Until now, the solution has often revolved around Purview Information Protection, which is undoubtedly a powerful tool for classifying and protecting data. However, for many companies, getting started can feel overwhelming—it requires time, resources, and a thorough effort to implement correctly.
So, what if we had a tool that could quickly provide an overview and ensure that Copilot only works with the right data from the start?
This is where SharePoint Advanced Management (SAM) comes into play. With SAM, companies gain access to a range of powerful tools to:
And it requires remarkably little effort to get started.
With SAM, we can now define rules for the number of owners a site must have. This ensures that all SharePoint sites always have at least two owners, and if an owner leaves the organization, an automated workflow ensures that a new owner is appointed.
Additionally, we can configure sites without owners to automatically be set to "read-only," preventing further changes until a new owner is designated. This guarantees that data is not left without responsibility and that critical content remains managed and protected.
In short, SAM helps organizations keep track of ownership, reduce the risk of orphaned sites, and ensure that data is always under control.
Similar to group expiration policies in Entra ID, SharePoint Advanced Management (SAM) allows us to define rules for handling inactive sites.
With SAM, we can now target all types of sites, including those without an associated Microsoft 365 group. A new feature also allows us to choose different actions for inactive sites:
This provides companies with a controlled way to clean up outdated data while ensuring that valuable information is stored securely and can be accessed again if needed.
With SharePoint Advanced Management (SAM), administrators gain better insight into how data is shared across the organization.
SAM’s reports identify high-exposure sites, such as those where sharing occurs via Anyone-links, broad internal access, or where sensitive files have overly permissive rights. AI-driven insights provide concrete recommendations for improving security, and administrators can initiate a review process where site owners assess and adjust sharing settings to prevent data overexposure.
Monitoring and managing sharing
At first glance, SAM may seem extensive, but in reality, it requires only minimal configuration, which can be set up in an afternoon. The biggest task lies in communication with colleagues—explaining the changes being implemented, what they specifically mean for them, and what responsibility they must take in site reviews.
By subscribing to our newsletter, you will be notified when we host events, get inspiration from case, and much more.
English 
Danish