Home / Platform / SharePoint Permission Management

SharePoint Permission Management

Find what's overshared. Fix it. Prove it.

Crawl every SharePoint site, OneDrive, and sharing link across every tenant — map the permissions, surface the risks, and revoke the bad ones in bulk.

"Anyone with the link" sharing on customer financials. Broken inheritance hiding stale external access. Permission audits done manually with PowerShell and Excel for every customer.

Book a demo See pricing

control-plane / sharepoint / risks

47 high-risk shares

Across 12 tenants · last crawl 6m ago

↑ 4 today

Finance / Q4-Reports

14 files · 1 external

Anyone link

HR / Payroll-2026

3 users · supplier.com

External access

Sales / Proposals

22 items · broken inheritance

Org-wide

Engineering / Designs

6 items · expires 2026-06

Anyone link

4 selectedRevoke all

What's included

Every shipping capability in SharePoint.

Below is the complete capability list for this app — not a roadmap. If a capability is on this page, it's in the product today.

Site & drive crawler

Crawl SharePoint sites and OneDrive drives across every tenant. Build permission snapshots.

Full permission map

Map every user, group, and external principal to every file, folder, and site.

Sharing-link inventory

Enumerate every link by type: Anyone, Organization, Specific people, Anonymous.

Permission inheritance tracking

Identify broken inheritance and unusual permission grants.

Custom risk rules

Define organisation-specific sharing risk rules with thresholds (e.g. "Anyone link on a folder named 'payroll'").

Risk assessment dashboard

Surface the highest-risk shares first, ranked by your custom rules.

Bulk revocation

Revoke multiple sharing links or permissions in a single action.

Targeted remediation

Revoke individual links, modify permissions, restore inheritance from the UI.

Live Graph browsing

Real-time browse of sites, drives, and items without waiting for a snapshot.

Permission history

Track who changed what and when.

Scheduled permission reports

Generate permission reports on a cron schedule, delivered by email.

Customer-branded reports

Per-tenant logo, colours, footer for client-deliverable reports.

Built for

Three roles get the most out of it.

We design every screen with one of these three users in mind. If that's not you, you'll still benefit — we just won't have built it for you.

Compliance Manager

Owns external-sharing posture; needs evidence customers will actually understand.

Information Governance Lead

Maintains the policy for what can be shared with whom, then proves it's enforced.

MSP Customer Success

Walks customers through their permission posture with a branded report on QBR day.

How it fits

Pairs naturally with the rest of the platform.

Modules share tenants, tags, and templates. Activity from one shows up in the others.

£30/tenant/month

Identity, Threat, Detection & Response

The user behind a sharing risk often shows up in identity events too.

Explore

£25/tenant/month

Graph Explorer & Custom Reporting

Custom reports across permission snapshots.

Explore

£25/tenant/month

Device, User & Group Management

Tie the user behind a risky share back to their devices.

Explore

Best value · save £20/tenant/month

Need everything? See the All-Apps bundle (£85/tenant/month).

Activate every shipping app in one step. Predictable per-tenant cost.

See the bundle

SharePoint pricing

£25per tenant, per month

Billed monthly per Microsoft 365 tenant managed. No setup fees. Mix-and-match with other apps or take the All-Apps bundle.

See comparison Book a demo

See SharePoint on a real tenant.

30-minute demo. No prep needed. We'll bring the tenant.

Book a demo