[GH-ISSUE #5008] [Feature Request]: Zero Trust Assessment Module for Microsoft 365 Tenants #2372

New issue

Closed

opened 2026-03-02 13:51:46 +03:00 by kerem · 1 comment

kerem commented 2026-03-02 13:51:46 +03:00

Owner

Copy link

Originally created by @jhravnit on GitHub (Nov 26, 2025).
Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/5008

Please confirm:

• I have searched existing feature requests (open and closed) and found no duplicates.
• **me or my organization is currently an active sponsor of the product at the $99,- level.

Problem Statement

t would be highly beneficial for MSPs if CIPP included a dedicated Zero Trust Assessment module similar to Microsoft’s own Zero Trust Assessment framework.
Today, engineers must manually review identity, device, application, network, data, and logging configurations across multiple Microsoft 365 services. This work is repetitive, time-consuming, and difficult to standardize.
A built-in Zero Trust Assessment module in CIPP would make it far easier to evaluate tenants and present a clear security maturity overview.

Benefits for MSPs

Streamlined security assessments: Reduces the manual effort required to review Zero Trust controls across tenants.

Consistent methodology: Ensures that all MSP technicians follow a standardized assessment approach aligned with Microsoft’s Zero Trust principles.

Better customer communication: Generates clear, easy-to-understand reports for customers, improving transparency and trust.

Improved operational security: Helps engineers quickly identify priority areas for improvement across Identity, Device, Apps, Data, and Access.

Scalable across all tenants: Supports bulk assessments and repeated evaluations over time.

Value or Importance

A Zero Trust Assessment module would add significant value to CIPP by enabling MSPs to measure and track Zero Trust maturity in a structured way- just as Microsoft recommends.
Zero Trust is a key security model for modern cloud environments, and having this capability integrated into CIPP would make the platform even more powerful for risk assessments, compliance work, and proactive security operations.
This feature would be especially useful for MSPs who regularly perform quarterly or annual security reviews.

PowerShell Commands (Optional)

PowerShell 7

Install-Module ZeroTrustAssessment -Scope CurrentUser
Connect-ZtAssessment
Invoke-ZtAssessment

Originally created by @jhravnit on GitHub (Nov 26, 2025). Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/5008 ### Please confirm: - [x] **I have searched existing feature requests** (open and closed) and found no duplicates. - [x] **me or my organization is currently an active sponsor of the product at the $99,- level. ### Problem Statement t would be highly beneficial for MSPs if CIPP included a dedicated Zero Trust Assessment module similar to Microsoft’s own Zero Trust Assessment framework. Today, engineers must manually review identity, device, application, network, data, and logging configurations across multiple Microsoft 365 services. This work is repetitive, time-consuming, and difficult to standardize. A built-in Zero Trust Assessment module in CIPP would make it far easier to evaluate tenants and present a clear security maturity overview. ### Benefits for MSPs Streamlined security assessments: Reduces the manual effort required to review Zero Trust controls across tenants. Consistent methodology: Ensures that all MSP technicians follow a standardized assessment approach aligned with Microsoft’s Zero Trust principles. Better customer communication: Generates clear, easy-to-understand reports for customers, improving transparency and trust. Improved operational security: Helps engineers quickly identify priority areas for improvement across Identity, Device, Apps, Data, and Access. Scalable across all tenants: Supports bulk assessments and repeated evaluations over time. ### Value or Importance A Zero Trust Assessment module would add significant value to CIPP by enabling MSPs to measure and track Zero Trust maturity in a structured way- just as Microsoft recommends. Zero Trust is a key security model for modern cloud environments, and having this capability integrated into CIPP would make the platform even more powerful for risk assessments, compliance work, and proactive security operations. This feature would be especially useful for MSPs who regularly perform quarterly or annual security reviews. ### PowerShell Commands (Optional) PowerShell 7 Install-Module ZeroTrustAssessment -Scope CurrentUser Connect-ZtAssessment Invoke-ZtAssessment

kerem 2026-03-02 13:51:46 +03:00

• closed this issue
• added the
  enhancement
  no-priority
  not-assigned
  labels

kerem commented 2026-03-02 13:51:47 +03:00

Author

Owner

Copy link

@KelvinTegelaar commented on GitHub (Dec 4, 2025):

Semi-planned, stay tuned. for now we're closing this FR as this is part of a bigger approach for the last release of the year.

<!-- gh-comment-id:3611977318 --> @KelvinTegelaar commented on GitHub (Dec 4, 2025): Semi-planned, stay tuned. for now we're closing this FR as this is part of a bigger approach for the last release of the year.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

docs

dev

dependabot/npm_and_yarn/dev/uiw/react-json-view-2.0.0-alpha.42

dependabot/npm_and_yarn/dev/tanstack/react-query-persist-client-5.96.2

dependabot/npm_and_yarn/dev/mui-tiptap-1.30.0

dependabot/npm_and_yarn/dev/tanstack/react-query-devtools-5.96.2

dependabot/npm_and_yarn/dev/recharts-3.8.1

dependabot/github_actions/dev/actions/setup-node-6.4.0

copilot/add-alert-for-report-only-ca

release/beta

release/nightly

docs-maintenance

v10.4.0

v10.3.0

v10.2.0

v10.1.0

v10.0.0

v8.8.0

v8.7.0

v8.6.0

v8.5.0

v8.4.0

v8.3.0

v8.2.0

v8.1.0

v8.0.0

v7.5.0

v7.4.0

v7.3.0

v7.2.0

v7.1.0

v7.0.1

v6.4.0

v6.3.0

v6.2.0

v6.1.0

v6.0.0

v5.9.0

v5.8.5

v5.8.0

v5.7.0

v5.6.0

v5.5.0

v5.4.0

v5.3.0

v5.2.0

v5.1.0

v5.0.0

v4.9.0

v4.8.0

v4.7.0

v.4.6.0

v4.5.0

v4.4.0

v4.3.0

v4.2.0

v4.1.0

v4.0.0

v3.8.0

v3.7.0

v3.6.0

v3.5.0

v3.4.0

v3.3.0

v3.2.0

v3.1.0

v3.0.0

v2.20.0

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.13.0

v2.12.0

v2.11.2

v2.1.11.0

v.2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.0

v2.5.5

v2.5.0

v2.4.0

v.2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

2.0.0

v1.5.1

v1.5.0

v1.4.3

v1.4.2

v1.4.0

v1.3.0

v1.2.1

v1.2.0

1.1.0

release

Labels

Clear labels   

API

  

Feature

  

NotABug

  

NotABug

  

Planned

  

Sponsor Priority

  

Sponsor Priority

  

bug

  

documentation

  

duplicate

  

enhancement

  

needs more info

  

no-activity

  

no-priority

  

not-assigned

  

pull-request

Mirrored from GitHub Pull Request

  

react-conversion

  

react-conversion

  

roadmap

  

security

  

stale

  

unconfirmed-by-user

  

unconfirmed-by-user

  

wontfix

No labels

API

Feature

NotABug

NotABug

Planned

Sponsor Priority

Sponsor Priority

bug

documentation

duplicate

enhancement

needs more info

no-activity

no-priority

not-assigned

pull-request

react-conversion

react-conversion

roadmap

security

stale

unconfirmed-by-user

unconfirmed-by-user

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/CIPP#2372

No description provided.