SharePoint Team Site Permissions #Share4Biz
Upcoming SlideShare
Loading in...5

SharePoint Team Site Permissions #Share4Biz



Presented at Share Conference in Jhb on 12 March 2013. Apologies for uploading the PDf, Slideshare keeps rejecting the Ppt version. I can Dropbox it if required.

Presented at Share Conference in Jhb on 12 March 2013. Apologies for uploading the PDf, Slideshare keeps rejecting the Ppt version. I can Dropbox it if required.



Total Views
Views on SlideShare
Embed Views



1 Embed 14 14



Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
Post Comment
Edit your comment

SharePoint Team Site Permissions #Share4Biz SharePoint Team Site Permissions #Share4Biz Presentation Transcript

  • Access Denied!How to Successfully Manage Team Site Permissions in SharePoint 2010 Veronique Palmer, Lets Collaborate SHARE 2013| 1
  • Getting on the Same Page
  • Site Types Internet Sites Extranet SitesIntranet Sites Team Sites My Sites Built on Publishing or Team Site Templates, etc
  • 2 questions to ask when uploading content
  • 1. Whoneeds to see it
  • Everyone Your Team Just You Intranet Team Site My SiteWho Are We Shared Shared DocsWhat We Do Operational Personal DocsContact Us Working Docs
  • 2. Whatmust theydo with it
  • Default Team Site Permissions Members Owners Visitors
  • Read / Download Site VisitorsEdit / Upload / Delete Site Members Manage Site Owners
  • Default Team Site Permissions
  • Super Power Rights Site Collection Administrators
  • Considerations
  • Build sites firstAdd users last
  • Naming Standards Content owners = Site OwnersContent Creators = Site Members Consumers = Site Visitors Avoid confusion
  • Add users to groups!
  • Add users to groups!
  • Planning!
  • LC IntranettimeFull time Part staff contractors Accountant Future?
  • InformationArchitecture …
  • Can’t expectbeginners to just get this!
  • Training! Site Collection Administrator SharePoint Advanced Advanced Intermediate Lists and Libraries Beginners START HERE
  • What Can You Restrict?
  • Site Level (Unique or Inherited Permissions)List and Library Level Document (Item) Level
  • Called “Breakinginheritance”
  • Bad idea on document level!
  • SHAREPoint remember?
  • Unique vsInherited Site Permissions
  • U = Unique Site Top : HR Site Collection What you do on the siteI = Inherited Site HR Members, below affects the site Owners Visitors above, and vice versa! I Training U Performance I Recruitment HR Members, Performance Members, HR Members, Owners, Visitors Owners, Visitors Owners Visitors U Course Packs I Disciplinaries I Internal Only Course Packs Members, Performance Members, HR Members, Owners, Visitors Owners, Visitors Owners Visitors Inheritance is broken, U Exco Reviews I CV Management what you do here will not Exco Reviews Members, HR Members, affect the site above it. Owners, Visitors Owners Visitors
  • Everyone Your Team Intranet Team SiteWho Are We SharedWhat We Do OperationalContact Us Working Docs Inherited Unique
  • “Too many groupswith unique sites” So…?
  • SharePoint can handle it! 500 million social tags, notes and ratings  5000 groups is how many each user can belong to 30 million documents per library  5000 users can be in one Active Directory group 30 million items in a list  2000 site collections per content database 2 million users per service application  2000 subsites under View All Site Content 1 million alerts on Searches  1000 comments per blog post 1 million terms and terms sets  1500 projects deliverables per Project Server plan 400 000 major versions per document  1800 documents in a SharePoint Workspace 250 000 site and subsites per site collection  100 items at a time you can bulk edit 10 000 user groups per site collection  99 people editing Word / PowerPoint simultaneously 10 000 metadata tags recognised per item when searched  25 web parts per page / wiki 5000 documents or list items displayed per page  2GB per document upload size 5000 blogs per site Can you handle it?
  • ALWAYS click More Options first!
  • The defaultsetting isto inherit, change!
  • Watch the Visitors group
  • Watch the Visitors group
  • Unique permissions correct
  • LimitedAccess
  • = Limited Access Chaos
  • Don’t just delete these! = Access Denied No undo button
  • Document it!
  • Check who or what is unique What Who
  • But!Per site only!
  • CustomGroups
  • Where possible,stick to default groups, but…
  • Tie groups to lists / libraries
  • PS : Delete site – delete customgroups manually
  • Active Directory vsSharePoint Groups
  • Pros Cons SharePoint Groups• Can see the users in the • Cannot have duplicate groups group names• Site Owners can add and • Must delete users manually remove users • Can’t add a group into a• Displays sites in your My group Sites Memberships list • Strain on Site Owners
  • Pros Active Directory Groups• Groups can be in groups• Easier to add / remove a user to multiple site collections
  • Cons Active Directory Groups• Can’t see users in • Person / Group SharePoint metadata Column• Dependent on accurate AD doesn’t work• Red tape to update (3rd • Disempowers users party workaround) • Strain on AD team
  • HybridSharePoint Approach Groups AD Groups
  • SPAD
  • Governance
  • Control orenablement
  • Who can beSite Owners or SCA’s?
  • AddingNT AUTHORITYauthenticated users?
  • Delete Rights
  • Site Permissions
  • Site Members can delete content and versions!
  • Cannot change setting On a subsite level
  • Only on sitecollection level!
  • Item level permissions(top of the food chain)
  • Options available whencreating a new group or assigning permissions
  • Communicate!!
  • Management Tools
  • Farm level changes? Specific user report?Specific document report? etc…
  • KeyInsights
  • Enemy?Can’t preventBreed cultureEducateAutomate
  • Switch off?
  • Planning TrainingGovernance 3rd Party Tool
  • Ideas to Action
  • Search for “sensitive” content Review permissions Clean up
  • ResourcesSharePoint 2010 Permissions for Site Owners – 3 Part Series Permissions Song for Fun Collection Administrator and Farm Administrator Duties Info for Site Collection Administrators 2010 Groups and Permissions Reference Chart|Control Access to a Specific Piece of Content Rights Management Rights Management Services Download 2013 Permissions
  • Office 365 Permissions Basics with Permission Levels a Security Group Memberships of SharePoint 2010 Groups Permissions on Views Anonymous Users to Comment on Blogs Explanation of Permission Levels Access for Search Purposes Security Issues
  • Veronique Palmer Lets Collaborate Phone +27 11 966 8060