Microsoft Purview · Information Protection
Content Explorer List Viewer
View file metadata and classifications in list format without viewing actual file content.
Scope: Content Explorer metadata access without file viewing
Permissions
- View Content Explorer file listings
- See file metadata (name, location, owner, size)
- View applied sensitivity labels
- See sensitive information type matches
- Filter and search classified content
- Export file lists for reporting
Common use cases
- Auditing label application coverage
- Identifying unlabeled sensitive files
- Generating classification reports
- Validating auto-labeling effectiveness
Best practices
- Use for classification gap analysis
- Identify high-risk unlabeled content
- Monitor label application trends
- Coordinate with Content Viewer role for deeper review when needed
Security considerations
- Cannot view file content - reduced privacy risk
- Metadata can still reveal sensitive information
- File lists may show confidential project names or locations
- Export capabilities should be monitored
Common questions
When should I assign the Content Explorer List Viewer role?
Assign Content Explorer List Viewer when you need to: Auditing label application coverage; Identifying unlabeled sensitive files; Generating classification reports; and Validating auto-labeling effectiveness. It is part of Microsoft Purview and should be granted as a least-privilege alternative to broader roles like Global Administrator.
What can someone with the Content Explorer List Viewer role do?
The Content Explorer List Viewer role grants permissions including: View Content Explorer file listings; See file metadata (name, location, owner, size); View applied sensitivity labels; See sensitive information type matches; Filter and search classified content; and Export file lists for reporting. See the Permissions section above for the full list.
What are the security risks of the Content Explorer List Viewer role?
Key considerations when assigning Content Explorer List Viewer: Cannot view file content - reduced privacy risk; Metadata can still reveal sensitive information; File lists may show confidential project names or locations; and Export capabilities should be monitored. Review the Security considerations section before assignment, and pair with Privileged Identity Management (PIM) for just-in-time access where possible.