AvePoint Learn
Request article
Contact support
Request article
Contact support
English

Home > Configure Global Settings

Export to PDF

Configure Global Settings

On the Global settings page, the following settings are configurable.

Configure Security Settings

On the Security page, you can click the toggle button to the right of Restrict project creation to restrict Business Owners and Project Leads from creating projects directly in Confide. All new projects must be submitted via service requests in the Cloud Governance portal.

Click the toggle button to the right of Task encryption to allow users to enable encryption of comments in task requests when creating projects.

Click the toggle button to the right of IP address restriction to limit external sharing by IP address.

  1. Select Block IP addresses or Allow IP addresses to specify whether to configure a blocked list or an allowed list of IP addresses.

  2. Enter IP addresses in the Specific IP addresses text box and separate them with a semicolon, or configure the IP address range by entering a start IP address and an end IP address. You can also click the Add button to add more ranges.

  3. Click Save to save the IP address list.

On the Logo customization page, you can customize a light logo and dark logo to be applied to the end user portal.

  • A light logo is used in the navigation pane of Confide.

  • A dark logo is used in the Confide pages of which the background color is white.

Click Upload in the Light logo and/or Dark logo section, and browse to the image file that you want to set as Confide logo. You can click the Example link to view the usage location of the logo.

The customized dark logo can be directly applied to all Confide emails sent to end users, and the page accessed by clicking the shared anonymous links.

NOTE

To use the customized dark logo on the end user sign-in page, or use the customized light logo in the navigation pane of Confide, you need to contact AvePoint support for assistance after you have uploaded the custom logos.

If the logo does not meet your requirement, click Clear to clear the logo. The default logo of Confide will be used again.

Configure Email Notification Settings

On the Email configuration page, you can select where the email notifications will be sent from.

  • The default email address – With this option selected, email notifications will be sent from an email address of AvePoint.

  • Your own email server and email address – Select this option if you want to use your own email server and address, and configure the following information:

    • Email server – Enter the server address you want to use.

    • Port – Enter the port of the server.

    • Sender‘s display name – Enter the display name of the email sender you want to use.

    • Sender‘s email address – Enter the email address of the email sender.

    • Username – Enter the username of the email sender.

    • Password – Enter the email password of the email sender.

    • Authentication – Select SSL authentication, Secure password authentication, or both for authentication.

Click Save to save your configurations. In the Send a test email popup, you can click Send to send an email to the email sender to validate the email settings.

Authorization

Before business users can use Confide, Administrators must globally authorize the AvePoint Confide with SharePoint Embedded application.

Refer to the following steps and required permissions for Administrator’s authorization:

  1. Click Authorization under Global settings.

  2. Click Authorize in Step 1 of the Authorization page, and click OK in the Authorize prompted message.

  3. Sign in with a Microsoft 365 Global Administrator account.

  4. Review the requested permissions on the Permissions requested page.

    APIPermissionTypePurpose
    Microsoft Graphemail
    (View users' email address)    		DelegatedRead users' primary email addresses.
    Microsoft Graphoffline_access
    (Maintain access to data you have given it access to)    		DelegatedMaintain users’ access to data and refresh the token silently.
    Microsoft Graphopenid
    (Sign users in)    		DelegatedSign users in and read basic user profile information.
    Microsoft Graphprofile
    (View users' basic profile)    		DelegatedRead basic user profile information, including picture, username, and email address.
    Microsoft GraphUser.Invite.All
    (Invite guest users to the organization)    		DelegatedInvite guest users to the current organization.
    Microsoft GraphUser.Invite.All
    (Invite guest users to the organization)    		ApplicationInvite guest users to the current organization.
    Microsoft GraphUser.Read
    (Sign in and read user profile)    		DelegatedRetrieve signed-in user information.
    Microsoft GraphUser.Read.All
    (Read all users' full profiles)    		DelegatedRetrieve and display user information.
    Microsoft GraphUser.Read.All
    (Read all users' full profiles)    		ApplicationRetrieve and display user information.
    Microsoft GraphGroup.Read.All
    (Read all groups)    		DelegatedRetrieve Microsoft 365 Groups.
    Microsoft GraphGroup.Read.All
    (Read all groups)    		ApplicationRetrieve Microsoft 365 Groups.
    Microsoft GraphFileStorageContainer.Selected
    (Access selected file storage containers)    		DelegatedManage containers.
    Microsoft GraphFileStorageContainer.Selected
    (Access selected file storage containers)    		ApplicationManage containers.
    SharePointContainer.Selected
    (Access selected file storage containers)    		DelegatedManage containers.
    SharePointContainer.Selected
    (Access selected file storage containers)    		ApplicationManage containers.

