Skip to content

SharePoint Online Connector Overview

The SharePoint Online connector allows you to access and analyze data. Of that stored data, you are able to structure and classify it.

Microsoft Teams Support

The SharePoint Online connector supports gathering permissions, monitoring activities, and classifying information being stored in Teams sites and channels.

  • Files transferred through Teams chats are viewable under the Team site > Shared Documents > General.

  • Files transferred through private chats are placed under the initiating user's OneDrive for Business Personal Drive and are managed by the Data Access Security OneDrive for Business Application.

SharePoint Online Connector Installation Flow Overview

To install the SharePoint Online connector:

  1. Configure all the prerequisites.
  2. Add a new SharePoint Online application.

Permissions Collection Operation Principles

CSOM

Data Access Security SharePoint Online permissions collection and crawling uses SharePoint Client-Side Object Model (CSOM).

Azure Identity Collector

The permissions collection task queries SharePoint Online for the existing Role Assignments to determine object permissions. An Azure Identity Collector must be configured to map the permissions to users and groups from the Azure Active Directory.

Crawl level: Folder vs File

By default, permissions are analyzed to the folder level, but they can also be analyzed on the file level. If permissions are analyzed on the file level, the system will only display uniquely managed files in the Business Resource Tree. Refer to Adding a SharePoint Online Application for information on analyzing file-level permissions.

Collecting Data from an External Application

The list below describes the high level installation process required to collect and analyze data from an external application. Most of these should already be set up in your Data Access Security installation.

  1. Install one or more Data Classification central engine using the server installer
  2. Install one or more Permission Collection central engines using the server installer
  3. Create an Application in Data Access Security from the Business Website. The application is linked to your installed central engines.
  4. Add an Activity Monitor to collect activities for this application

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.