Level Up

Challenge #9

Secure Sharing with Automatic Guest Expirations

Implement automatic expiration for guest access in SharePoint and OneDrive. Ensure your external collaborations are both productive and secure.

a sign stating access denied

Why?

Collaborating with external partners is vital, yet it brings its own set of security challenges. Granting guest access to SharePoint and OneDrive via file shares, Microsoft Teams invites or related is a common practice, but without proper controls, it can leave our data vulnerable. By setting automatic expiration for guest access, we add a layer of security that adapts to the dynamic nature of collaboration.

This approach ensures that external partners have access only for as long as they need it, typically recommended for no more than 30 days. After the set period, access expires automatically, reducing the risk of outdated permissions lingering and potentially becoming security loopholes. It’s about creating a secure environment where access is granted judiciously and monitored continuously, aligning with the best practices for data protection.

How?

Configuring automatic expiration for guest access in SharePoint and OneDrive is a straightforward but critical step in enhancing your collaborative security. Here’s how to get that gap closed up.

    Step 1: Go to the Microsoft Sharepoint Admin Center

    On your computer, launch a new browser window (Edge, Chrome), and type in https://admin.microsoft.com/sharepoint and press enter.

    Note: You will require Microsoft 365 administrative credentials – be sure to have the username and password ready.

    Step 2: Adjust Sharing Policies

    Within the Microsoft Sharepoint Admin Center:

    • Look for and select Policies
    • Under Policies, select Sharing
    Step 3: Configure External Sharing Settings
    • Within the Sharing window, find and click More external sharing settings (it’s an expandable menu).
    • Under More external sharing settings, find and enable the setting for Guest access to a site or OneDrive will expire automatically after this many days
    • Once enabled, you can then define the days in which you are comfortable with, ranging from 30 to 730 days.
    • We recommend 30 days

    PS. For bonus points, there are several other settings on this page that can improve security and your Secure Score, such as default permissions for sharing links (view vs. edit), defaults for who can use the links when you share files, and several others. Explore.

    Step 4: Confirm and Save Settings
    • Once you are satisfied with your changes, click Save

    While you’re here…

      Cybersecurity Awareness Month: Boost Your Online Safety with Simple Steps

      Cybersecurity Awareness Month: Boost Your Online Safety with Simple Steps

      Discover the significance of Cybersecurity Awareness Month in October, aimed at boosting online safety through simple actions like updating passwords and enabling two-factor authentication. Learn about its history, key milestones, and impactful campaigns such as “Stop. Think. Connect.” Find out how national efforts and success stories illuminate the path to a more secure digital world for individuals and businesses alike.

      read more
      Unlocking Hidden Power: The Key Role of Training in Maximizing Your Tech Investments

      Unlocking Hidden Power: The Key Role of Training in Maximizing Your Tech Investments

      Imagine investing in a state-of-the-art kitchen and only using the microwave. Absurd, right? Yet, businesses do this with technologies like Microsoft 365, missing out on powerful features due to lack of training. According to Gartner, Shadow IT can consume 30-40% of IT spending, increasing inefficiencies and risks. At Third Octet, our training programs ensure your team fully leverages these tools, unlocking their true potential. Ready to transform your technology use?

      read more