Unifize Knowledge Base
  • Quickstart
    • Welcome to Unifize!
  • Getting started
    • Setting up your Unifize account
      • Signing up with invite link
      • Logging in with email
    • Quickstart demo
    • Key features & navigation
      • Records
      • Conversations
      • Checklists
    • First steps for new users
      • Creating a new record
      • Creating records from inbound email
      • Filling checklist metadata
      • Linking related records
      • Sharing conversations as email
      • Sending and receiving emails in Unifize
      • Inviting people
      • Changing your preferred language
      • Filtering records in My Inbox
      • Generating PDF reports
      • Creating custom reports
      • Creating custom dashboards
  • Troubleshooting & support guide
  • Platform Help
    • Definitions
      • Process
      • Record
      • Conversation
      • Report
      • Chart
      • Checklist
      • Org
    • Navigating the platform
      • Profile
      • My Inbox
      • Manage
      • Homescreen
      • Contacts
      • Direct Messages
      • Dashboard
    • Data & process management
      • File Management
        • Using SharePoint on Unifize
      • Checklists & Forms
      • Rich text in checklist
      • Working with records
        • Due dates & priorities of a record
    • User & role management
      • Understanding roles & access
      • Managing permissions
      • Deactivating users
      • Team & organization
    • Mobile & web accessibility
      • Unifize Lite
      • Mobile app
      • Web app vs Unifize Lite
    • Security, compliance & infrastructure
    • Personalizations
      • Set your profile picture
      • Reset your Passwords
      • Customizing Homescreen
      • Set your email notification preferences
  • Product Help
    • Unifize Document Management System (DMS)
      • Document Control
      • Change Control
      • Training Management
      • Onboarding guide for DMS
      • Troubleshooting & support guide for DMS
  • Configure & Admin
    • Multi-language translation support
      • Enabling and configuring language support
      • Managing user language preferences at scale
      • Using the translation editor to customize UI
    • Customization & configuration
      • Configuring processes
      • Configuring revision fields
      • Configuring approval workflows
      • Configuring reminders on processes
      • Checklist layout settings
      • Custom language settings
      • Creating a chart from reports
      • Configuring Microsoft Office 365
        • Configuring SharePoint on Unifize
        • Permissions required for SharePoint
  • Developer Documentation
    • Introduction
      • Concepts & terminologies
    • Authentication
      • App management
      • App tokens
    • Usage
      • Fair usage policy
      • Testing environment
      • Quickstart
    • API Reference
      • Applications
      • Processes
      • Records
      • Field values
  • RELEASE NOTES
    • February 2025
    • March 2025
    • April 2025
Powered by GitBook
On this page
  • Permissions Required in SharePoint for Unifize Integration
  • 1. Permissions Needed to Integrate SharePoint with Unifize
  • 2. SharePoint Permissions Required for Using the Integration
  • 3. Microsoft 365 Permissions for Supporting Features
  • 4. Ongoing Access & Token Management
  • Summary Checklist
  • Pro Tips
Export as PDF
  1. Configure & Admin
  2. Customization & configuration
  3. Configuring Microsoft Office 365

Permissions required for SharePoint

Permissions Required in SharePoint for Unifize Integration

Unifize’s integration with SharePoint and Microsoft 365 enables users to seamlessly access, manage, and collaborate on documents within a unified workspace. To ensure secure and functional operation, both SharePoint permissions and Microsoft 365 permissions are required. Here's a complete breakdown of the access levels necessary.

1. Permissions Needed to Integrate SharePoint with Unifize

To enable integration at the organizational or tenant level, admin-level access is required. This is necessary for Unifize to authenticate, connect, and interact with SharePoint resources.

Required Permissions (Admin Consent Scope):

  • Microsoft Graph API permissions:

    • Sites.ReadWrite.All → Allows Unifize to read and write to all site collections on behalf of the signed-in user.

    • Files.ReadWrite.All → Enables full access to all files the user has access to.

    • User.Read → Grants read access to the user's profile.

    • offline_access → Allows Unifize to maintain access using refresh tokens even when the user is offline.

These permissions need to be granted by a Microsoft 365 Global Administrator during the initial connection setup.

2. SharePoint Permissions Required for Using the Integration

Once integration is set up, each Unifize user interacting with SharePoint must have appropriate permissions within the SharePoint site or document library. These are needed for accessing, editing, uploading, or collaborating on documents.

Common SharePoint Permission Levels:

Permission Level
Required For
Scope

Read

Viewing linked documents

Library or Folder

Contribute

Uploading new documents, editing existing ones

Library

Edit

Managing document metadata, versioning

Library

Full Control

Site admin operations, managing permissions

Site (Admin only)

Users will see permission errors inside Unifize if their SharePoint roles do not match the operation they’re trying to perform (e.g., upload, rename, lock/unlock files).

3. Microsoft 365 Permissions for Supporting Features

To enhance collaboration using tools like Word, Excel, and Teams inside Unifize, users need the following permissions at the Microsoft 365 level:

Required Permissions (User-level):

  • Microsoft 365 License:

    • Ensure users are licensed for SharePoint Online and Office Online (Word, Excel, etc.)

  • Teams Integration (optional):

    • Chat.ReadWrite and Teams.ReadBasic.All if Teams chat or group-based workflows are used within Unifize

4. Ongoing Access & Token Management

Unifize uses OAuth2 and Microsoft Identity Platform for secure access:

  • Tokens are scoped to the signed-in user

  • Permissions are enforced based on what the user has in Microsoft 365 and SharePoint

  • Admin consent is required only once unless permissions change

Summary Checklist

Action
Role Required
Permissions

Initial Integration Setup

Microsoft 365 Global Admin

Sites.ReadWrite.All, Files.ReadWrite.All, offline_access

Daily Use of SharePoint via Unifize

End User

SharePoint site-specific (Read, Contribute, Edit)

Office 365 Document Editing

End User

Valid license for Office Online

Admin Management of Files

SharePoint Admin or Site Owner

Full Control

Pro Tips

  • Use SharePoint permission inheritance carefully to avoid unwanted access escalation.

  • If users report access errors in Unifize: check both SharePoint library permissions and their Microsoft 365 license.

  • Maintain a least-privilege approach: grant only what is necessary per role.

PreviousConfiguring SharePoint on UnifizeNextIntroduction

Last updated 5 days ago