Forum Discussion
Site collection admin & confidentiality
Dear all, is there a possibility to prevent site collection admins from actually opening documents in the SharePoint libraries they manage? So they can do all the admin stuff they need to do, but wit...
Andrew HodgesHi Andy, thanks for your reply. We are thinking of using Azure Information Protection to keep admins from watching highly sensitive information. Would that be an option? Kind regards, Frank.
I would ensure that admins only add themselves into Site Collection Admins when they need access - rather than having that access all of the time.
Also, any action any user takes (e.g. read a file, access a site, delete a file, etc.) is logged in the Unified Audit Log as well, so whatever an admin does, will be logged.
Also, any action any user takes (e.g. read a file, access a site, delete a file, etc.) is logged in the Unified Audit Log as well, so whatever an admin does, will be logged.