Real-time access for OneDrive

Glean can supplement indexed results from OneDrive with real-time results fetched directly from Microsoft 365. This ensures users can find recently created or updated content without waiting for a full crawl cycle.

How real-time access works

Real-time access retrieves content live from OneDrive when a query targets this source. This applies to the following Glean surfaces:

Search

Any query that specifies app:onedrive, or search results explicitly filtered for OneDrive, can include real-time results alongside indexed results.

Assistant and agents

When Assistant or an agent is highly confident that a query is about OneDrive — for example, when the user mentions OneDrive or includes a link — it adds real-time search results from that source to the chat context.

Explicitly specifying app:onedrive in a query or agent run also triggers real-time results.

Supported content

Real-time access supports the following content types:

Source	Supported content
OneDrive	Documents

Enable real-time access

Enabling real-time access requires both administrator setup and end-user authentication:

• Configuring your Admin console and Azure portal
• Having end users authenticate

Configure the Admin console and Azure portal

A Glean admin must enable data fetching for OneDrive, and a Microsoft Global Admin must configure additional permissions in Azure.

Enable data fetching in the Admin console

Enable data fetching for OneDrive:

1. Navigate to Admin console > Data sources.
2. Select OneDrive.
3. Go to the Setup tab.
4. Select the checkbox to enable data fetching.

Configure delegated permissions in Azure

A Microsoft Global Admin must add delegated permissions to your Glean application in Azure:

1. Sign in to the Azure portal.

2. Search and navigate to your Glean application.

3. In the left navigation, select Manage > API Permissions.

4. Select Add a permission, then select Microsoft Graph.

5. Choose Delegated permissions and add the following:

   • offline_access
   • User.Read
   • Files.ReadWrite.All
   • Sites.Read.All

tip

Grant Files.ReadWrite.All so Glean can access files from shared URLs. See Microsoft's Accessing shared driveItems documentation for details.

info

These delegated permissions are separate from the application permissions used for crawling. They enable per-user, on-demand access to content that may not yet be indexed.

Configure the OAuth redirect URL

Set up an OAuth redirect URL so Glean can complete the user authentication flow:

1. In the Azure portal, navigate to your Glean application's Authentication → Platform configurations.
2. Select Add a platform.
3. Enter the tenant backend domain URL under Server instance (QE) for your deployment.
4. Select Configure to save.

note

These instructions apply to the standard Azure Portal App Authentication experience, not the preview experience.

Authenticate end users

After the admin configuration is complete, each user must authenticate with OneDrive to use real-time access:

• Proactively: Users navigate to Your Settings > Data sources and select OneDrive to authenticate.
• On demand: Glean prompts users to authenticate when a query includes a link to a document that Glean has not indexed yet.

Consider communicating to your organization that real-time access is available and encouraging users to authenticate.

Frequently asked questions

Yes. Because real-time access retrieves content live from OneDrive, results may be slower than indexed results in some cases.

Yes. Real-time access generates Microsoft API calls when users trigger queries that include live results. Because these calls are on demand rather than part of a full crawl, the impact is generally lower than indexing.

Not directly from the search results page. To summarize real-time fetched content, open or paste the OneDrive link in Glean, where Glean fetches the content live.

No. NoCrawl flags, redlists, and greenlists are not currently supported by real-time access.

No. Real-time access is enabled at the organization level and cannot target a specific group of users.