SharePoint: Enterprise Application Insights for SharePoint sites

🚨 The Signal: A new report in SharePoint Advanced Management reveals all third-party apps accessing SharePoint sites, their permissions, and usage. This enhances visibility for securing site access and managing application risk.

The Impact

SharePoint and Security teams are affected by new visibility into third-party application access, reducing the risk of unauthorized data exposure.

• SharePoint Admins: Gain new tools to identify and manage third-party app risks.
• Security Teams: Improved visibility into application permissions and usage for risk assessment.
• Compliance Officers: Better data for auditing and reporting on third-party access to sensitive data.
• Data Owners: Reduced risk of unauthorized access to SharePoint content by third-party applications.

The Action

1. Navigate to SharePoint admin center > Reports > Enterprise Application Insights.
2. Review the report to identify all third-party applications with access to SharePoint sites.
3. Assess reported application permissions against business requirements.
4. Investigate applications with high request counts or excessive permissions.
5. Revoke unnecessary permissions or remove unused applications via Entra ID App registrations.

Domain: SharePoint · Impact: medium · Workload: SharePoint · Essential Eight: Restrict Administrative Privileges · ISM: ISM-0445, ISM-1175, ISM-1380, ISM-1507, ISM-1508, ISM-1509, ISM-1647, ISM-1648, ISM-1650, ISM-1686, ISM-1688, ISM-1689, ISM-1883, ISM-1897, ISM-1898