text/microsoft-resx 2.0 System.Resources.ResXResourceReader, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 System.Resources.ResXResourceWriter, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 SharePoint Toolbox Connect Manage Profiles... Clear Session Permissions Storage File Search Duplicates Versions Version cleanup Libraries Retention policy Select libraries... Reset (all libraries) Delete old versions Keep last: Also keep the very first version Ask for confirmation before running Only historical versions are removed. The current published version is always kept. The action cannot be undone. All libraries (no filter) {0} library/libraries selected Delete historical file versions, keeping the last {0} {1}? This cannot be undone. (plus the first version) "Keep last" must be 0 or greater. Files trimmed: Versions deleted: Bytes freed: Library File Before Deleted Remaining Freed Path Error Select libraries Loading libraries... {0} libraries loaded. Select all Select none Templates Bulk Operations Folder Structure Settings Coming soon Cancel Language English French Theme Use system setting Light Dark Data output folder Browse... Profile name Tenant URL Client ID Optional — leave blank to register the app automatically Add Save Delete Create a new profile from the values entered above. Save changes to the selected profile. Delete the selected profile. Registering an app may prompt you to sign in up to {0} times. Continue? Ready Complete Operation cancelled Authentication failed. Check tenant URL and Client ID. An error occurred. See log for details. Scan Options Scan Folders Recursive (subsites) Folder depth: Maximum (all levels) Include Inherited Permissions Simplified mode Display Options Export Format CSV Detailed (all rows) Simple (summary only) HTML Generate Report Open Report View Sites Site URL: or select multiple sites: {0} site(s) selected Per-Library Breakdown Include Subsites Note: deeper folder scans on large sites may take several minutes. Generate Metrics Open Report Library Site Files Total Size Version Size Last Modified Share of Total CSV HTML Kind Library Hidden Library Preservation Hold List Attachments Recycle Bin Subsite Scan Sources Show in Report Hidden Libraries Preservation Hold List Attachments Recycle Bin Libraries Hidden Libraries Preservation Hold List Attachments Recycle Bin Subsites Combine Recycle Bin Stages (show total) SPO reported total: Recycle Bin: Search Filters Detail level: Extension(s): docx pdf xlsx Name / Regex: Ex: report.* or \.bak$ Created after: Created before: Modified after: Modified before: Created by: First Last or email Modified by: First Last or email Library: Optional relative path e.g. Shared Documents Max results: Site URL: user(s) https://tenant.sharepoint.com/sites/MySite Run Search Open Results File Name Extension Created Modified Created By Modified By Size Path CSV HTML Duplicate Type Duplicate files Duplicate folders Comparison Criteria Name is always the primary criterion. Check additional criteria: Same size Same creation date Same modification date Same subfolder count Same file count Include subsites All (leave empty) Run Scan Open Results Transfer Bulk Members Bulk Sites Folder Structure Source Site Destination Site Source Library Destination Library Source Folder Destination Folder Transfer Mode Copy Move Conflict Policy Skip Overwrite Rename (append suffix) Browse... Start Transfer No files found to transfer. Import CSV Load Example Add Members Preview ({0} rows, {1} valid, {2} invalid) Group Name Group URL Email Role Import CSV Load Example Create Sites Preview ({0} rows, {1} valid, {2} invalid) Name Alias Type Owners Members Import CSV Load Example Create Folders Preview ({0} folders to create) Target Library Site URL Saved Templates Capture Template Apply Template Rename Delete Source Site URL Template Name New Site Title New Site Alias Capture Options Libraries Folders Permission Groups Site Logo Site Settings No templates saved yet. Confirm Operation Proceed Cancel {0} — Proceed? Completed: {0} succeeded, {1} failed All {0} items failed. All {0} items completed successfully. Export Failed Items Retry Failed {0} rows have validation errors. Fix and re-import. Select CSV File CSV Files (*.csv)|*.csv Select Folder Loading folder tree... Select Cancel Select Sites Select target sites for all tabs Connect to a tenant first {0} site(s) selected No sites selected User Access Audit Select Users Target Sites Scan Options Search users by name or email... {0} user(s) selected Run Audit Export CSV Export HTML Split Single file By site By user HTML layout Separate files Single tabbed file Total Accesses Sites High Privilege By User By Site Filter results... Select at least one user to audit. Select at least one site to scan. Storage by File Type Donut Chart Bar Chart Chart View: Run a storage scan to see file type breakdown. MSP Logo Import Clear No logo configured Client Logo Import Clear Pull from Entra No logo configured Search Browse Directory User Directory Load Directory Cancel Filter users... Include guests users Double-click a user to add to audit Name Email Department Job Title Type Export Options Merge duplicate permissions Hide raw system group names (SharingLinks, Limited Access) Exclude sharing links Exclude system groups (Limited Access) Register App Remove App Checking permissions... Registering application... Application registered successfully Registration failed Insufficient permissions for automatic registration Removing application... Application removed successfully Manual Registration Required 1. Go to Azure Portal > App registrations > New registration 2. Name: 'SharePoint Toolbox - {0}', Supported account types: Single tenant 3. Redirect URI: Public client, https://login.microsoftonline.com/common/oauth2/nativeclient 4. Under API permissions, add: Microsoft Graph (User.Read, User.Read.All, Group.Read.All, Directory.Read.All) and SharePoint (AllSites.FullControl) 5. Grant admin consent for all permissions 6. Copy the Application (client) ID and paste it in the Client ID field above Site Ownership Automatically take site collection admin ownership on access denied When enabled, the app will automatically elevate to site collection admin when a scan encounters an access denied error. Requires Tenant Admin permissions. This site was automatically elevated — ownership was taken to complete the scan User Access Audit Report User Access Audit Report (Consolidated) SharePoint Permissions Report SharePoint Permissions Report (Simplified) SharePoint Storage Metrics SharePoint Duplicate Detection Report Duplicate Detection Report SharePoint File Search Results File Search Results SharePoint Version Cleanup Report Version Cleanup Report Total Accesses Users Audited Sites Scanned High Privilege External Users Total Entries Unique Permission Sets Distinct Users/Groups Libraries Files Total Size Version Size Guest Direct Group Inherited Unique By User By Site Filter results... Filter permissions... Filter rows… Filter: Site Sites Object Type Object Permission Level Access Type Granted Through User Title URL Users/Groups Simplified Risk Library / Folder Last Modified Name Library Path Size Created Modified Created By Modified By File Name Extension File Type File Count Error Timestamp # Group Total Size (MB) Version Size (MB) Size (MB) Size (bytes) accesses access(es) site(s) permission(s) copies duplicate group(s) found. result(s) of shown Generated Generated: members unavailable Empty group Link (no ext) (no extension) high-priv Storage by File Type Library Details Select Sites Filter: Type: All Team sites (MS Teams) Communication Classic Other Size (MB): min max Title URL Type Size Load Sites Select All Deselect All OK Cancel Loading sites... {0} sites loaded. {0} / {1} sites shown. Error: {0} Team site Communication Classic Other Valid Errors Close + New Folder Guest Input Manage Profiles Profiles Group Copies Level 1 Level 2 Level 3 Level 4 Unique Perms Permission Levels Principal Type Total Size: Version Size: Files: Source Captured file(s) selected Include source folder at destination When on, recreate the source folder under the destination. When off, drop contents directly into the destination folder. Copy folder contents When on (default), transfer files inside the folder. When off, only the folder is created at the destination. No tenant connected. No tenant selected. Please connect to a tenant first. No tenant profile selected. Please connect first. Select at least one site from the toolbar. Add at least one user to audit. No valid rows to process. Import a CSV first. Template name is required. New site title is required. New site alias is required. Source site and library must be selected. Destination site and library must be selected. Library title is required. Capturing template... Template captured successfully. Capture failed: {0} Applying template... Template applied. Site created at: {0} Apply failed: {0} Searching... user(s) files sites entries Simplified Permissions Mode Groups raw SharePoint permissions into readable labels (Owner, Editor, Contributor, Reader, View-Only) and color-codes rows by risk level. Useful for a quick security overview without permission-level jargon. Merge Permissions When enabled, multiple permission entries for the same user or group are consolidated into a single row in the export, reducing report size. Disable to see every individual permission assignment separately. Hide System Groups Removes automatically-created SharePoint system groups from results (e.g. "Excel Services Viewers", "SharingLinks.*" groups). These groups are managed internally by SharePoint and are typically not relevant for user access audits. Exclude Sharing Links Removes sharing link entries from results and exports (e.g. "Anyone with the link", organisation-wide links). Useful when you only care about direct user and group permissions. Exclude System Groups (Limited Access) Removes "Limited Access System Group For Web/List" entries from results and exports. SharePoint creates these automatically when a user has item-level access; they are rarely relevant for user access audits. Include Inherited Permissions By default only objects with unique (broken) permissions are reported. Enable this to also include objects that inherit permissions from a parent, giving a complete picture of who can access every item. Export Split Mode Single File: all results are saved in one CSV or HTML file. Split by Site: creates a separate file for each site collection. Useful when auditing large multi-site tenants to keep individual