AvePoint Knowledge Center
Request article
Contact support
Request article
Contact support
English

    Home > Manage App Profiles > API Permissions Required by AvePoint Apps > Apps for Individual Services > Cloud Backup for Microsoft 365 > Cloud Backup for Microsoft 365 (SharePoint Permissions)

    Export to PDF

    Cloud Backup for Microsoft 365 (SharePoint Permissions)

    When you create a Cloud Backup for Microsoft 365 (SharePoint permissions) app profile in AvePoint Online Services, the AvePoint Cloud Backup forMicrosoft365 (SharePoint Permissions) app will be automatically set up in your Microsoft Entra ID.

    The table below lists the permissions that should be accepted when you authorize the AvePoint Cloud Backup for Microsoft365 (SharePoint Permissions) app.

    APIPermissionTypePurpose
    Microsoft GraphSites.ReadWrite.All(Read and write items in all site collections)ApplicationBack up and restore the OneDrive content.
    Microsoft GraphSites.Manage.All(Create, edit, and delete items and lists in all site collections)ApplicationBack up and restore the lists in OneDrive, and it is required if the SharePoint list has content approval settings enabled.
    Microsoft GraphFiles.ReadWrite.All(Read and write files in all site collections)ApplicationBack up and restore the OneDrive files.
    Microsoft GraphDirectory.Read.All(Read directory data)ApplicationRetrieve your Microsoft 365 tenant information.
    Microsoft GraphUser.Read.All(Read all users' full profiles)ApplicationRetrieve the UPN for the authors or editors.
    Microsoft GraphSites.FullControl.All(Have full control of all site collections)ApplicationBack up some files in specific conditions, such as DLP-sensitive files.
    Microsoft GraphReports.Read.All(Read all usage reports)ApplicationRetrieve data size directly, which improves the efficiency of the Subscription Consumption Report.
    Microsoft Information Protection Sync ServiceUnifiedPolicy.Tenant.Read(Read all unified policies of the tenant)ApplicationRetrieve information of published sensitivity labels from Microsoft 365.
    Office 365 Management APIsActivityFeed.Read(Read activity data for your organization)ApplicationRetrieve activity data in your organization to generate reports.
    SharePoint/Office 365 SharePoint OnlineSites.FullControl.All(Have full control of all site collections)ApplicationRetrieve information of SharePoint Online site collections that are scanned by auto discovery.
    SharePoint/Office 365 SharePoint OnlineUser.ReadWrite.All(Read and write user profiles)ApplicationRetrieve information of Microsoft 365 user profiles related to OneDrive that are scanned by auto discovery.
    SharePoint/Office 365 SharePoint OnlineTermStore.ReadWrite.All(Read and write managed metadata)ApplicationBack up and restore Managed Metadata Service of SharePoint Online site collections and Microsoft 365 Group team sites.
    Windows Azure Active DirectoryUser.Read (Sign in and read user profile)DelegatedSupport signing into Cloud Backup for Microsoft 365 with Microsoft 365 accounts.