List All SharePoint Sites and Their Document Libraries via Microsoft Graph

Building a complete inventory of SharePoint sites and their document libraries is a foundational governance task. Admins need this data to:

• Track content sprawl and identify abandoned or duplicate sites.
• Map data residency before running DLP, retention, or sensitivity label rollouts.
• Feed migration, backup, and archival tooling with an accurate source-of-truth list.
• Answer audit questions like "which libraries exist under site X?" or "how many document libraries are in the tenant?"

The SharePoint admin center shows a site list, but it does not expose the per-site drive (document library) URLs in a single exportable view. Microsoft Graph's /sites and /sites/{id}/drives endpoints solve this cleanly and programmatically.

After running this recipe you will have:

• A complete list of SharePoint sites in the tenant (display name, site ID, web URL).
• For each site, the attached document libraries (drive name, drive ID, web URL, drive type).
• A flat CSV report (SharePoint_Sites_and_Libraries.csv) with one row per library, suitable for Excel, Power BI, or migration tooling.
• A repeatable process you can schedule to detect new sites/libraries over time.

Things to watch for

• Search indexing lag — Newly created sites can take minutes to hours to appear via /sites?search=*. For freshly provisioned sites, query by hostname or site path directly.
• The search=* wildcard sometimes returns HTTP 500 on some tenants. Use search= (empty value) or omit the parameter and page through results as a fallback — this is the workaround baked into the scripts below.
• Result cap — The search endpoint returns roughly the top 500 sites. Very large tenants should enumerate via /sites/getAllSites (beta) or via the SharePoint Admin REST API for full coverage.
• System / hidden libraries — The /drives endpoint returns document libraries only. Hidden system libraries (Form Templates, Style Library, etc.) are excluded by design. Use /sites/{id}/lists?$filter=list/template eq 'documentLibrary' if you need the complete list.
• Read-only scope is enough — Sites.Read.All is sufficient. Do NOT grant Sites.FullControl.All for an inventory report.
• Throttling — Tenants with hundreds of sites will hit Graph throttling if you fire drive lookups in parallel without backoff. The script includes sequential processing and retry-on-429 handling.