  5. Click Accept. You will be redirected back to the Authorization page after the authorization is complete.

To use multi-geo locations, add an identity to external users invited via Confide, or apply sensitivity labels to project containers or files, you need to authorize the AvePoint Confide with SharePoint Embedded Pro application with the permissions required for these advanced features.

  1. Click Authorization under Global settings.

  2. Click Authorize in Step 2 of the Authorization page, and click OK in the Authorize prompted message.

  3. Sign in with a Microsoft 365 Global Administrator account.

  4. Review the requested permissions on the Permissions requested page.

    APIPermissionTypePurposeLast update
    Microsoft GraphUser.ReadWrite.All
    (Read and write all users’ full profiles)    		ApplicationAdd identity to external users invited via Confide.
    Microsoft GraphSites.Read.All
    (Read items in all site collections)    		ApplicationRetrieve locations of tenants.
    Microsoft GraphFiles.ReadWrite.All
    (Read and write files in all site collections)    		ApplicationManage all files in all site collections without a signed in user.June 2025
    Microsoft GraphFileStorageContainer.Selected
    (Access selected file storage containers)    		ApplicationUtilize the file storage container platform to manage containers, without a signed-in user.June 2025
    Microsoft GraphInformationProtectionPolicy.Read.All
    (Read all published labels and label policies for an organization.)    		ApplicationRead published sensitivity labels and label policy settings for the entire organization or a specific user, without a signed in user.June 2025
    Microsoft GraphUser.Read
    (Sign in and read user profile)    		DelegatedRetrieve the information of currently signed in user.
    Microsoft Graphopenid
    (Sign users in)    		DelegatedSearch for users and retrieve user information.June 2025
    SharePointSites.FullControl.All
    (Have full control of all site collections)    		ApplicationManage site collections without a signed in user.June 2025

  5. Click Accept. You will be redirected back to the Authorization page after the authorization is complete.

Geo Locations

On the Geo locations page, you can define the container settings for project and share center separately if your tenant is a multi-geo environment.

  • Project container – Define how to create containers for projects.

    • Select All project containers are created in following location and select a location to create project containers in this specific location.

    • Select Allow project leads to specify the location when creating a project and select the available locations for project leads. Project leads can select the desired location when creating new projects.

  • Share center container – Select a location from the drop-down list for the share center container.

Click Save to save the geo locations.

NOTE

This is only available when you have authorized the advanced features on the Authorization page.

Define File Types to Block Upload

On the File upload page, you can click the toggle button to the right of Block upload of specific file types, and enter the file types that you want to prevent from being uploaded in both project libraries and the share center in the text box. Enter each file extension on a separate line, ensuring no spaces, periods, or other punctuation are included.

Click Save to save the file types.

Configure Sensitivity Label Settings

On the Sensitivity label page, click the toggle button to the right of Project container level sensitivity label to enable sensitivity label for project container level.

  • Apply a sensitivity label to project containers when creating projects – Select this option and select a sensitivity label from the drop-down list if you want to apply the sensitivity label to all project containers. The sensitivity label will be applied when projects are created.

  • Allow Project Lead to choose a sensitivity label when creating a project – Select this option and select one or multiple sensitivity labels to define the sensitivity label list for Project Leads. When a Project Lead creates a project, they can select a sensitivity label from the list to apply to the project container.

Click the toggle button to the right of File level sensitivity label to enable sensitivity label for files.

  • Apply a sensitivity label to files uploaded to project libraries – Select this option and select a sensitivity label from the drop-down list if you want to apply the selected sensitivity label to files that are uploaded to project libraries.

  • Apply a sensitivity label to files uploaded to the share center – Select this option and select a sensitivity label from the drop-down list if you want to apply the selected sensitivity label to files that are uploaded to the share center.

Click Save to save the sensitivity label settings.

Manage File Level Retention Policies

On the File retention page, click Create retention policy in the upper-right corner. Complete the following settings and click Save to create the file level retention policy.

  • Name and description – Enter a name and optional description for the retention policy.

  • Retention settings – Configure retention settings for this policy.

    • Set a specific period to retain files. After this retention period, files will be automatically deleted.

    • Select a criterion to start the file retention, the created time in Confide or last modified time. When the created time or last modified time of a file reaches this retention period, the file will be automatically deleted.

For the created retention policies, you can edit them individually by clicking Edit or delete them by clicking Delete.