![]() ![]() Once this is done, we can request an Access token, and use it to query the Graph. To start with, we need to register the application, generate a secret/key and grant permissions for it to be able to enumerate items in all users’ OneDrive for Business sites. Prerequisitesįor the task at hand, the approach we’ve chosen is to use the so-called application permissions model. A more detailed description of all these concepts can be found in the official documentation, and this article is a good starting point. ![]() The application can run in the context of a given user and will get access to whichever resources the user has access to, or run as a background service, without a user context. Those permissions, in turn, need to be authorized by the user running the app, or in some cases by a tenant administrator. As part of the provisioning process, you need to detail the permissions that this app will get over different Graph resources. Authentication happens by obtaining an Access token for a given application, which needs to be provisioned in the tenant beforehand. In a nutshell, to be able to execute Graph calls, you need to authenticate first, and you need to be authorized to perform the operations in question. Which is not to say that there isn’t a learning curve here, and before going over the solution we should introduce some basic concepts. More importantly, Graph calls can be easily made via PowerShell, and in turn, the output can be transformed into objects, requiring only basic programming experience to achieve the task at hand. The Graph can be a very useful tool, even in the hands of a non-developer. Can the Graph API help?Įnter the Graph API, offering a simple, unified model, where different objects, their attributes, and relations to other objects can be queried via straightforward HTTP URIs from a single endpoint. Which is essential before running anyĬode you’ve found online. For an IT Pro like myself, solutions based on these approachesĬan be a bit overwhelming to understand. REST API, but those will only appeal to people with extensive SharePointĭev background. Some moreĮlaborate solutions involve the use of SharePoint Items using this method is impossible, unless you’re exporting and storing pastĪnother alternative, but they clearly misunderstand the goal here. However, as the audit logs only retainĮvents for a limited duration, building a comprehensive inventory of all shared The address of the person a given file was shared with, but also whether the The additional data exposed in the events can reveal not just Office 365 Unified Audit log for any sharingĪctivities. This method, however, will not give you any information about the type of sharing (whether it’s a sharing invitation or anonymous link, for example), and more importantly, it will not give you details as to whom the file was shared with. With the built-in tools, the closest you can get to an actual list is an exportable report, where you have to run an eDiscovery/Content search with the ViewableByExternalUsers keyword to download. To date, Office 365 does not offer any functionality to answer this question. Once you have the URL for a user's OneDrive, you can get more info about it by using the Get-SPOSite cmdlet, and change settings by using the Set-SPOSite cmdlet.Every day I like to browse the different Office 365 communities, and I often run into questions like “how do I list all externally shared files”. The following text provides an example of how the list of URLs in this file should be formatted. ![]() This file contains a list of all OneDrive URLs in your organization. Use a SharePoint admin or global admin account.Īfter the script successfully completes, a text file is created in the location specified by the $LogFile variable in the script. For example, is the Contoso SharePoint admin center URL. The script will prompt you for the SharePoint admin center URL. If you get an error message about being unable to run scripts, you might need to change your execution policies. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |