SlideShare a Scribd company logo

Sfspug april-2014 permissions

Download as PPTX, PDF
Vickey Bird
Vickey Bird
TechnologyBusiness
1 of 17
1 PG&E SharePoint Users Group April 10, 2014 San Francisco
San Francisco SharePoint Users Group – April 2014 22 Best Practice- SharePoint Permission Management
San Francisco SharePoint Users Group – April 2014 3 Goals for permission management • Easy to understand • Self-documenting • Secures confidential content • Easy to administer • Keep track of who changes permissions
San Francisco SharePoint Users Group – April 2014 4 Knowledge Assumptions • Basic SharePoint Navigation • Know how to create groups • Know how to add users to groups http://xkcd.com/1339/
San Francisco SharePoint Users Group – April 2014 5
San Francisco SharePoint Users Group – April 2014 6
San Francisco SharePoint Users Group – April 2014 7 SharePoint Permissions Model
San Francisco SharePoint Users Group – April 2014 8 SharePoint Permission Model
San Francisco SharePoint Users Group – April 2014 9 SharePoint Permission Model
San Francisco SharePoint Users Group – April 2014 10 View Permissions Inheritance Access via -> Site Settings -> Site Permissions -> Show these items
San Francisco SharePoint Users Group – April 2014 11 Three Levels of Admin RightsIn descending order of power • Primary/Secondary Site Collection Administrators Can only be changed by Farm Administrators Highest level of admin rights for a site collection Receive system emails for site collection Has admin rights to everything in site collection • Site Collection Administrators Can be added/removed by other Site Collection Admins Receive system emails for site collection Cannot remove Primary/Secondary SCAs Has admin rights to everything in site collection • Users with Full Control Rights Cannot added/remove SCAs Can control permissions of other users Do not receive system emails for site collection Can delete objects they have full control on This includes the entire site collection if they have rights at the root!
San Francisco SharePoint Users Group – April 2014 12 Enable Auditing Access via -> Site Settings -> Configure Audit Settings
San Francisco SharePoint Users Group – April 2014 13 Best Practices • Keep permissions Safe for Work, no naked IDs • Use the default groups whenever possible • Create new groups for specific security needs • Create new groups at the root of your site collection with read permission, then elevate • Document in the group’s description what it provides access to • Place more public information at the upper levels of your site • Place more secure information at the lower levels of your site • Limit the number of users with admin rights • If needed, enable auditing
San Francisco SharePoint Users Group – April 2014 14 Fixing Permissions • Role Based or Hierarchy Based • Plan a new group where ever a specific, discrete permission requirement exists • Make the group names as descriptive as possible, and/or write out a detailed, plain English narrative of the group’s purpose in the Description field • Create all groups at the root of your site collection with Read permissions • Elevate these permissions as needed within the site • Place users into groups as required
San Francisco SharePoint Users Group – April 2014 15 Fixing Permissions • Communicate out to your users the date & time you will be switching over to a new permissions management scheme • Ensure your users know they should contact you directly if they lose access to anything • On the date and time agreed upon, remove all individually assigned users permissions on your site • All that should be left are groups on your permissions screens
San Francisco SharePoint Users Group – April 2014 16 Questions Source: http://xkcd.com/1349
17 Thank You Presenter Patrick.Reeves@pge.com

Recommended

Get Ready for Alfresco 4.0
Get Ready for Alfresco 4.0Get Ready for Alfresco 4.0
Get Ready for Alfresco 4.0Alfresco Software
 
Back to the Basics: SharePoint Fundamentals by Joel Oleson
Back to the Basics: SharePoint Fundamentals by Joel OlesonBack to the Basics: SharePoint Fundamentals by Joel Oleson
Back to the Basics: SharePoint Fundamentals by Joel OlesonJoel Oleson
 
Week9 sp2012_Lecture part1 defintions
Week9 sp2012_Lecture part1 defintionsWeek9 sp2012_Lecture part1 defintions
Week9 sp2012_Lecture part1 defintionseducw200
 
Reporte cicom 2010
Reporte cicom 2010Reporte cicom 2010
Reporte cicom 2010Arturo Huerta Olivares
 
6th Math (C1) - Lesson 41--Dec12
6th Math (C1) - Lesson 41--Dec126th Math (C1) - Lesson 41--Dec12
6th Math (C1) - Lesson 41--Dec12jdurst65
 
Accent colour ideas
Accent colour ideasAccent colour ideas
Accent colour ideasrizla1991
 
Assignment 18 mode theory
Assignment 18 mode theoryAssignment 18 mode theory
Assignment 18 mode theoryMissConnell
 
Kebab Connection
Kebab ConnectionKebab Connection
Kebab Connectionmapauro
 

Recommended

Get Ready for Alfresco 4.0
Get Ready for Alfresco 4.0Get Ready for Alfresco 4.0
Get Ready for Alfresco 4.0Alfresco Software
 
Back to the Basics: SharePoint Fundamentals by Joel Oleson
Back to the Basics: SharePoint Fundamentals by Joel OlesonBack to the Basics: SharePoint Fundamentals by Joel Oleson
Back to the Basics: SharePoint Fundamentals by Joel OlesonJoel Oleson
 
Week9 sp2012_Lecture part1 defintions
Week9 sp2012_Lecture part1 defintionsWeek9 sp2012_Lecture part1 defintions
Week9 sp2012_Lecture part1 defintionseducw200
 
Reporte cicom 2010
Reporte cicom 2010Reporte cicom 2010
Reporte cicom 2010Arturo Huerta Olivares
 
6th Math (C1) - Lesson 41--Dec12
6th Math (C1) - Lesson 41--Dec126th Math (C1) - Lesson 41--Dec12
6th Math (C1) - Lesson 41--Dec12jdurst65
 
Accent colour ideas
Accent colour ideasAccent colour ideas
Accent colour ideasrizla1991
 
Assignment 18 mode theory
Assignment 18 mode theoryAssignment 18 mode theory
Assignment 18 mode theoryMissConnell
 
Kebab Connection
Kebab ConnectionKebab Connection
Kebab Connectionmapauro
 
Dynamic Content using Search - SPS Nashville
Dynamic Content using Search - SPS NashvilleDynamic Content using Search - SPS Nashville
Dynamic Content using Search - SPS NashvilleMichael Oryszak
 
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...J. Kevin Parker, CIP
 
Preparing for Acquia Certification
Preparing for Acquia CertificationPreparing for Acquia Certification
Preparing for Acquia CertificationAcquia
 
Manage how people use your SharePoint Online
Manage how people use your SharePoint OnlineManage how people use your SharePoint Online
Manage how people use your SharePoint OnlineSuhail Jamaldeen
 
2014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 20132014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 2013Don Donais
 
Share point pilot meeting presentation
Share point pilot meeting presentationShare point pilot meeting presentation
Share point pilot meeting presentationBarry Lambson
 
RA21 Charleston Library Conference Presentation
RA21 Charleston Library Conference Presentation RA21 Charleston Library Conference Presentation
RA21 Charleston Library Conference Presentation National Information Standards Organization (NISO)
 
IT Unity - Tips and tricks to help move your SharePoint users away from file...
IT Unity - Tips and tricks to help move your SharePoint users away from file...IT Unity - Tips and tricks to help move your SharePoint users away from file...
IT Unity - Tips and tricks to help move your SharePoint users away from file...Jasper Oosterveld
 
CORE Repositories Dashboard
CORE Repositories DashboardCORE Repositories Dashboard
CORE Repositories DashboardNancy Pontika
 
SPUnite17 IT Pros Guide to Managing SharePoint Search
SPUnite17 IT Pros Guide to Managing SharePoint SearchSPUnite17 IT Pros Guide to Managing SharePoint Search
SPUnite17 IT Pros Guide to Managing SharePoint SearchNCCOMMS
 
APNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC
 
APNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC
 
Web Analytics
Web AnalyticsWeb Analytics
Web AnalyticsAman Mehra
 
Managing permissions in SharePoint
Managing permissions in SharePointManaging permissions in SharePoint
Managing permissions in SharePointpearce.alex
 
14 Tips for Planning ECM Content Migration to SharePoint
14 Tips for Planning ECM Content Migration to SharePoint14 Tips for Planning ECM Content Migration to SharePoint
14 Tips for Planning ECM Content Migration to SharePointJoel Oleson
 
