Whether it is on-premises or the cloud, the most important question of who has access to what has to be always answered by Admins and IT managers, especially during Compliance and Security Audit. When it comes to Office 365, this question is even more significant as end users share their mailboxes and data for various business reasons. Most of data security breaches happen due to indiscriminate accesses given to users and failing to remove these accesses when users leave or move to a different department in the organization. Accesses may happen due to group memberships, sharing of mailboxes and Public Folders, sharing of One Drive content and so on. The permission levels, such as Full Access to a mailbox, determine the vulnerability to a security breach. Any Office 365 environment needs to be audited for security to determine who has access to what and whether such accesses have been authorized or not.
Security Impact Report:
The Security Impact report in Vyapin Office 365 Management Suite shows who has access to which mailboxes, public folders, One Drive content along with other related information such as Group memberships and administration roles that lets you analyze the security implications of users’ access rights, roles and group memberships within Office 365. This report shows information about Group Membership, Distribution Group Membership, Administration Roles, Mailbox Access, Shared Mailbox Access, Public Folder Access and Licenses assigned for users.
This is a must have report when a user is de-provisioned from Office 365 or when the user is moved to a different division or when there is a suspected security breach due to a user. You may also document all user accesses, roles and membership for all users and groups in your Office 365 for Security monitoring and Compliance purposes.
Office 365 Group Membership:
A user can be assigned as a member of one or more groups. The groups for which a user is a member of is displayed in this report. One can find information such as Group Name to which a user belongs to, Group Type, Member Name, Member Type and E-mail Address here.
Office 365 Distribution Group Membership:
A user can be assigned as a member of one or more distribution groups. The distribution groups in which a user is present is displayed in this report. Information such as Distribution group name to which a user belongs to, Total number of members, Member Name, Alias and E-mail Address here.
Office 365 Administration Roles:
A user can be assigned an Administration role. The Administration roles a user has been assigned is displayed in this report. Information such as the name of the Role, Member Name, Role Member Type and E-mail Address are displayed here.
A user can be assigned Full Access, Send As and Send on Behalf permissions to another user’s mailbox. The list of mailboxes to which a user has access to is displayed in this report. Information such as Mailbox Name, Mailbox E-mail Address, Identity, User E-mail Address and Access Rights here.
Office 365 Shares Mailbox Access:
A User can be assigned Full Access and Send As permissions to shared mailboxes. The list of shared mailboxes a user has access is shown in this report. Information such as Mailbox Name, Mailbox E-mail Address, Identity, User E-mail Address and Access Rights here.
Office 365 Public Folder Access:
A user can be assigned permissions to Office 365 Public folders. Public folder permissions such as Reviewer, Owner, Editor, Author, Contributor etc. The list of public folders for which a user has access is shown here. Information such as Folder Name, Folder Path, Identity, User E-mail Address and Access Rights here.
OneDrive Access rights Report for Users:
OneDrive Report for Users shows the access rights of a user to other users’ folders and files in OneDrive. Information such as Folder or File Name, Folder or File URL, Permission Type, Permission Level, Author, Editor and Size (in MB) here.
To find out more about Vyapin Office 365 Management Suite, please visit – http://vyapin.com/products/office365