Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            BrandIn permissions overview

            Modified on Mon, 30 Mar at 2:17 PM

            BrandIn connects to Microsoft 365 using delegated Microsoft Graph permissions.  IT administrators can easily accept permissions in the BrandIn admin center. Permissions can then be reviewed and revoked in Entra.


            For the best user experience, we recommend that IT administrators accept the required permissions on behalf of the entire organization using the BrandIn admin center.


            How to accept permissions on behalf of your organization

            1. In the BrandIn admin center, select accept for any permission. A Microsoft permission request popup opens.
            2. Tick “Consent on behalf of your organization” checkbox.
            3. Select Accept.


            Permissions required for all users

            These permissions are required for BrandIn to work. You can accept these permissions on behalf of the entire organization.

            Authentication

            BrandIn uses the Microsoft Authentication Library (MSAL). It uses offline_access, openid, profile, and email by default for authentication and signing in.

            User.Read — View your basic profile

            Allows BrandIn to read basic user details for the signed-in user. Used for user interface personalization.

            Sites.Read.All — Read items in all site collections

            Allows BrandIn to read SharePoint and OneDrive content the signed-in user has access to. Lets users seamlessly access asset libraries stored in SharePoint and OneDrive.


            Administrator permissions

            Only used by BrandIn administrators. These permissions enable advanced administrative functionality and are entirely optional. BrandIn administrators can visit the admin center to request these permissions from IT.


            ℹ️
            For the best user experience, we recommend that IT administrators accept all permissions on behalf of the entire organization.

            Files.ReadWrite — Have full access to your files

            Allows BrandIn to create files and folders in the signed-in user’s OneDrive. Lets admins explore BrandIn’s features in a demo workspace.

            Files.ReadWrite.All — Have full access to all files you can access

            Allows BrandIn to create files and folders in SharePoint and OneDrive locations that the signed-in user can access. Lets admins split large PowerPoint files into individual slides to simplify slide library setup.

            User.ReadBasic.All — Read all users' basic profile

            Allows BrandIn read basic user details such as names and email addresses. Lets admins invite colleagues to BrandIn while displaying their information in the invite interface.


            Related articles


            Was this article helpful?

            That’s Great!

            Thank you for your feedback

            Sorry! We couldn't be helpful

            Thank you for your feedback

            Let us know how can we improve this article!

            Select at least one of the reasons
            CAPTCHA verification is required.

            Feedback sent

            We appreciate your effort and will try to fix the article

            Preview
            0 of 0