Enhanced Audit
The Enhanced Audit module provides deep analysis of Teams, SharePoint Online, Conditional Access, App Registrations, and Intune configurations.
Prerequisites
- Premium licence — the Enhanced Audit requires a Premium or Complete Migration Bundle licence
- Permissions — all required permissions are now granted during the initial admin consent (consent version 4+). No separate consent step is needed.
Modules
| Module | What's discovered |
|---|---|
| Microsoft Teams | Teams, channels, membership, guest access policies |
| SharePoint Online | Sites, storage quotas, usage statistics |
| Conditional Access | Policies, assignments, grant/session controls |
| App Registrations | Entra ID apps, client secrets, API permission grants |
| Microsoft Intune | Device configuration policies, compliance policies, app protection |
Running the audit
- Navigate to your project → Enhanced Audit.
- Verify permissions are showing as granted (they should be if you consented with v4+).
- Click Run Enhanced Audit.
- The audit runs in the background — you'll receive an email when complete.
Reviewing results
Each module has a dedicated drill-down page showing the discovered objects with full detail. Use these to plan your migration approach for each workload.
Troubleshooting
If permission checks show missing permissions, you can either:
- Click Grant Admin Consent to re-run the consent flow
- Follow the Manual Setup Guide (available on the Enhanced Audit page) to add permissions via the Entra ID portal or PowerShell