Subscribe for continuous monitoring — daily re-scans and email alerts when something material changes.
Eight Essential Eight controls — M365 coverage
Application control
Intune / Defender Application Control posture for executables and scripts.
Patch applications
Third-party and browser patch cadence via Intune compliance signals.
Configure Office macros
Macro blocking and trusted-location policy across M365 apps.
User application hardening
Browser and Office hardening settings enforced for standard users.
Restrict administrative privileges
Privileged role assignments, PIM usage, and admin account separation.
Patch operating systems
Windows update compliance and device patch status from Intune.
Multi-factor authentication
MFA registration, Conditional Access, and phishing-resistant methods.
Regular backups
M365 backup protection signals (retention, immutability where visible).
Continuous monitoring — what subscribers see
After you subscribe, the dashboard tracks maturity per control and surfaces material drift between scans. Illustrative single-tenant views below — redacted fixture data.
Sample maturity report
Every free scan produces a PDF with per-control maturity levels, prioritised remediations, and an evidence appendix. Download a redacted example below.
Download sample reportManual audit vs Aegis Eight
| Aspect | Manual audit / consultant | Aegis Eight |
|---|---|---|
| Time to first report | Days to weeks | Minutes after admin consent |
| Evidence trail | Screenshots & spreadsheets | Hash-anchored Graph snapshots + PDF |
| Drift detection | Next audit cycle | Daily scans + change alerts (subscription) |
| Cost (typical SME) | A$5k–15k+ per engagement | Free assessment; monitoring from A$79/mo |
Trust and transparency
Read-only Microsoft Graph access only — see the full permission list on Permissions and technical security detail on Security & Privacy. Compare plans on Pricing.