Available Recommendations in Orchestry
In this article, view the entire list of recommendations available in Orchestry.
Urgent Recommendations
These recommendations are designed to help you identify where you might have risks across your tenant, such as guest users with access to workspaces they shouldn't, a low Secure Score, or when you're about to exceed your tenant storage.
| NAME | DESCRIPTION | PRODUCT(S) |
| Guests Can Share Items they Don't Own | Your tenant allows guests to share items they don't own | SharePoint, OneDrive, Copilot |
| Guests with Forbidden Access | You have guests who maintain access to workspaces where guest access is disabled. | Entra ID |
| Ownerless Workspaces with Recently Created Shared Links | You have workspaces without any current owners that have had shared links created within the last 180 days. | Copilot, SharePoint, Teams, Viva Engage |
| Secure Score Drop | Your Secure Score has dropped significantly relative to the past seven days. | Defender |
| Secure Score Low | Your secure score is lower than typical organizations of your size. | Defender |
| Tenant Over Storage Quota* |
Your SharePoint instance is over its current storage quota (x% of capacity). NOTE: Due to API limits, this information is delayed by 48 hours. |
SharePoint |
| Unsafe Default Sharing Settings for Anyone Links | Your tenant has "Anyone" sharing link settings that are potentially unsafe | Copilot, SharePoint, Teams, Viva Engage |
| Workspaces with Guests from Blocked Domains | You have workspaces that have guests from blocked domains. | Entra ID, SharePoint |
| Workspaces with Recently Created "Anyone" Links | You have workspaces where "Anyone" sharing links were created within the last 180 days | Copilot, SharePoint, Teams, Viva Engage |
Important Recommendations
These recommendations are designed to help you monitor workspaces that might be too large, find workspaces that might be abandoned, and ensure guest access is under control.
| NAME | DESCRIPTION | PRODUCT(S) |
| Bloated Workspaces | You have workspaces with document libraries containing over 5,000 files. | SharePoint, Teams |
| Guests with Inactivity | You have guests that have not logged in to your tenant in over <x> days (your current inactivity threshold). | Entra ID |
| Guests with Unredeemed Invitations | You have guests who have been approved but have not redeemed their invitation in over 90 days. | Entra ID |
| High Guest Unique Domains | You have a high number of unique domains compared to your number of guests. | Entra ID |
| Large Workspaces | You have workspaces that are occupying over 1TB of storage space. | SharePoint, Teams |
| Never Used Workspace | You have workspaces that have never been used. | Teams, SharePoint |
| Tenant Near Storage Quota |
Your SharePoint instance is nearing its current storage quota (90% of capacity). NOTE: Due to API limits, this information is delayed by 48 hours. |
SharePoint |
| Workspace Near Storage Limit | You have workspaces that are approaching their site collection storage limit. | SharePoint |
| Workspaces that are Inactive | You have workspaces that have been inactive for longer than your inactivity threshold. | SharePoint, Teams, Viva Engage |
| Workspace with Guests to Review | You have workspaces that have not had their guests’ access reviewed in over 365 days. | Entra ID, SharePoint, Teams |
| Workspaces with Low Membership | You have workspaces with a single owner and/or member. | SharePoint, Teams, Viva Engage |
| Workspaces with an Unsafe Default Sharing Link | You have <x> workspaces that are using an overly permissive default sharing link type that can lead to oversharing | Teams, SharePoint, Viva Engage, Copilot |
| Workspaces Without Guest Request Policies | You have workspaces with guests Access Enabled but no Orchestry guest Request Policies. | SharePoint, Teams |
| Workspaces Without Guest Review Policies | You have workspaces with guests that currently have no guest Review policy applied. | Entra ID |
| Workspaces Without Members | You have workspaces without any current members. | SharePoint, Teams, Viva Engage |
| Workspaces Without Owners | You have workspaces without any current owners. | SharePoint, Teams, Viva Engage |
Best Practice Recommendations:
These recommendations should be reviewed to help ensure you're getting the most out of your tenant and Orchestry.
| NAME | DESCRIPTION | PRODUCT(S) |
| Classic Sites | You have SharePoint classic sites which are being discouraged by Microsoft. | SharePoint |
| Group Self Service Not Disabled | You do not have Microsoft365 'Group Self-Service' disabled. | Entra ID |
| Guest Management is Not Enabled | You do not have Orchestry's guest management features enabled. | Entra ID |
| High Number of Private Channels | You have workspaces that appear to be using too many private channels. | Teams |
| Lifecycle Management is Not Enabled | You do not have Orchestry's 'Lifecycle Management' features enabled. | Entra ID |
| No Blocked Domains | Your tenant currently has no blocked domains configured for Guest Access. | Entra ID |
| No Container Level Sensitivity Labels Defined | You do not have any container-level sensitivity labels defined to ensure compliance in M365. | Purview |
| No Home Site(s) | You have no home sites identified in your SharePoint environment. | SharePoint |
| No Hub Sites | You have no hub sites identified in your SharePoint environment. | SharePoint |
| No Organizational News Sites | You have no organizational news sites identified in your SharePoint environment. | SharePoint |
| Team Information Tab Not used | You have workspaces that are not using the Orchestry 'Team Information' tab. | Teams |
| Too Many Owners | You have workspaces with over 20 owners. | SharePoint, Teams, Viva Engage |
| Workspaces with Bad Names | You have workspaces using problematic or blocked words. | Teams, SharePoint, Viva Engage |
| Workspaces with Guest Access Settings Mismatch | You have workspaces where guest access is not aligned between Teams and the underlying SharePoint site. | Teams, SharePoint |
| Workspaces with No Container-Level Sensitivity Labels Applied | You have <x> workspaces without container-level sensitivity labels applied | SharePoint, Teams, Viva Engage, Copilot |
| Workspaces with no Content | You have workspaces without any content. | Teams, SharePoint |
| Workspaces with no Conversation | You have workspaces with a team without any conversations. | Teams |
| Workspaces with Subsites | You have workspaces with SharePoint sub sites. | SharePoint |
| Workspaces without Customization | You have workspaces without any kind of customization or configuration. | SharePoint, Teams, Viva Engage |