check before: 2026-03-15
Product:
Copilot, Entra, Microsoft 365 Apps, Microsoft 365 Copilot, SharePoint
Platform:
Online, US Instances, World tenant
Status:
Change type:
New feature, Admin impact
Links:
Details:
Summary:
SharePoint now allows delegation of Restricted Access Control (RAC) management to site admins, requiring justification for changes. This feature, needing a premium license, is off by default and can be enabled by SharePoint admins to reduce overhead while maintaining security and auditability. Rollout completes by April 2026.
Details:
[Introduction]
We're introducing the ability for SharePoint admins to delegate management of Restricted Access Control (RAC) policies to site admins. This change provides more flexibility while maintaining strong security and governance. By allowing site admins to manage RAC directly on their sites-with required justification for changes-organizations can reduce administrative overhead while improving accountability and auditability.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We began rolling out in mid-March 2026 and expect to complete by late April 2026.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2026-04-09
updated:
2026-04-09
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Delegation of Restricted Access Control Management
If the delegation of RAC management is enabled without proper preparation, site admins may inadvertently grant access to unauthorized users, compromising data security.
- roles: SharePoint Admins, Site Admins
- references: https://learn.microsoft.com/sharepoint/restricted-access-control#delegate-management-of-restricted-access-control-to-site-admins
Auditability and Compliance
Without adequate training and communication, site admins may fail to provide necessary justifications for RAC changes, leading to compliance issues and potential audit failures.
- roles: SharePoint Admins, Compliance Officers
- references: https://learn.microsoft.com/sharepoint/restricted-access-control#delegate-management-of-restricted-access-control-to-site-admins
Configutation Options**
XXXXXXX ... paid membership only
Data Protection**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 2 days ago ago