Search
SearchSearch
SearchGayathri Narayanan
 
How Carolinas HealthCare System Governs SharePoint
How Carolinas HealthCare System Governs SharePointHow Carolinas HealthCare System Governs SharePoint
How Carolinas HealthCare System Governs SharePointKelly Jones
 
Mother always said "Did You Ask?": SharePoint 2010 Permissions
Mother always said "Did You Ask?": SharePoint 2010 PermissionsMother always said "Did You Ask?": SharePoint 2010 Permissions
Mother always said "Did You Ask?": SharePoint 2010 PermissionsRegroove
 
2014 03-27 Share Point Portals
2014 03-27 Share Point Portals2014 03-27 Share Point Portals
2014 03-27 Share Point PortalsRaffa Learning Community
 
NISO access related projects (presented at the Charleston conference 2016)
NISO access related projects (presented at the Charleston conference 2016)NISO access related projects (presented at the Charleston conference 2016)
NISO access related projects (presented at the Charleston conference 2016)Christine Stohn
 
Upgrade tosharepoint2013a mthodicalapproachmn
Upgrade tosharepoint2013a mthodicalapproachmnUpgrade tosharepoint2013a mthodicalapproachmn
Upgrade tosharepoint2013a mthodicalapproachmnVickey Bird
 
Designing an effective information architecture (
Designing an effective information architecture (Designing an effective information architecture (
Designing an effective information architecture (Vickey Bird
 

More Related Content

Similar to Sfspug april-2014 permissions

Dynamic Content using Search - SPS Nashville
Dynamic Content using Search - SPS NashvilleDynamic Content using Search - SPS Nashville
Dynamic Content using Search - SPS NashvilleMichael Oryszak
 
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...J. Kevin Parker, CIP
 
Preparing for Acquia Certification
Preparing for Acquia CertificationPreparing for Acquia Certification
Preparing for Acquia CertificationAcquia
 
Manage how people use your SharePoint Online
Manage how people use your SharePoint OnlineManage how people use your SharePoint Online
Manage how people use your SharePoint OnlineSuhail Jamaldeen
 
2014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 20132014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 2013Don Donais
 
Share point pilot meeting presentation
Share point pilot meeting presentationShare point pilot meeting presentation
Share point pilot meeting presentationBarry Lambson
 
IT Unity - Tips and tricks to help move your SharePoint users away from file...
IT Unity - Tips and tricks to help move your SharePoint users away from file...IT Unity - Tips and tricks to help move your SharePoint users away from file...
IT Unity - Tips and tricks to help move your SharePoint users away from file...Jasper Oosterveld
 
CORE Repositories Dashboard
CORE Repositories DashboardCORE Repositories Dashboard
CORE Repositories DashboardNancy Pontika
 
SPUnite17 IT Pros Guide to Managing SharePoint Search
SPUnite17 IT Pros Guide to Managing SharePoint SearchSPUnite17 IT Pros Guide to Managing SharePoint Search
SPUnite17 IT Pros Guide to Managing SharePoint SearchNCCOMMS
 
APNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC
 
APNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC
 
Managing permissions in SharePoint
Managing permissions in SharePointManaging permissions in SharePoint
Managing permissions in SharePointpearce.alex
 
14 Tips for Planning ECM Content Migration to SharePoint
14 Tips for Planning ECM Content Migration to SharePoint14 Tips for Planning ECM Content Migration to SharePoint
14 Tips for Planning ECM Content Migration to SharePointJoel Oleson
 
How Carolinas HealthCare System Governs SharePoint
How Carolinas HealthCare System Governs SharePointHow Carolinas HealthCare System Governs SharePoint
How Carolinas HealthCare System Governs SharePointKelly Jones
 
Mother always said "Did You Ask?": SharePoint 2010 Permissions
Mother always said "Did You Ask?": SharePoint 2010 PermissionsMother always said "Did You Ask?": SharePoint 2010 Permissions
Mother always said "Did You Ask?": SharePoint 2010 PermissionsRegroove
 
NISO access related projects (presented at the Charleston conference 2016)
NISO access related projects (presented at the Charleston conference 2016)NISO access related projects (presented at the Charleston conference 2016)
NISO access related projects (presented at the Charleston conference 2016)Christine Stohn
 

Similar to Sfspug april-2014 permissions (20)

Dynamic Content using Search - SPS Nashville
Dynamic Content using Search - SPS NashvilleDynamic Content using Search - SPS Nashville
Dynamic Content using Search - SPS Nashville
 
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...
How to Leverage SharePoint 2013 to Organize, Label, Navigate, and Search Your...
 
