SharePoint & OneDrive · Advanced Management
SharePoint Advanced Management Administrator
Manages SharePoint Advanced Management (SAM) features including data access governance, content lifecycle management, and advanced access controls.
Scope: Organization-wide advanced SharePoint governance
Permissions
- Data access governance - View oversharing and sensitivity reports
- Site lifecycle - Manage inactive site policies
- Block download - Apply download restrictions to sites
- Conditional access - Configure authentication contexts for sites
- Restricted site creation - Control who can create sites
- Catalog management - Organize sites into governance groups
Common use cases
- Preparing for Copilot deployment
- Reducing oversharing and data exposure
- Managing inactive and stale sites
- Implementing advanced access controls
Best practices
- Review data access governance reports regularly
- Set up lifecycle policies for inactive sites
- Use catalog management for governance at scale
- Combine with sensitivity labels for protection
Security considerations
- Access to sensitive data exposure reports
- Can block access to sites organization-wide
- Changes affect all users
- Data access governance reveals oversharing risks