files manageable. KQL File Search Searches files across your SharePoint sites using KQL (Keyword Query Language). The keyword field is optional — leave it empty to return all files matching only the active filters. Combine date range, author, and library filters to narrow results. Filename Regex Filter Post-filters results client-side using a .NET regular expression matched against file names. Example: \.pdf$ matches only PDF files. Leave blank to skip this filter. The expression is case-insensitive. Version Cleanup Policy Permanently deletes old document versions from SharePoint libraries. Only the N most recent versions are kept — older ones are removed permanently and cannot be recovered. Run a preview scan first to see what will be deleted. Keep First Version Always preserves version 1.0 (the original) of each document, regardless of the "Keep Last N" setting. Useful to maintain an audit trail of a document's initial state. Confirm Before Delete When enabled, a confirmation dialog appears for each file before its versions are deleted. Uncheck for unattended batch processing. Duplicate Matching Criteria Two items are flagged as duplicates when their names match AND all checked additional criteria also match. More criteria checked = fewer groups, but more precise matches. Using name only finds files with the same filename anywhere in the site, regardless of content. Include Source Folder When enabled, the source folder itself is recreated at the destination (e.g. transferring "Reports" creates a "Reports/" folder at the target). When disabled, only the contents inside the folder are transferred — useful when merging into an existing destination folder. Copy Folder Contents Only When enabled, only the files and subfolders inside the selected folder are transferred — the selected folder itself is not recreated at the destination. File Conflict Policy Defines what happens when a file with the same name already exists at the destination: • Skip — leave the existing destination file unchanged. • Overwrite — replace the destination file with the source file. • Rename — keep both by appending a number suffix to the transferred file's name. Bulk Add Members — CSV Format The CSV file must contain these columns (headers required, order is flexible): • GroupName — the exact SharePoint group name • Email — the user's email address • Role — Member, Owner, or Visitor Click "Load Example" to open a pre-filled sample file. Bulk Create Sites — CSV Format The CSV file must contain these columns: • Name — the display name for the new site • Alias — URL alias (no spaces; becomes part of the site URL) • Type — TeamSite or CommunicationSite • Owners — comma-separated list of owner email addresses Click "Load Example" to open a pre-filled sample file. Create Folder Structure — CSV Format Creates a folder hierarchy inside a SharePoint library from a CSV file. Each row defines one folder path using up to 4 levels (Level1–Level4). Leave deeper level columns empty for shallower paths. Example row: Contracts | 2024 | Q1 | (empty) Creates: Library / Contracts / 2024 / Q1 Capture Site Template Saves the currently selected site's structure (libraries, folder hierarchy, permissions, settings, and logo) as a reusable template stored locally on your machine. The source site is not modified in any way. Select which elements to include using the checkboxes above. Apply Template to New Site Creates a brand-new SharePoint site and reproduces the structure captured in the selected template — including libraries, folders, permissions, settings, and logo. The source template and original site are not affected. Provide a display name and URL alias for the new site before clicking Apply. Search vs Browse Mode Search Mode: type a name or email to find a specific user via Azure AD. Matching users appear in a list — click to select them for the audit. Browse Mode: loads all users in your tenant directory. Use the filter box to narrow the list, then double-click a row to add the user to the audit. User Access Audit vs Permissions Audit The Permissions tab scans objects (libraries, folders, items) and shows who has access to each one. This tab does the reverse: you select one or more users and it finds every object they can access — including access granted via SharePoint groups or Active Directory groups. Hidden Libraries Scans SharePoint libraries hidden from the site's normal navigation (e.g. Site Assets, Style Library, Form Templates). These can consume significant storage and are often overlooked in routine audits. Preservation Hold Library A hidden SharePoint library that stores versions of documents modified or deleted while a Microsoft Purview / Microsoft 365 Compliance retention policy is active. It can grow very large over time without being visible to normal site users. Access denied. Admin role required. Action Client Details Role Filter by action... Filter by client... Filter by user... Loading audit log... No audit entries found. Showing {0} of {1} entries All technician and admin actions within the application. Audit Logs Audit Users Auditing… Load Users Loading… ({0}) Select all ({0}) High By site Table Sites the selected user(s) can access. Click a site to reveal the permission detail. Optional — leave empty to scan every site in the