Preparing for Acquia Certification
Preparing for Acquia CertificationPreparing for Acquia Certification
Preparing for Acquia Certification
 
Manage how people use your SharePoint Online
Manage how people use your SharePoint OnlineManage how people use your SharePoint Online
Manage how people use your SharePoint Online
 
2014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 20132014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 2013
 
Share point pilot meeting presentation
Share point pilot meeting presentationShare point pilot meeting presentation
Share point pilot meeting presentation
 
RA21 Charleston Library Conference Presentation
RA21 Charleston Library Conference Presentation RA21 Charleston Library Conference Presentation
RA21 Charleston Library Conference Presentation
 
IT Unity - Tips and tricks to help move your SharePoint users away from file...
IT Unity - Tips and tricks to help move your SharePoint users away from file...IT Unity - Tips and tricks to help move your SharePoint users away from file...
IT Unity - Tips and tricks to help move your SharePoint users away from file...
 
CORE Repositories Dashboard
CORE Repositories DashboardCORE Repositories Dashboard
CORE Repositories Dashboard
 
SPUnite17 IT Pros Guide to Managing SharePoint Search
SPUnite17 IT Pros Guide to Managing SharePoint SearchSPUnite17 IT Pros Guide to Managing SharePoint Search
SPUnite17 IT Pros Guide to Managing SharePoint Search
 
APNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC Whois Version Upgrade
APNIC Whois Version Upgrade
 
APNIC Whois Version Upgrade
APNIC Whois Version UpgradeAPNIC Whois Version Upgrade
APNIC Whois Version Upgrade
 
Web Analytics
Web AnalyticsWeb Analytics
Web Analytics
 
Managing permissions in SharePoint
Managing permissions in SharePointManaging permissions in SharePoint
Managing permissions in SharePoint
 
14 Tips for Planning ECM Content Migration to SharePoint
14 Tips for Planning ECM Content Migration to SharePoint14 Tips for Planning ECM Content Migration to SharePoint
14 Tips for Planning ECM Content Migration to SharePoint
 
Search
SearchSearch
Search
 
How Carolinas HealthCare System Governs SharePoint
How Carolinas HealthCare System Governs SharePointHow Carolinas HealthCare System Governs SharePoint
How Carolinas HealthCare System Governs SharePoint
 
Mother always said "Did You Ask?": SharePoint 2010 Permissions
Mother always said "Did You Ask?": SharePoint 2010 PermissionsMother always said "Did You Ask?": SharePoint 2010 Permissions
Mother always said "Did You Ask?": SharePoint 2010 Permissions
 
2014 03-27 Share Point Portals
2014 03-27 Share Point Portals2014 03-27 Share Point Portals
2014 03-27 Share Point Portals
 
NISO access related projects (presented at the Charleston conference 2016)
NISO access related projects (presented at the Charleston conference 2016)NISO access related projects (presented at the Charleston conference 2016)
NISO access related projects (presented at the Charleston conference 2016)
 

More from Vickey Bird

Upgrade tosharepoint2013a mthodicalapproachmn
Upgrade tosharepoint2013a mthodicalapproachmnUpgrade tosharepoint2013a mthodicalapproachmn
Upgrade tosharepoint2013a mthodicalapproachmnVickey Bird
 
Designing an effective information architecture (
Designing an effective information architecture (Designing an effective information architecture (
Designing an effective information architecture (Vickey Bird
 
Automated server farm installation using psconfig and stsadm dm300 - curry ...
Automated server farm installation using psconfig and stsadm dm300 - curry ...Automated server farm installation using psconfig and stsadm dm300 - curry ...
Automated server farm installation using psconfig and stsadm dm300 - curry ...Vickey Bird
 
04-Working with SharePoint Objects on the Server
04-Working with SharePoint Objects on the Server04-Working with SharePoint Objects on the Server
04-Working with SharePoint Objects on the ServerVickey Bird
 
