When finance teams share files from OneDrive for Business using external sharing links, recipients sometimes see a request access page instead of the file. This happens because the link permission level or the tenant sharing settings block anonymous access. This guide explains the exact settings that cause this behavior and how to configure them so external users can open shared files directly.
You will learn how to check the link type, update sharing policies in the Microsoft 365 admin center, and adjust site-level controls in SharePoint. The fix involves three layers: the individual link, the OneDrive site, and the tenant-wide policy. Each layer must allow external sharing without requiring sign-in.
By the end of this article, you will be able to create external links that bypass the request access screen for finance team members and other authorized users.
Key Takeaways: Fix External Sharing Links That Prompt Request Access
- Link permission level set to Specific people: This requires recipients to sign in with a Microsoft account or be added as guests, causing the request access prompt. Change to Anyone with the link to allow anonymous access.
- Microsoft 365 admin center > Settings > Org settings > SharePoint > Sharing: Controls the tenant-wide external sharing policy. Set to Anyone to allow anonymous sharing links without sign-in.
- OneDrive admin center > Sharing > External sharing: Per-site policy that overrides the tenant setting. Must match the tenant setting of Anyone for external links to work without authentication.
Why External Sharing Links Show Request Access for Finance Teams
When a finance team member creates a sharing link in OneDrive for Business, the link has a permission level that determines who can access the file. If the link is set to Specific people, the recipient must either sign in with a Microsoft account or be added as a guest in the organization. If the recipient is not recognized, they see a request access page instead of the file.
The tenant-wide external sharing policy also plays a role. Even if the link is set to Anyone, the tenant policy may restrict anonymous access. By default, many organizations set external sharing to New and existing guests, which requires authentication. Finance teams often need to share files with external auditors, clients, or vendors who do not have Microsoft accounts, so the policy must allow Anyone links.
Steps to Configure External Sharing Links for Finance Teams
- Check the link permission level in OneDrive
In OneDrive, right-click the file or folder you want to share and select Share. In the Send link dialog, click the gear icon next to Anyone with the link. Ensure the link type is set to Anyone with the link. If it is set to Specific people, change it to Anyone with the link and click Apply. Then copy the link and send it to the external user. - Set tenant-wide external sharing policy to Anyone
Go to the Microsoft 365 admin center at admin.microsoft.com. Navigate to Settings > Org settings > SharePoint. Under External sharing, select Anyone. This allows users to share files and folders with people outside the organization without requiring sign-in. Scroll down and set OneDrive to Anyone as well. Click Save. - Verify OneDrive site-level sharing settings
Go to the SharePoint admin center at admin.microsoft.com/SharePoint. Under Policies > Sharing, select OneDrive. Under External sharing, choose Anyone. This ensures the per-site policy matches the tenant policy. Click Save. - Test the link from an external browser
Open a private browser window in Chrome or Edge. Paste the sharing link. You should see the file or folder directly without a request access prompt. If you still see request access, check that the link permission level is set to Anyone and that the tenant and site policies are both set to Anyone. - Apply the same settings for the finance team’s OneDrive site
If the finance team has a dedicated SharePoint site, repeat step 3 for that site. In the SharePoint admin center, under Active sites, select the finance site. Click Settings > Permissions > Sharing. Set external sharing to Anyone. Click Save.
If External Links Still Prompt Request Access After the Main Fix
Link was created before the policy change
Links created before you updated the sharing policy retain the original permission level. Even if the link shows Anyone in the UI, the underlying token may still require authentication. Create a new sharing link after the policy change and test it.
Conditional Access policies block anonymous access
Your organization may have a Conditional Access policy in Microsoft Entra ID that blocks access from anonymous users. Go to the Microsoft Entra admin center at entra.microsoft.com. Under Protection > Conditional Access, review policies that target All cloud apps or SharePoint Online. If a policy requires multi-factor authentication or device compliance for external users, it will block anonymous links. Work with your IT team to create an exclusion for the SharePoint Online app when the user is not signed in.
Finance team uses a custom domain email that is not verified
If the finance team shares with recipients who have email addresses on a domain that the organization has not verified, the external sharing link may still prompt for sign-in. In the Microsoft 365 admin center, go to Settings > Domains and verify the recipient’s domain. If the domain is not owned by the organization, this is not the cause. Instead, ensure the link type is Anyone, which bypasses domain verification.
Link Permission Levels vs External Sharing Policies: Key Differences
| Item | Anyone with the link | Specific people with the link |
|---|---|---|
| Description | Anyone who has the link can access the file without signing in | Only people specified in the link can access the file, and they must sign in with a Microsoft account or be guests in the tenant |
| Tenant policy requirement | External sharing policy must be set to Anyone at both tenant and site level | External sharing policy must be set to New and existing guests or Anyone |
| Recipient experience | Opens file directly in browser without sign-in | Prompts for sign-in or shows request access page if the recipient is not recognized |
| Security | Less secure because link can be forwarded to anyone | More secure because only specified users can access |
| Best for finance teams | Sharing with external auditors, clients, or vendors who do not have Microsoft accounts | Sharing with known external users who have Microsoft accounts or are guests in the tenant |
After applying the settings above, finance teams can create Anyone links that bypass the request access screen. To maintain security, use expiration dates and passwords on Anyone links. In the Share dialog, set an expiration date and require a password. This prevents unauthorized access if the link is shared beyond the intended recipient.