SharePoint & OneDrive · Tenant Administration
Global Reader (SharePoint)
Read-only access to SharePoint admin center settings and configurations. Cannot make changes but can view all settings.
Scope: Organization-wide read-only access to SharePoint settings
Permissions
- SharePoint admin center - View all settings and configurations
- Sites - View site details and properties
- Sharing settings - View organization-wide policies
- Storage - View storage usage and quotas
- Reports - Access SharePoint usage reports
Common use cases
- Auditing SharePoint configuration
- Compliance reviews and assessments
- Executive dashboard access
- Troubleshooting without change rights
Best practices
- Assign to auditors and compliance officers
- Use for monitoring and reporting needs
- Combine with service-specific reader roles as needed
Security considerations
- Can view all tenant configuration details
- May see sensitive organizational settings
- No ability to make changes limits risk