tenant. Discovering all sites in the tenant… Could not list tenant sites: {0} {0} site(s) scanned {0} skipped (no access) {0} failed Include inherited Permission Select at least one user or enter an email. Additional emails (one per line) {0} selected Users Showing first 500. Export for full results. Showing first 500. Refine filter to narrow. Filter by name or email… Audit Results Cancelled. Found {0} access entries. Find all permissions for one or more users across multiple sites. Complete: {0} added, {1} failed. CSV File (GroupName, GroupUrl, Email, Role) Please select a site. Export Errors CSV Processed: {0} / {1}. Failures: {2} Processing… Status Add users to SharePoint groups from a CSV file. {0} valid rows, {1} errors. Admin Center URL Status Creating… CSV File (Name, Alias, Type, Template, Owners, Members) Export Errors CSV Create multiple SharePoint sites from a CSV file. Bulk Site Creation Cancelled. Complete: {0} created, {1} failed. Created: {0} / {1}. Failures: {2} {0} valid, {1} errors. Confirm new password Current password Your account signs in with Microsoft (Entra). Manage its password in your Microsoft account. Current password is incorrect. New passwords do not match. Loading… You must be signed in. New password Change password Password changed. Change Password Connect via Microsoft No client profile selected. You will be redirected to Microsoft login. MFA is supported. Redirecting… Authenticate to access Connect to Microsoft Your session token is stored in your browser only — never saved to disk. Load Users Loading… ({0} users) Filter by name or email… Showing first 500 of {0} filtered. Loaded {0} users. Browse all tenant users via Microsoft Graph. Users Member Find Duplicates Scanning… Match created Match file count Match subfolder count Match modified Match size Library (optional) Mode Files Folders Duplicate Detection Duplicate Groups Showing first 100 groups. Export for all. + Add top-level folder Build visually Creating… Upload CSV No folders yet. Add a top-level folder to start. Please select a site. CSV File (Level1, Level2, Level3, Level4) Library Title Source Created: {0} folders. Failures: {1} {0} valid rows, {1} errors. Complete: {0} folders created. Create folder hierarchies in a document library from a CSV template. + Sub Add subfolder Remove Folder name Connected: {0} Add users to groups via CSV Create sites from CSV Find duplicate files/folders Create folders from CSV template Scan site permission assignments KQL-based file search Analyze library storage usage Capture and apply site templates Copy/move files between libraries File Transfer Audit user permissions cross-site Browse tenant users via Graph Delete old file versions Version Cleanup Permissions Audit Storage Metrics Tenant: Welcome Select a tenant profile to start using SharePoint Toolbox. Browse Loading… No document libraries found on this site. Select a site first. Could not read image: {0} File too large ({0} KB). Max {1} KB. PNG, JPEG, SVG or GIF — max {0} KB. Remove Multiple documents (ZIP) One document, no tabs One document, tabs (HTML) How to bundle reports when multiple sites are scanned Audit Logs Change Password Clear Client Profiles Dark Mode File Transfer Home Light Mode Loading… Logout No match Reconnect app identity Search… Admin Audit Bulk Config Toggle sidebar User Directory User Management Select or create a tenant profile to get started. Go to Profiles No profile selected Back to Home The page you requested doesn't exist or has moved. Page not found Page not found — SharePoint Toolbox Scan Sites Scanning… Permission Users Results Scan complete: {0} entries across {1} site(s). Scanning {0} ({1}/{2})… Showing first 500 of {0} rows. Export for full results. Permissions Audit No profiles configured. Manage profiles Select a profile Active Client ID: to authorize app creation: Sign in to the client tenant Approve the requested permissions with an admin account. Enter code: Open Edit No profiles configured. Create one to get started. Client ID is required. Name is required. Tenant ID is required. Tenant URL is required. Client ID (App Registration) Auto-filled after registration, or enter manually Edit Profile Client logo (optional) Shown top-right on exported reports for this client. Profile Name * e.g. Contoso Production New Profile Tenant ID (GUID or domain) * contoso.onmicrosoft.com or GUID Tenant URL * + New Profile Registration cancelled. Creating the app registration… Registration failed: {0} App registered. Review and Save the profile. App registered. Waiting for certificate and consent to propagate… App registered, but app-only auth is not ready yet ({0}). It may take a few minutes; Save and use Test connection shortly. Requesting a sign-in code… Waiting for sign-in to complete… Register in Entra Click "Register in Entra" to auto-create the app registration in the client tenant. You'll sign in with a client admin account — no secrets, no pre-existing app needed. Or enter an existing public client App Registration ID manually. Fill Tenant URL, Tenant ID and Profile Name first Register app in client Entra ID (requires an admin who can create app registrations) Waiting… Profile management is restricted to Admins. Select a profile below to work on a client. Select Selected Manage SharePoint tenant