Partner Security Requirements - Sandbox?
We implemented all of the Partner Security Requirements and are getting a 100% security requirements score in all production Partner Centers. However, our PDM sent us a report today that says we are out of compliance for a specific tenant ID. The tenant ID that is referenced is the tenant ID for our sandbox tenant.
@idwilliams I didn't see in the documentation that sandbox tenants were in scope, or did I just miss that somehow? That sandbox tenant doesn't have rights to customer facing data, based on conversations with our developers.
Can someone please confirm?
Yes, sandbox tenant is also in scope, this was added to the FAQ a few weeks ago:
It was not documented in the inital guidance in July, so this might be the reason it was missed.