Veritas Alta™ SaaS Protection Administrator's Guide
- Section I. Introduction to Veritas Alta™ SaaS Protection
- Section II. Administration portal
- Section III. Manage users and roles
- Section IV. Manage searches/eDiscovery/cases
- Section V. Configure policies
- Section VI. Perform restores
- About restore
- Prerequisites for restore
- Restore dashboard
- Restore Exchange Online mailboxes
- Restore SharePoint Online Sites and data
- Restore SharePoint/OneDrive/Teams Sites and data
- Restore Teams chats and Teams Channel conversations
- Restore Audit logs
- Restore Box data
- Restore Google Drive data
- Restore Gmail data
- Restore Salesforce data and Metadata
- Restore Entra ID objects
- Restore Slack data
- Restore data to File server
- Restore options
- Section VII. Perform data share
- Section VIII. Perform data downloading
- Section IX. Add and configure connectors
- About connectors
- About connectors
- Overview of connectors
- Configuring the capture scope
- Configuring credentials
- Apps Consent Grant Utility
- Exchange Online connector
- Adding Exchange Online connectors
- Configuring the capture scope for Exchange connectors
- Configuring the capture scope for Exchange connectors
- SharePoint Online connector
- Teams Sites collections connector
- OneDrive connector
- Teams chat connector
- Audit log connector
- Google Drive connector
- Gmail connector
- Salesforce connector
- Entra ID (Azure AD) connector
- Box connector
- Slack connector
- EML connector
- Managing connectors
- About connectors
- Section X. Perform backups
- Section XI. Backup limitations
- Section XII. Events
- Section XIII. Manage Stors (Storages)
- Section XIV. Manage Scopes
- Section XV. Manage auditing
- Section XVI. Known Issues
API permissions for SharePoint, OneDrive for Business, and Teams Sites Collections
If you use the M365 App Registrations mode to configure connectors for your SharePoint, OneDrive for Business, and Teams Sites Collections workloads, Veritas Alta SaaS Protection must have the API permissions listed in the following table. A single app has all the following permissions assigned to the workload being backed up by the connector.
Table: List of API permissions required for SharePoint, OneDrive for Business, and Teams Sites Collections for backup and restore
Used by Veritas Alta SaaS Protection: | ||||
---|---|---|---|---|
Microsoft Graph | Sites.ReadWrite.All | Read and write items in all site collections. | Allows the app to create, read, update, and delete documents and list items in all site collections without a signed in user. | To fetch list items from lists in SharePoint sites/Teams sites and One Drives during incremental backups. |
Directory.Read.All | Read directory data. | Allows the app to read data in your organization's directory, such as users, groups and apps, without a signed-in user. | To fetch channel information for backup and restore of Teams Wikis. | |
Office 365 SharePoint Online | User.ReadWrite.All | Read and write user profiles. | Allows the app to read and update user profiles and to read basic site info without a signed-in user. | To query user profile service for list of users during backup (applicable only for Basic auth). |
TermStore.ReadWrite.All | Read and write managed metadata. | Allows the app to write enterprise-managed metadata and to read basic site info without a signed-in user. | To backup and restore managed metadata for SharePoint list items. | |
Sites.Manage.All | Read and write items and lists in all site collections. | Allows the app to read, create, update, and delete document libraries and lists in all site collections without a signed in user. | To create SharePoint lists during restore. | |
Sites.ReadWrite.All | Read and write items in all site collections. | Allows the app to create, read, update, and delete documents and list items in all site collections without a signed in user. | To backup, restore, and stub list items SharePoint sites/Teams sites and One Drives. | |
Sites.FullControl.All | Have full control of all site collections. | Allows the app to have full control of all site collections without a signed-in user. | To backup and restore role assignments of objects in SharePoint sites/Teams sites and One Drives Capture ACLs for various SharePoint objects. |