connections. Credentials are entered per session. Tenant ID: Client Profiles Auto-elevate ownership when permission scan is denied Shown top-left on exported HTML reports. The client's logo (top-right) is set per profile. Settings saved. Behavior Report Branding Display Clear Reload sites Select all ({0}) No sites match the filter. No sites returned. The account may lack Sites.Read.All. Click “Load sites” to list the tenant’s SharePoint sites, then tick the ones to scan. Click “Load sites” to list the tenant’s SharePoint sites, then pick one. Site Sites Filter loaded sites by name or URL… Loading… {0} selected Size (KB) Please select at least one site. File Extensions (comma-separated) Library (optional) Search Options Results Found {0} files across {1} site(s). Searching {0} ({1}/{2})… Showing first 500 of {0}. Export for full results. {0} libraries Scan Storage Scanning… Include hidden libs Include recycle bin Total (MB) Versions (MB) Please select at least one site. 0 = libraries only. 1+ = drill into subfolders that many levels deep. Folder scan depth Storage Metrics Storage Report Cancelled. Complete: {0} nodes across {1} site(s). Scanning {0} ({1}/{2})… Admin Center URL Template: Select a template from the list below. Applying… Capture Capturing… Use {0} libraries My Template Capture site structure and apply to new sites. Site Templates Cancelled. Template '{0}' saved. Site created: {0} Include source folder Rename Destination Folder (optional) Destination Please select a destination site. Please select a source site. File Transfer Failures: {0} Transferred: {0} / {1} files. Source Source Folder (optional) SubFolder/Path Cancelled. Complete: {0} transferred. Transferring… Access denied. Admin role required. You Create user Remove Reset password Set password Actions Email Last Login Role Source User Create local user No users provisioned yet. Never Display name New password Password Local user {0} created. Error: {0} Password reset for {0}. User {0} removed. Role updated for {0}. Reset password — {0} Entra Local Manage technician accounts and roles. Entra users are auto-provisioned on first OIDC login; local users are created here. User Management Cleaning… Load Libraries Loading… Keep first version Keep last N versions Libraries (none = all) Version Cleanup access (Tech-N0). Contact an Admin to request write access. You have read-only A SharePoint site is a container (with its own address) that holds document libraries, lists and permissions — for example a team or project workspace. A document library is a SharePoint container for storing files, with version history, metadata and its own permissions — like a smart shared folder. Inherited permissions are passed down automatically from the parent site or folder. Include them to see access users get indirectly, not just access set directly here. Subsites are sites nested under the selected site. Enable to include them in the operation as well. A permission level is a named bundle of rights (e.g. Full Control, Edit, Read) that defines what a user is allowed to do. Shows how the access was obtained: granted directly to the user, or via a SharePoint or Microsoft 365 group they belong to. Hidden/system libraries are used internally by SharePoint and don't appear in normal navigation. Include them for a complete storage picture. The recycle bin holds deleted items temporarily before final removal. Their size still counts against storage until purged. Space used by older saved versions of files. SharePoint keeps a history of each file, and those copies consume storage. How many of the most recent versions of each file to keep. Older versions beyond this number are deleted to free storage. Also preserve the very first (original) version of each file — useful for audit trails — even when deleting other old versions. A SharePoint group is a named collection of users that permissions are assigned to (e.g. Site Owners, Members, Visitors). The role / permission level given to the user in the group: Owner (full control), Member (edit) or Visitor (read). The SharePoint admin center URL (e.g. https://contoso-admin.sharepoint.com). Required to create or manage sites across the whole tenant. The site template: a Team site for group collaboration, or a Communication site for broadcasting content to many readers. The short, URL-friendly name for the site, used in its address (e.g. 'marketing' in /sites/marketing) and its Microsoft 365 group. A regular expression: an advanced pattern for matching file names (e.g. ^Invoice.*\.pdf$). Leave blank to match everything. Guests are external users from outside your organization who have been granted access. Enable to include them. How the user reaches the item: through direct permissions, group membership, or inherited from a parent. User Principal Name — the unique sign-in identifier for the user in Entra ID (Azure AD), usually in email format. Member = an account inside your organization; Guest = an external user invited from another organization. Capturing saves a site's structure (libraries, folders, permission groups) as a reusable template you can later apply to create new sites. The site's permission groups (Owners, Members, Visitors) and their members, so the same access setup can be recreated. Scheduled Reports Reports