Problem:

When creating a new environment in the Power Platform Admin Center, admins may unintentionally leave the Security Group field unassigned. Many users do not immediately realize that not choosing a security group means the environment becomes accessible to all users in the organisation’s domain/IT systems. This often leads to accidental overexposure of environments, unexpected user access, and additional remediation work.

Proposed Solution:

Introduce a mandatory warning dialog box that appears whenever an admin attempts to create or update an environment without assigning a security group.

The dialog should clearly state:

“If you do not select a security group, this environment will be available to all users in your organization. Do you want to continue without restricting access?”

The admin must then confirm “Continue” or “Go back to assign Security Group.”

Benefits:

Prevents accidental broad access to environments

Increases admin awareness and reduces misconfiguration

Enhances security posture and governance controls

Reduces remediation workload for IT/Admin teams