MC1197128 – M365 Change Digest

One-line summary

A new Permissions report in SharePoint admin center lets admins see all sites a user can access, detailing direct or group-based access; rollout starts mid-December 2025.

Similar updates

Details

RoadmapIds

492621

Summary

A new Permissions report in the SharePoint admin center (under Data access governance) will show which sites a user can access, including direct or group-based permissions. Rolling out worldwide from mid-December 2025 to mid-January 2026, it requires no configuration and aids permission reviews.

Platforms

Web

Body (from Message Center)

[Introduction]

We’re introducing a new Permissions report in the SharePoint admin center under Data access governance. This report helps SharePoint admins quickly identify which sites a specific user can access, including whether access is granted directly or through group membership. This feature supports investigations and permission reviews, especially before assigning Copilot licenses.

This message is associated with Roadmap ID 492621.

[When this will happen:]

General Availability (Worldwide, GCC, GCCH, DoD): Rollout begins mid-December 2025 and completes by mid-January 2026.

[How this affects your organization:]

Who is affected: SharePoint administrators managing site permissions and access.
What will happen:
- A new Permissions report will be available in the SharePoint admin center under Data access governance.
- The report lists all SharePoint sites a user can access, including whether access is full-site or limited to sections.
- Access details include whether permissions were granted directly or via group membership.
- This feature is enabled by default; no additional configuration is required.

[What you can do to prepare:]

Review your current site permissions configuration to understand potential exposure.
Notify your SharePoint administrators about the new portal-based access report.
Update internal documentation and workflows to reflect this change.

Learn more: Discover sites accessible by a given user with the snapshot report

[Compliance considerations:]

No compliance considerations identified, review as appropriate for your organization.

Raw JSON (for debugging)

Expand/collapse the full payload below.

Show/hide raw

{
  "snapshot_item": {
    "action_required_by": null,
    "ai_action_required_by": null,
    "ai_actions": [
      "Review current site permissions",
      "Notify SharePoint admins",
      "Update internal documentation"
    ],
    "ai_master_tags": [],
    "ai_model": "gpt-4.1",
    "ai_summary": "A new Permissions report in SharePoint admin center lets admins see all sites a user can access, detailing direct or group-based access; rollout starts mid-December 2025.",
    "ai_topics": [
      "SharePoint",
      "Copilot"
    ],
    "category": "stayInformed",
    "details_map": {
      "Platforms": "Web",
      "RoadmapIds": "492621",
      "Summary": "A new Permissions report in the SharePoint admin center (under Data access governance) will show which sites a user can access, including direct or group-based permissions. Rolling out worldwide from mid-December 2025 to mid-January 2026, it requires no configuration and aids permission reviews."
    },
    "id": "MC1197128",
    "importance": 1,
    "is_major_change": false,
    "last_modified": "2025-12-15T20:09:34Z",
    "ms_products": [
      "SharePoint"
    ],
    "platforms": "Web",
    "roadmap_ids": [
      "492621"
    ],
    "services": [
      "SharePoint Online"
    ],
    "severity": "normal",
    "tags": [
      "New feature",
      "Admin impact"
    ],
    "title": "New permissions report available in SharePoint admin center"
  }
}