Root Permission Drift Detection
Monitor SharePoint permissions across all your customers
Clearview scans down to folder and file level and reports only rights that deviate from the root permissions of each site.
Tenants
New Tenant
Azure App Setup (automated)
Connect to the customer's Microsoft tenant, then create a dedicated scan app automatically.
- Click Connect Microsoft and approve admin consent for the customer tenant
- Created scan app receives SharePoint application permission:
Sites.FullControl.All
Azure App Setup (manual)
Create a dedicated Azure app registration in the customer's tenant and grant it SharePoint access.
- Open Azure Portal and go to Entra ID → App registrations → New registration.
- Fill in a name (e.g. Clearview Scan App), select Single tenant, click Register.
- Copy the Directory (tenant) ID and Application (client) ID from the Overview page.
- Go to API permissions → Add → SharePoint → Application permissions, add
Sites.FullControl.All. - Click Grant admin consent.
- Go to Certificates & secrets → New client secret, copy the Value immediately.
| Name | Tenant ID | Client ID | Auth | Added | Actions |
|---|---|---|---|---|---|
| No tenants configured yet. | |||||
Public Certificate
Upload this certificate in Azure Portal → App registrations → [your app] → Certificates & secrets → Certificates → Upload certificate.
Start New Scan
Async job queueTenant
Microsoft App Credentials
Scan Jobs
Auto refresh: on
| Job ID | Tenant | Source | Status | Targets | Items | Updated | Actions |
|---|---|---|---|---|---|---|---|
| No jobs yet. | |||||||
Selected Job Details
No selection
Select a job to inspect targets and deviations.
Targets
| URL | Status | Attempts | Error |
|---|---|---|---|
| No job selected. | |||
Permission Deviations
| Site | Object | Type | Principal | Role | Delta |
|---|---|---|---|---|---|
| No deviation data yet. | |||||