Gitbit License Report FAQ
Here are all the questions I've been asked and the questions I thought I might ask before using Gitbit's Microsoft 365 license report tool.
Is it really 100% free?
Yes! 100% free! How do we pay for it? Currently, it's out of my own pocket. See the section labeled "Who built this?" to meet me. If the expenses get too high, we may think about white-labeling.
In a white‑label arrangement, Gitbit would build and maintain the core app, and other organizations apply their own branding, logo, colors, and name so it appears as if they created it. The underlying product is Gitbit, but the branded experience is theirs. We would NOT grant them access to your data.
Currently, we do NOT sell, trade, or grant anyone access to your data, and we have no plans to sell, trade, or grant anyone access to your data in the future, but refer to our https://www.gitbit.org/privacystatement with any specifications.
Who built this?
My name is John Gruber. I'm a Microsoft 365 engineer by day, Gitbit owner and founder by night. My profile page is at https://www.gitbit.org/docs/john-gruber-d5gi92xd and my LinkedIn profile is https://www.linkedin.com/in/gruberjl/. Feel free to reach out to me with any questions or issues you may have.
How can Gitbit break my organization?
I'm a Microsoft 365 consultant, which basically means I'm paid to worry, so customers don't have to. This is always my first question. The simple answer is that it can't. We aren't requesting any permissions that can make a change to your environment. We only request read permissions, so the app can't remove licenses, disable user accounts, or cause any damage to your organization. You would need to get the report from Gitbit, decide which users should be disabled or have their licenses removed, and then manually remove the licenses from those accounts.
Does Gitbit have write access to my tenant?
No, we cannot make changes to any of your data. We only ask to view the data that we show to you in the report.
How does Gitbit define an "inactive" user?
In short, we don't. Not in the app anyway. We simply show you a report that contains all of your users. You can then sort, filter, and export that report to find inactive users yourself. For my clients, who use this app, I recommend that an inactive user is anyone whose account is currently disabled (they cannot sign in) or an account that has not been signed in for over 30 days. But that may not be ideal for your organization. If, for example, your employees are out of the office or not signing in to Microsoft 365 every month, you may need to extend that to 45 or 60 days.
Are there any limits on the size of the organization?
Well, yes and no. Currently, there is no limit, but it has been vetted on an organization of 100,000 users or more. There may be throttling issues from Microsoft 365 or downloading the data may take too long and time out before it can show you the report. Any issues, please contact me at support@gitbit.org, and I'll do my best to resolve the issue for you and update the app.
Can it detect licenses assigned to disabled accounts?
Yes, that's the primary reason for the app. It shows you all of your users. Then you can filter that report to show users who have a license that are currently disabled or find users who haven't logged in for a couple of days.
Does the report include all license types (Business Premium, E3, E5, etc.)?
Yes, it shows you all of your users, regardless of their licenses, which includes users that have Microsoft 365 Business Premium, Microsoft 365 E3, Office 365 E3, and users that have no license at all.
Can I export the results to Excel or CSV?
Absolutely, I'm not a big fan of tables in webpages, including my own. I find them to be limiting. But exporting to CSV and then opening in Excel, now I can work! After the report is generated, click Download CSV.
Does it account for service accounts or shared mailboxes?
Yes, we export all of your users, which includes service accounts, shared mailboxes, guests, etc. If there's a user account in your Microsoft 365 environment, then we export it.
What permissions does Gitbit require?
We only ask for the permissions we need to display the report to you. We don't have access to your files, emails, or the ability to make any changes to your environment. Here are all the permissions we request and why we need them:
- Read audit log data: So we can pull the last sign-on time of your users.
- Maintain access to the data you have given it access to: So you can make changes and ask Gitbit to refresh the report without being re-prompted to sign in.
- Read organization information: So we can see the names of the subscriptions. Without this, we'll only know a user "has a license," not what license type it is.
- Sign you in and read your profile: Permission allows Gitbit to verify who is currently logged in.
- Read all users' full profiles: To pull the user principal name and display name, we show you in the report.
Where is my data stored?
We do currently store your report on our secure servers. The primary reason we do this is so we can show you the data again without re-downloading from Microsoft. While that's all we currently do with the data, we aren't limited to that reason alone. You can read more at https://www.gitbit.org/privacystatement. If you would like us to delete that data, you can send a simple request to support@gitbit.org, preferably from the user account that originally sent the request, but any email address within your primary domain should suffice.
Is my data shared with third parties?
No, we don't share your data with any third parties and don't plan to. You can read more in our https://www.gitbit.org/privacystatement.
How do I revoke Gitbit's access after I'm done?
To request that we delete your data that's stored on Gitbit's server, send an email to support@gitbit.org and ask us to remove your data. To block Gitbit's access to your Microsoft 365 environment in the future, go to your Entra admin center > Entra ID > Enterprise Apps > search and click on Gitbit > Properties > Delete.
![Device management could not be enabled Windows 11 [SOLVED]](/assets/imgs/docs/something-went-wrong-1200-si1gvpv8.png)
![I built an almost fully automated blog with Copilot [For Free]](/assets/imgs/docs/fast-takes-1200-q6vmzbxd.png)
![AI Agents vs Chatbots vs LLM Apps [Simple Breakdown]](/assets/imgs/docs/chatbot-llm-app-ai-agent-1200-ajzwu1rr.png)