SlideShare a Scribd company logo

Deep Dive on Office 365 - External Sharing

Download as PPTX, PDF
A
Alpesh Nakar

Presented at O365 Saturday in Perth, Sydney and Brisbane. Extranet without any overheads? How is that possible? Is it secure? In this session we shall see how you can leverage on SharePoint B2B Collaboration for providing extranet capabilities for partners with minimum overheads! We shall look at the various security controls available at various levels so the business can effectively and securely do business with its partners. The demo will show you a real world scenario involving multi domain scenario and how B2B capabilities can be leveraged to have an extranet for partners up and running with minimum overheads

Presentations & Public Speaking
1 of 17
Gold Silver Bronze
Extranet for Partners – Office 365 / SPO Extranet for Partners – Azure B2B Security Controls in Office 365 and SharePoint Online Challenges with Extranet Implementation Demos
Network Operational Overheads Identity Management Security Infrastructure Challenges with External Sharing Implementation Firewall Extranet Network Extranet Farm in Azure (IaaS) InternetPartner User CORP User Virtual Network Extranet SharePoint 2013 Farm Active Directory Domain Controller DNS Virtual Network Microsoft Azure Data Center (Australia)
Federation = Domains that have established a federation trust Authorization = Access Guest = External User Access B2B = Business to Business Authentication = Identity
Google Account Microsoft Account Corporate Identity with no Azure Active Directory ‘presence’ Corporate Identity with Azure Active Directory ‘presence’ Cloud Identity Azure B2B – Identity Types
Azure Portal Walkthrough Demo
Office 365 Tenant – Global Administrator SharePoint Online Tenancy – SharePoint Administrator SharePoint Online Site Collection Level – SharePoint Administrator SharePoint Online Site Level – SharePoint Site Owner SharePoint Online Site Content Level – Content Owner
Enabling External Sharing Demo
Configuration Result Notes Don’t allow sharing outside your organization Users will not be able to share sites or content in this site collection with users who do not have licenses to your Office 365 subscription. Default – External Sharing not enabled Allow sharing only with the external users that already exist in your organization’s directory Users will not be able to share sites or content in this site collection with external users who do not already exist in your organization's directory External User must be ‘part of the organisation’ , i.e. accepted the invite and completed the sign-in Allow external users who accept sharing invitations and sign in as authenticated users Site owners or others with full control permissions on a site can share documents with external users by requiring sign-in. All external users will be required to sign in before they can view content. Invitations to view content can be redeemed only once. After an invitation has been accepted, it cannot be shared or used by others to gain access. User must accept the invite, sign-in. After the sign-in process is completed, user is added to organisation’s Azure AD Allow sharing to authenticated external users and using anonymous access. Optionally, you can set links to expire in a specific number of days. Site owners or others with full control permissions can also share documents externally opt to require sign-in, or send an anonymous guest link for documents. When users share a document, they can grant external users either view or edit permissions to the document.External users who receive anonymous guest links can view or edit that content without signing in. Anonymous guest links could potentially be forwarded or shared with other people, who might also be able to view or edit the content without signing in. Not recommended
Configuration Result Notes Don’t allow sharing outside your organization Users will not be able to share sites or content in this site collection with users who do not have licenses to your Office 365 subscription. Default – External Sharing not enabled Allow sharing only with the external users that already exist in your organization’s directory Users will not be able to share sites or content in this site collection with external users who do not already exist in your organization's directory External User must be ‘part of the organisation’ , i.e. accepted the invite and completed the sign-in Allow external users who accept sharing invitations and sign in as authenticated users Site owners or others with full control permissions on a site can share documents with external users by requiring sign-in. All external users will be required to sign in before they can view content. Invitations to view content can be redeemed only once. After an invitation has been accepted, it cannot be shared or used by others to gain access. User must accept the invite, sign-in. After the sign-in process is completed, user is added to organisation’s Azure AD Allow both external users who accept sharing invitations and guest links Site owners or others with full control permissions can share sites with external users. All external users will be required to sign in before they can view content on a site that has been shared. Site owners or others with full control permissions can also share documents externally opt to require sign-in, or send an anonymous guest link for documents. External users who receive anonymous guest links can view or edit that content without signing in. Anonymous guest links could potentially be forwarded or shared with other people, who might also be able to view or edit the content without signing in. When users share a document, they can grant external users either view or edit permissions to the document. Not recommended
ExternalUserInvite–GoogleAccount,MicrosoftAccount, FederatedIdentity Demo
 External users can use Office Web Apps to view and edit  External users can use Office Web Apps to edit if they have permissions  External users can use Office Client edit – login required to edit  Inherit use rights of the user who invites external user.  An external user can perform tasks on a site consistent with the permission level that they are assigned.  External users will be able to see other types of content on sites.
 External users cannot create their own personal sites (My Sites). This means that they do not have their own One Drive for Business.  External users cannot Delve. They also cannot edit their own profile, change their photo, or see aggregated tasks.  External users do not add quota to the overall tenant storage pool (this is determined by licensed users only).  External users cannot be an administrator for a site collection.  By default, external users cannot access the Search Center and will not be able to execute searches against “everything” (cross site collection search)  As external users are cannot be licensed as an enterprise user, they will not have access to any of the licensed components such as Exchange Online, Skype for Business, etc.
External Sharing Experience Demo
alpesh.nakar@avanade.com http://alpeshnakar.com http://in.alpeshnakar.com http://t.alpeshnakar.com
Gold Silver Bronze

Recommended

OAuth Android Göteborg
OAuth Android GöteborgOAuth Android Göteborg
OAuth Android Göteborg
danieloskarsson
 
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the CloudSharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
Danny Jessee
 
Claims-Based Identity, Facebook, and the Cloud
Claims-Based Identity, Facebook, and the CloudClaims-Based Identity, Facebook, and the Cloud
Claims-Based Identity, Facebook, and the Cloud
Danny Jessee
 
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the CloudSharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
Danny Jessee
 
3rd-Party Authn/Authz
3rd-Party Authn/Authz3rd-Party Authn/Authz
3rd-Party Authn/Authz
philipsharp
 
Silicon Valley Code Camp 2009: OAuth: What, Why and How
Silicon Valley Code Camp 2009: OAuth: What, Why and HowSilicon Valley Code Camp 2009: OAuth: What, Why and How
Silicon Valley Code Camp 2009: OAuth: What, Why and How
Manish Pandit
 
SPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDrive
SPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDriveSPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDrive
SPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDrive
Chirag Patel
 
Everything you ever wanted to know about external sharing in Microsoft 365 - ...
Everything you ever wanted to know about external sharing in Microsoft 365 - ...Everything you ever wanted to know about external sharing in Microsoft 365 - ...
Everything you ever wanted to know about external sharing in Microsoft 365 - ...
Chirag Patel
 

Recommended

OAuth Android Göteborg
OAuth Android GöteborgOAuth Android Göteborg
OAuth Android Göteborg
danieloskarsson
 
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the CloudSharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
Danny Jessee
 
Claims-Based Identity, Facebook, and the Cloud
Claims-Based Identity, Facebook, and the CloudClaims-Based Identity, Facebook, and the Cloud
Claims-Based Identity, Facebook, and the Cloud
Danny Jessee
 
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the CloudSharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
SharePoint 2010, Claims-Based Identity, Facebook, and the Cloud
Danny Jessee
 
3rd-Party Authn/Authz
3rd-Party Authn/Authz3rd-Party Authn/Authz
3rd-Party Authn/Authz
philipsharp
 
Silicon Valley Code Camp 2009: OAuth: What, Why and How
Silicon Valley Code Camp 2009: OAuth: What, Why and HowSilicon Valley Code Camp 2009: OAuth: What, Why and How
Silicon Valley Code Camp 2009: OAuth: What, Why and How
Manish Pandit
 
SPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDrive
SPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDriveSPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDrive
SPS London 2019 Enabling External Sharing in Office 365, SharePoint and OneDrive
Chirag Patel
 
Everything you ever wanted to know about external sharing in Microsoft 365 - ...
Everything you ever wanted to know about external sharing in Microsoft 365 - ...Everything you ever wanted to know about external sharing in Microsoft 365 - ...
Everything you ever wanted to know about external sharing in Microsoft 365 - ...
Chirag Patel
 
Everything you need to know about sharing files in SharePoint and OneDrive
Everything you need to know about sharing files in SharePoint and OneDriveEverything you need to know about sharing files in SharePoint and OneDrive
Everything you need to know about sharing files in SharePoint and OneDrive
Drew Madelung
 
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Everything you need to know about sharing files in SharePoint & OneDrive - SP...Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Drew Madelung
 
Making a real world sharing strategy for SharePoint, OneDrive & Teams
Making a real world sharing strategy for SharePoint, OneDrive & TeamsMaking a real world sharing strategy for SharePoint, OneDrive & Teams
Making a real world sharing strategy for SharePoint, OneDrive & Teams
Drew Madelung
 
Everything you need to know about external sharing in OneDrive, SharePoint, a...
Everything you need to know about external sharing in OneDrive, SharePoint, a...Everything you need to know about external sharing in OneDrive, SharePoint, a...
Everything you need to know about external sharing in OneDrive, SharePoint, a...
Drew Madelung
 
SharePoint Administration & Permissions
SharePoint Administration & PermissionsSharePoint Administration & Permissions
SharePoint Administration & Permissions
Craig Jahnke
 
Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...
Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...
Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...
Chirag Patel
 
Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...
Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...
Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...
PowerSaturdayParis
 
Sp2013 communities
Sp2013 communitiesSp2013 communities
Sp2013 communities
Maggie Malone Swearingen
 
SharePoint External Sharing
SharePoint External SharingSharePoint External Sharing
SharePoint External Sharing
Gregory Zelfond
 
Working with External Partners in Office 365
Working with External Partners in Office 365Working with External Partners in Office 365
Working with External Partners in Office 365
Bill Gaylor
 
Sharing Nicely with Others - External Sharing in SharePoint Online
Sharing Nicely with Others - External Sharing in SharePoint OnlineSharing Nicely with Others - External Sharing in SharePoint Online
Sharing Nicely with Others - External Sharing in SharePoint Online
Dean Virag
 
Permissions level in SPO
Permissions level in SPOPermissions level in SPO
Permissions level in SPO
CloudFronts Technologies LLP.
 
Salesforce admin training 2
Salesforce admin training 2Salesforce admin training 2
Salesforce admin training 2
HungPham381
 
Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013
AntonioMaio2
 
OneDrive for Business for Administrators - SPS New York 2018
OneDrive for Business for Administrators - SPS New York 2018OneDrive for Business for Administrators - SPS New York 2018
OneDrive for Business for Administrators - SPS New York 2018
Drew Madelung
 
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Mark Jones
 
Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...
Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...
Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...
Chirag Patel
 
SPUnite17 - External Sharing in SharePoint Online
SPUnite17 - External Sharing in SharePoint OnlineSPUnite17 - External Sharing in SharePoint Online
SPUnite17 - External Sharing in SharePoint Online
Maarten Eekels
 
SPUnite17 External Sharing in SharePoint Online
SPUnite17 External Sharing in SharePoint OnlineSPUnite17 External Sharing in SharePoint Online
SPUnite17 External Sharing in SharePoint Online
NCCOMMS
 
Dev Dives: Master advanced authentication and performance in Productivity Act...
Dev Dives: Master advanced authentication and performance in Productivity Act...Dev Dives: Master advanced authentication and performance in Productivity Act...
Dev Dives: Master advanced authentication and performance in Productivity Act...
UiPathCommunity
 
123445566544333222333444dxcvbcvcvharsh.pptx
123445566544333222333444dxcvbcvcvharsh.pptx123445566544333222333444dxcvbcvcvharsh.pptx
123445566544333222333444dxcvbcvcvharsh.pptx
gargh1099
 
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Rahsaan L. Browne
 

More Related Content

Similar to Deep Dive on Office 365 - External Sharing

Everything you need to know about sharing files in SharePoint and OneDrive
Everything you need to know about sharing files in SharePoint and OneDriveEverything you need to know about sharing files in SharePoint and OneDrive
Everything you need to know about sharing files in SharePoint and OneDrive
Drew Madelung
 
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Everything you need to know about sharing files in SharePoint & OneDrive - SP...Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Drew Madelung
 
