When a former employee’s OneDrive shows access denied during legal review, the IT admin cannot open the files directly. This occurs because Microsoft 365 deletes the user account or disables the license, which removes the admin’s delegated access to that OneDrive. This article explains the exact root cause, the step-by-step method to regain access, and the common failure patterns that block legal review. You will learn the correct sequence of actions in the Microsoft 365 admin center and the SharePoint admin center to restore access without recreating the user account.
Key Takeaways: Regain Access to a Former Employee’s OneDrive for Legal Review
- Microsoft 365 admin center > Users > Deleted users: Restore the deleted user account to its original state within 30 days of deletion.
- SharePoint admin center > More features > User profiles > Manage user profiles: Reapply the OneDrive site collection administrator permission after the account is restored.
- SharePoint admin center > Active sites > former employee’s OneDrive URL: Grant direct site collection admin access when the user account cannot be restored.
Why Access Denied Occurs for a Former Employee’s OneDrive
When an employee leaves the organization, the standard offboarding process either deletes the user account or removes the Microsoft 365 license. Deleting the user account moves it to the Microsoft 365 admin center’s deleted users list for 30 days. During that period, the OneDrive site still exists in SharePoint Online, but the admin cannot access it through the normal admin center interface because the user object is no longer active.
If the license is removed but the account is not deleted, the OneDrive site enters a read-only state after the grace period ends. The admin who previously had delegated access through the OneDrive admin center loses that permission because the system checks the user account status before granting access. The access denied message appears even if the admin has global admin or SharePoint admin roles.
The root cause is that the OneDrive site collection administrator permission is tied to the user account object. Once the object is deleted or disabled, the permission chain breaks. Legal review requires either restoring the user object temporarily or assigning a new site collection admin directly through the SharePoint admin center.
Steps to Restore Access to a Former Employee’s OneDrive for Legal Review
Follow these steps in the exact order. If the user account was deleted more than 30 days ago, skip to Method 2.
Method 1: Restore the Deleted User Account and Reassign Access
- Open the Microsoft 365 admin center
Go to admin.microsoft.com and sign in with an account that has the Global admin role. In the left navigation, select Users and then Deleted users. - Find and restore the former employee’s account
Select the user from the list. Click Restore. The account is reactivated with its original object ID and OneDrive site URL. Wait five minutes for the restoration to complete across Microsoft 365. - Verify the user license is active
Go to Active users, select the restored user, and confirm a Microsoft 365 license is assigned. If no license is assigned, assign one. The OneDrive site remains read-only without a license. - Open the SharePoint admin center
Go to admin.microsoft.com > Admin centers > SharePoint. In the left navigation, select More features. Under User profiles, click Open. - Manage user profiles
In the User profiles page, click Manage user profiles. Type the former employee’s name in the search box and click Find. Select the user and click Manage site collection owners. - Add yourself as a site collection administrator
In the Site Collection Administrators field, type your email address. Click OK. You now have full access to the OneDrive site. - Perform the legal review
Open the OneDrive URL directly:https://tenant-my.sharepoint.com/personal/username_tenant_com. Download or export the files as needed. - Remove your access after review
Repeat steps 4 through 6 but delete your email from the Site Collection Administrators field. Then go to Deleted users and delete the user account again.
Method 2: Grant Direct Access Without Restoring the User Account
Use this method if the user account was deleted more than 30 days ago or if restoring the account is not permitted by your organization’s policy.
- Get the OneDrive site URL
If you do not have the URL, use the SharePoint Online Management Shell. RunGet-SPOSite -IncludePersonalSite $true | Where-Object {$_.Owner -eq "user@domain.com"}to find the site. - Open the SharePoint admin center
Go to admin.microsoft.com > Admin centers > SharePoint. Select Active sites. - Locate the former employee’s OneDrive site
Search for the site by the user’s display name or the site URL. The site type will be OneDrive. - Set a new site collection administrator
Select the site row. Click Permissions in the command bar. In the Site Collection Administrators section, type your email address. Click Save. - Access the OneDrive site
Open the site URL in a browser. You now have full control of all files and folders.
Common Issues After Restoring Access and How to Resolve Them
OneDrive site is not listed in Active sites
If the user account was deleted more than 93 days ago, the OneDrive site is permanently deleted. No method can recover it. Check the SharePoint admin center’s Deleted sites list first. If the site is there, restore it within 93 days of deletion.
Access denied even after adding yourself as site collection admin
The OneDrive site may have a custom permission level that blocks inheritance. Go to the site’s Site permissions page and click Advanced permissions settings. Ensure the site collection administrator group has full control. If the site uses a unique permission set, break inheritance and grant direct access.
Legal review requires files from OneDrive and SharePoint
Use the Microsoft Purview compliance portal’s eDiscovery tool to search across both locations without modifying permissions. Go to compliance.microsoft.com > eDiscovery > Content search. Create a search query with the user’s email and export the results.
Restore Deleted User vs Grant Direct Access: Key Differences
| Item | Restore Deleted User | Grant Direct Access |
|---|---|---|
| Time required | 10 to 15 minutes | 5 minutes |
| User account restored | Yes | No |
| License needed | Yes, assign a temporary license | No |
| Works after 30 days | No | Yes, up to 93 days |
| Admin role required | Global admin | SharePoint admin |
You can now access a former employee’s OneDrive for legal review by either restoring the deleted user account or granting direct site collection admin access. Use Method 1 when the account was deleted within 30 days and your policy allows temporary restoration. Use Method 2 for accounts deleted longer ago or when restoration is not permitted. After the review, always remove your admin access and, if applicable, delete the restored account again. For large-scale legal reviews, use the Microsoft Purview eDiscovery content search tool to export files without changing permissions on the original site.