01-Introduction to the SharePoint 2010 Development Platform
01-Introduction to the SharePoint 2010 Development Platform01-Introduction to the SharePoint 2010 Development Platform
01-Introduction to the SharePoint 2010 Development PlatformVickey Bird
 
02-Using SharePoint 2010 Developer Tools
02-Using SharePoint 2010 Developer Tools02-Using SharePoint 2010 Developer Tools
02-Using SharePoint 2010 Developer ToolsVickey Bird
 
10-Developing Silverlight Applications for SharePoint
10-Developing Silverlight Applications for SharePoint10-Developing Silverlight Applications for SharePoint
10-Developing Silverlight Applications for SharePointVickey Bird
 
08-Working with Client-Based APIs for SharePoint 2010
08-Working with Client-Based APIs for SharePoint 201008-Working with Client-Based APIs for SharePoint 2010
08-Working with Client-Based APIs for SharePoint 2010Vickey Bird
 
12-Working with SharePoint Server Profiles and Taxonomy APIs
12-Working with SharePoint Server Profiles and Taxonomy APIs12-Working with SharePoint Server Profiles and Taxonomy APIs
12-Working with SharePoint Server Profiles and Taxonomy APIsVickey Bird
 
09-Developing Interactive User Interfaces
09-Developing Interactive User Interfaces09-Developing Interactive User Interfaces
09-Developing Interactive User InterfacesVickey Bird
 
05-Creating Event Receivers and Application Settings
05-Creating Event Receivers and Application Settings05-Creating Event Receivers and Application Settings
05-Creating Event Receivers and Application SettingsVickey Bird
 
13-Developing Content Management Solutions
13-Developing Content Management Solutions13-Developing Content Management Solutions
13-Developing Content Management SolutionsVickey Bird
 
06-Developing Solutions by Using Business Connectivity Services
06-Developing Solutions by Using Business Connectivity Services06-Developing Solutions by Using Business Connectivity Services
06-Developing Solutions by Using Business Connectivity ServicesVickey Bird
 
03-Developing SharePoint 2010 Web Parts
03-Developing SharePoint 2010 Web Parts03-Developing SharePoint 2010 Web Parts
03-Developing SharePoint 2010 Web PartsVickey Bird
 
11-Developing Sandboxed Solutions
11-Developing Sandboxed Solutions11-Developing Sandboxed Solutions
11-Developing Sandboxed SolutionsVickey Bird
 
07-Developing SharePoint 2010 Workflows
07-Developing SharePoint 2010 Workflows07-Developing SharePoint 2010 Workflows
07-Developing SharePoint 2010 WorkflowsVickey Bird
 

More from Vickey Bird (16)

Upgrade tosharepoint2013a mthodicalapproachmn
Upgrade tosharepoint2013a mthodicalapproachmnUpgrade tosharepoint2013a mthodicalapproachmn
Upgrade tosharepoint2013a mthodicalapproachmn
 
Designing an effective information architecture (
Designing an effective information architecture (Designing an effective information architecture (
Designing an effective information architecture (
 
Automated server farm installation using psconfig and stsadm dm300 - curry ...
Automated server farm installation using psconfig and stsadm dm300 - curry ...Automated server farm installation using psconfig and stsadm dm300 - curry ...
Automated server farm installation using psconfig and stsadm dm300 - curry ...
 
04-Working with SharePoint Objects on the Server
04-Working with SharePoint Objects on the Server04-Working with SharePoint Objects on the Server
04-Working with SharePoint Objects on the Server
 
01-Introduction to the SharePoint 2010 Development Platform
01-Introduction to the SharePoint 2010 Development Platform01-Introduction to the SharePoint 2010 Development Platform
01-Introduction to the SharePoint 2010 Development Platform
 
02-Using SharePoint 2010 Developer Tools
02-Using SharePoint 2010 Developer Tools02-Using SharePoint 2010 Developer Tools
02-Using SharePoint 2010 Developer Tools
 
10-Developing Silverlight Applications for SharePoint
10-Developing Silverlight Applications for SharePoint10-Developing Silverlight Applications for SharePoint
10-Developing Silverlight Applications for SharePoint
 
08-Working with Client-Based APIs for SharePoint 2010
08-Working with Client-Based APIs for SharePoint 201008-Working with Client-Based APIs for SharePoint 2010
08-Working with Client-Based APIs for SharePoint 2010
 