OneDrive for Business for Administrators - SPS New York 2018
OneDrive for Business for Administrators - SPS New York 2018OneDrive for Business for Administrators - SPS New York 2018
OneDrive for Business for Administrators - SPS New York 2018
Drew Madelung
 
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Mark Jones
 
Dev Dives: Master advanced authentication and performance in Productivity Act...
Dev Dives: Master advanced authentication and performance in Productivity Act...Dev Dives: Master advanced authentication and performance in Productivity Act...
Dev Dives: Master advanced authentication and performance in Productivity Act...
UiPathCommunity
 

Similar to Deep Dive on Office 365 - External Sharing (20)

Everything you need to know about sharing files in SharePoint and OneDrive
Everything you need to know about sharing files in SharePoint and OneDriveEverything you need to know about sharing files in SharePoint and OneDrive
Everything you need to know about sharing files in SharePoint and OneDrive
 
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Everything you need to know about sharing files in SharePoint & OneDrive - SP...Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
 
Making a real world sharing strategy for SharePoint, OneDrive & Teams
Making a real world sharing strategy for SharePoint, OneDrive & TeamsMaking a real world sharing strategy for SharePoint, OneDrive & Teams
Making a real world sharing strategy for SharePoint, OneDrive & Teams
 
Everything you need to know about external sharing in OneDrive, SharePoint, a...
Everything you need to know about external sharing in OneDrive, SharePoint, a...Everything you need to know about external sharing in OneDrive, SharePoint, a...
Everything you need to know about external sharing in OneDrive, SharePoint, a...
 
SharePoint Administration & Permissions
SharePoint Administration & PermissionsSharePoint Administration & Permissions
SharePoint Administration & Permissions
 
Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...
Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...
Power Saturday Paris 2019 - Enabling External Sharing in Office 365, SharePo...
 
Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...
Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...
Power Saturday 2019 F3 - Enabling external sharing in Office365 SharePoint an...
 
Sp2013 communities
Sp2013 communitiesSp2013 communities
Sp2013 communities
 
SharePoint External Sharing
SharePoint External SharingSharePoint External Sharing
SharePoint External Sharing
 
Working with External Partners in Office 365
Working with External Partners in Office 365Working with External Partners in Office 365
Working with External Partners in Office 365
 
Sharing Nicely with Others - External Sharing in SharePoint Online
Sharing Nicely with Others - External Sharing in SharePoint OnlineSharing Nicely with Others - External Sharing in SharePoint Online
Sharing Nicely with Others - External Sharing in SharePoint Online
 
Permissions level in SPO
Permissions level in SPOPermissions level in SPO
Permissions level in SPO
 
Salesforce admin training 2
Salesforce admin training 2Salesforce admin training 2
Salesforce admin training 2
 
Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013Best Practices for Security in Microsoft SharePoint 2013
Best Practices for Security in Microsoft SharePoint 2013
 
OneDrive for Business for Administrators - SPS New York 2018
OneDrive for Business for Administrators - SPS New York 2018OneDrive for Business for Administrators - SPS New York 2018
OneDrive for Business for Administrators - SPS New York 2018
 
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
 
Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...
Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...
Supporting third-party access and sharing in Microsoft Teams - Teams Day Onli...
 
SPUnite17 - External Sharing in SharePoint Online
SPUnite17 - External Sharing in SharePoint OnlineSPUnite17 - External Sharing in SharePoint Online
SPUnite17 - External Sharing in SharePoint Online
 
SPUnite17 External Sharing in SharePoint Online
SPUnite17 External Sharing in SharePoint OnlineSPUnite17 External Sharing in SharePoint Online
SPUnite17 External Sharing in SharePoint Online
 
Dev Dives: Master advanced authentication and performance in Productivity Act...
Dev Dives: Master advanced authentication and performance in Productivity Act...Dev Dives: Master advanced authentication and performance in Productivity Act...
Dev Dives: Master advanced authentication and performance in Productivity Act...
 

Recently uploaded

Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Rahsaan L. Browne
 
527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf
rajpreetkaur75080
 

Recently uploaded (15)

123445566544333222333444dxcvbcvcvharsh.pptx
123445566544333222333444dxcvbcvcvharsh.pptx123445566544333222333444dxcvbcvcvharsh.pptx
123445566544333222333444dxcvbcvcvharsh.pptx
 
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
Writing Sample 2 -Bridging the Divide: Enhancing Public Engagement in Urban D...
 
Pollinator Ambassador Earth Steward Day Presentation 2024-05-22
Pollinator Ambassador Earth Steward Day Presentation 2024-05-22Pollinator Ambassador Earth Steward Day Presentation 2024-05-22
Pollinator Ambassador Earth Steward Day Presentation 2024-05-22
 
Getting started with Amazon Bedrock Studio and Control Tower
Getting started with Amazon Bedrock Studio and Control TowerGetting started with Amazon Bedrock Studio and Control Tower
Getting started with Amazon Bedrock Studio and Control Tower
 
Eureka, I found it! - Special Libraries Association 2021 Presentation
Eureka, I found it! - Special Libraries Association 2021 PresentationEureka, I found it! - Special Libraries Association 2021 Presentation
Eureka, I found it! - Special Libraries Association 2021 Presentation
 
Acorn Recovery: Restore IT infra within minutes
Acorn Recovery: Restore IT infra within minutesAcorn Recovery: Restore IT infra within minutes
Acorn Recovery: Restore IT infra within minutes
 
Bitcoin Lightning wallet and tic-tac-toe game XOXO
Bitcoin Lightning wallet and tic-tac-toe game XOXOBitcoin Lightning wallet and tic-tac-toe game XOXO
Bitcoin Lightning wallet and tic-tac-toe game XOXO
 
The Canoga Gardens Development Project. PDF
The Canoga Gardens Development Project. PDFThe Canoga Gardens Development Project. PDF
The Canoga Gardens Development Project. PDF
 
Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...
Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...
Competition and Regulation in Professional Services – KLEINER – June 2024 OEC...
 
Oracle Database Administration I (1Z0-082) Exam Dumps 2024.pdf
Oracle Database Administration I (1Z0-082) Exam Dumps 2024.pdfOracle Database Administration I (1Z0-082) Exam Dumps 2024.pdf
Oracle Database Administration I (1Z0-082) Exam Dumps 2024.pdf
 
527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf527598851-ppc-due-to-various-govt-policies.pdf
527598851-ppc-due-to-various-govt-policies.pdf
 
Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...
Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...
Sharpen existing tools or get a new toolbox? Contemporary cluster initiatives...
 
Hi-Tech Industry 2024-25 Prospective.pptx
Hi-Tech Industry 2024-25 Prospective.pptxHi-Tech Industry 2024-25 Prospective.pptx
Hi-Tech Industry 2024-25 Prospective.pptx
 
05232024 Joint Meeting - Community Networking
05232024 Joint Meeting - Community Networking05232024 Joint Meeting - Community Networking
05232024 Joint Meeting - Community Networking
 
0x01 - Newton's Third Law: Static vs. Dynamic Abusers
0x01 - Newton's Third Law: Static vs. Dynamic Abusers0x01 - Newton's Third Law: Static vs. Dynamic Abusers
0x01 - Newton's Third Law: Static vs. Dynamic Abusers
 

