This article explains how to create Access Review policies and apply them to your Microsoft Teams, Microsoft 365 Groups, sites, and OneDrive in SysKit Point.

Create and Apply Access Review Policies

Access Review in SysKit Point is enabled through Access Review policies applied to Microsoft Teams, Microsoft 365 Groups, sites, and OneDrive in SysKit Point.

Access Review policies in SysKit Point enable you to define the following settings of an Access Review:

  • the scope of the Access Review - you can choose to review content or membership, or both, decide if you're only interested in shared content and guest users, or maybe want only to see the content down to the folder level
  • who should perform the review - depending on the workspace type, you can select between various groups of users with privileged access, such as team owners, site admins, primary administrators, etc.
  • the Access Review recurrence frequency - not all workspaces in a Microsoft 365 environment are equally important; therefore, you can choose to repeat the Access Review process once for the most important workspaces, or up to once in a year for the workspaces that are not frequently changed or used or don't contain sensitive data

Once created, policies need to be applied to Microsoft Teams, Microsoft 365 Groups, sites, and OneDrive, in order to start the automated Access Review process in SysKit Point.

In the sections below, you can find detailed instructions on creating and applying the Access Review policies in SysKit Point.

Create Access Review Policy

To start creating Access Review policies, navigate to Settings > Governance > Automated Workflows.

By default, SysKit Point offers a predefined Access Review policy - All users and shared files (1).

Please note! Predefined Access Review policy is not applied to any resources and will not trigger an automated Access Review.

Here you can choose to:

  • edit an existing policy (2) or
  • delete an existing policy (3)
  • create a new policy (4)

Start to create a new Access Review policy by clicking the Create New Policy button (4). The following dialog opens, enabling you to choose the policy type.

Click Access Review (1) to continue.

The Create New Policy dialog opens where you can define the following Access Review options:

  • Policy Name (1)
  • Access Review Recurrence Frequency (2) - increments of 1 month are available, up to 12 months
  • Memberships (3) - when enabled, you can choose to review:
    • All Memberships - Access Review shows all users from your organization as well as guest users
    • Guest User Membership - Access Review shows Guest users only
  • Content (4) - when enabled, you can choose to review:
    • All Content - Access Review shows all content shared with internal and external users
    • Externally Shared Content - Access Review shows only the content shared with external users
    • Content Level (5) - choose content level to review:
      • subsites
      • document libraries
      • folders
      • files & folders
  • Description (6) - shows summary info depending on selected options regarding memeberships (3) and content (4)
  • Advanced Settings (7) - define who will perform the access review
  • Save (8) - click to Save the Access Review Policy when done with the configuration

Advanced Settings option (7) enables you to define which groups of users are responsible for the Access Review. The following groups can be defined based on the workspace type:

  • SharePoint Site (1)
    • Primary Admin/Owner
    • Site Admins Group
    • Site Owners SharePoint Group
  • Microsoft 365 Groups/Microsoft Teams (2)
    • Team/Group Owners
    • Site Admins Group
  • Microsoft Teams Private Channels (3)
    • Team/Group Owners
    • Channel Owners
  • OneDrive (4)
    • Primary Admin/Owner
    • Site Admins Group

Apply Policies

To apply created Access Review Policies, navigate to Settings > Governance > Automated Workflows and click the Apply Policy button (1).

The Apply Policy report opens, enabling you to apply created policies to your Microsoft Teams, Microsoft 365 Groups, OneDrive, and sites. To do so:

  • select (1) one or multiple resources; you can easily filter them by applied policies with the help of top tiles (2)
  • click the Apply Policy action (3)

The Apply Access Review Policy dialog opens where you can:

  • choose one of your review policies (1)
  • confirm your selection by clicking the Save button \2)

Next Steps

Once you're done assigning policies to Microsoft Teams, Microsoft 365 Groups, OneDrive, and sites, you can: