What is a one sentence summary of your feature request?
Need the ability to grant visibility to only certain SharePoint sites for AIC Users - today it is all or nothing.
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
Allow administrators to configure access to certain Sites for a particular user or group. This would be similar to how it is listed today of allowing access to certain “hosts”, but we need the ability to define access at a SharePoint Site level. (This request is for permissions to view details in AIC, not permissions on the SPO site itself). This would allow for better self-service for our customers and follow security best practices of least-privileges by showing them only the SharePoint sites a particular group or individual is authorized to see.
As an extra feature it would be nice to have an API or automated way we could keep this up to date as SharePoint sites and users change. This way, we could script against the API to modify the AIC permissions.
How do you currently solve the challenges you have by not having this feature?
We would have to provide a custom tool to limit visibility based on the user/group and query the back-end database directly. There is no way to currently work around this issue in AIC.