Deep Dive on Office 365 - External Sharing

  • 2.
  • 3. Extranet for Partners – Office 365 / SPO Extranet for Partners – Azure B2B Security Controls in Office 365 and SharePoint Online Challenges with Extranet Implementation Demos
  • 4. Network Operational Overheads Identity Management Security Infrastructure Challenges with External Sharing Implementation Firewall Extranet Network Extranet Farm in Azure (IaaS) InternetPartner User CORP User Virtual Network Extranet SharePoint 2013 Farm Active Directory Domain Controller DNS Virtual Network Microsoft Azure Data Center (Australia)
  • 5. Federation = Domains that have established a federation trust Authorization = Access Guest = External User Access B2B = Business to Business Authentication = Identity
  • 6. Google Account Microsoft Account Corporate Identity with no Azure Active Directory ‘presence’ Corporate Identity with Azure Active Directory ‘presence’ Cloud Identity Azure B2B – Identity Types
  • 8. Office 365 Tenant – Global Administrator SharePoint Online Tenancy – SharePoint Administrator SharePoint Online Site Collection Level – SharePoint Administrator SharePoint Online Site Level – SharePoint Site Owner SharePoint Online Site Content Level – Content Owner
  • 10. Configuration Result Notes Don’t allow sharing outside your organization Users will not be able to share sites or content in this site collection with users who do not have licenses to your Office 365 subscription. Default – External Sharing not enabled Allow sharing only with the external users that already exist in your organization’s directory Users will not be able to share sites or content in this site collection with external users who do not already exist in your organization's directory External User must be ‘part of the organisation’ , i.e. accepted the invite and completed the sign-in Allow external users who accept sharing invitations and sign in as authenticated users Site owners or others with full control permissions on a site can share documents with external users by requiring sign-in. All external users will be required to sign in before they can view content. Invitations to view content can be redeemed only once. After an invitation has been accepted, it cannot be shared or used by others to gain access. User must accept the invite, sign-in. After the sign-in process is completed, user is added to organisation’s Azure AD Allow sharing to authenticated external users and using anonymous access. Optionally, you can set links to expire in a specific number of days. Site owners or others with full control permissions can also share documents externally opt to require sign-in, or send an anonymous guest link for documents. When users share a document, they can grant external users either view or edit permissions to the document.External users who receive anonymous guest links can view or edit that content without signing in. Anonymous guest links could potentially be forwarded or shared with other people, who might also be able to view or edit the content without signing in. Not recommended
  • 11. Configuration Result Notes Don’t allow sharing outside your organization Users will not be able to share sites or content in this site collection with users who do not have licenses to your Office 365 subscription. Default – External Sharing not enabled Allow sharing only with the external users that already exist in your organization’s directory Users will not be able to share sites or content in this site collection with external users who do not already exist in your organization's directory External User must be ‘part of the organisation’ , i.e. accepted the invite and completed the sign-in Allow external users who accept sharing invitations and sign in as authenticated users Site owners or others with full control permissions on a site can share documents with external users by requiring sign-in. All external users will be required to sign in before they can view content. Invitations to view content can be redeemed only once. After an invitation has been accepted, it cannot be shared or used by others to gain access. User must accept the invite, sign-in. After the sign-in process is completed, user is added to organisation’s Azure AD Allow both external users who accept sharing invitations and guest links Site owners or others with full control permissions can share sites with external users. All external users will be required to sign in before they can view content on a site that has been shared. Site owners or others with full control permissions can also share documents externally opt to require sign-in, or send an anonymous guest link for documents. External users who receive anonymous guest links can view or edit that content without signing in. Anonymous guest links could potentially be forwarded or shared with other people, who might also be able to view or edit the content without signing in. When users share a document, they can grant external users either view or edit permissions to the document. Not recommended
  • 13.  External users can use Office Web Apps to view and edit  External users can use Office Web Apps to edit if they have permissions  External users can use Office Client edit – login required to edit  Inherit use rights of the user who invites external user.  An external user can perform tasks on a site consistent with the permission level that they are assigned.  External users will be able to see other types of content on sites.
  • 14.  External users cannot create their own personal sites (My Sites). This means that they do not have their own One Drive for Business.  External users cannot Delve. They also cannot edit their own profile, change their photo, or see aggregated tasks.  External users do not add quota to the overall tenant storage pool (this is determined by licensed users only).  External users cannot be an administrator for a site collection.  By default, external users cannot access the Search Center and will not be able to execute searches against “everything” (cross site collection search)  As external users are cannot be licensed as an enterprise user, they will not have access to any of the licensed components such as Exchange Online, Skype for Business, etc.

Editor's Notes

  1. Azure AD B2B allows partner managed identities to access your corporate applications like SharePoint online without having to manage the identity itself. Azure AD provides a single point for federation where each user has a single Azure AD account. Azure AD also allows non federated business partners to sign up for Azure AD accounts
  2. Add an AAD user, an MSA user and a gmail user as a B2B guest End user experience redeeming the invitation Viral Tenancy Add a non-consumer domain user, not yet in AAD as a B2B guest End user experience redeeming the invitation and creating a viral tenancy creation
  3. Add an AAD user, an MSA user and a gmail user as a B2B guest End user experience redeeming the invitation Viral Tenancy Add a non-consumer domain user, not yet in AAD as a B2B guest End user experience redeeming the invitation and creating a viral tenancy creation