12-Working with SharePoint Server Profiles and Taxonomy APIs
12-Working with SharePoint Server Profiles and Taxonomy APIs12-Working with SharePoint Server Profiles and Taxonomy APIs
12-Working with SharePoint Server Profiles and Taxonomy APIs
 
09-Developing Interactive User Interfaces
09-Developing Interactive User Interfaces09-Developing Interactive User Interfaces
09-Developing Interactive User Interfaces
 
05-Creating Event Receivers and Application Settings
05-Creating Event Receivers and Application Settings05-Creating Event Receivers and Application Settings
05-Creating Event Receivers and Application Settings
 
13-Developing Content Management Solutions
13-Developing Content Management Solutions13-Developing Content Management Solutions
13-Developing Content Management Solutions
 
06-Developing Solutions by Using Business Connectivity Services
06-Developing Solutions by Using Business Connectivity Services06-Developing Solutions by Using Business Connectivity Services
06-Developing Solutions by Using Business Connectivity Services
 
03-Developing SharePoint 2010 Web Parts
03-Developing SharePoint 2010 Web Parts03-Developing SharePoint 2010 Web Parts
03-Developing SharePoint 2010 Web Parts
 
11-Developing Sandboxed Solutions
11-Developing Sandboxed Solutions11-Developing Sandboxed Solutions
11-Developing Sandboxed Solutions
 
07-Developing SharePoint 2010 Workflows
07-Developing SharePoint 2010 Workflows07-Developing SharePoint 2010 Workflows
07-Developing SharePoint 2010 Workflows
 

Recently uploaded

FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraDeakin University
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsPrecisely
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024BookNet Canada
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 

Recently uploaded (20)

FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning era
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power Systems
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 

Sfspug april-2014 permissions

  • 1. 1 PG&E SharePoint Users Group April 10, 2014 San Francisco
  • 2. San Francisco SharePoint Users Group – April 2014 22 Best Practice- SharePoint Permission Management
  • 3. San Francisco SharePoint Users Group – April 2014 3 Goals for permission management • Easy to understand • Self-documenting • Secures confidential content • Easy to administer • Keep track of who changes permissions
  • 4. San Francisco SharePoint Users Group – April 2014 4 Knowledge Assumptions • Basic SharePoint Navigation • Know how to create groups • Know how to add users to groups http://xkcd.com/1339/
  • 5. San Francisco SharePoint Users Group – April 2014 5
  • 6. San Francisco SharePoint Users Group – April 2014 6
  • 7. San Francisco SharePoint Users Group – April 2014 7 SharePoint Permissions Model
  • 8. San Francisco SharePoint Users Group – April 2014 8 SharePoint Permission Model
  • 9. San Francisco SharePoint Users Group – April 2014 9 SharePoint Permission Model
  • 10. San Francisco SharePoint Users Group – April 2014 10 View Permissions Inheritance Access via -> Site Settings -> Site Permissions -> Show these items
  • 11. San Francisco SharePoint Users Group – April 2014 11 Three Levels of Admin RightsIn descending order of power • Primary/Secondary Site Collection Administrators Can only be changed by Farm Administrators Highest level of admin rights for a site collection Receive system emails for site collection Has admin rights to everything in site collection • Site Collection Administrators Can be added/removed by other Site Collection Admins Receive system emails for site collection Cannot remove Primary/Secondary SCAs Has admin rights to everything in site collection • Users with Full Control Rights Cannot added/remove SCAs Can control permissions of other users Do not receive system emails for site collection Can delete objects they have full control on This includes the entire site collection if they have rights at the root!
  • 12. San Francisco SharePoint Users Group – April 2014 12 Enable Auditing Access via -> Site Settings -> Configure Audit Settings
  • 13. San Francisco SharePoint Users Group – April 2014 13 Best Practices • Keep permissions Safe for Work, no naked IDs • Use the default groups whenever possible • Create new groups for specific security needs • Create new groups at the root of your site collection with read permission, then elevate • Document in the group’s description what it provides access to • Place more public information at the upper levels of your site • Place more secure information at the lower levels of your site • Limit the number of users with admin rights • If needed, enable auditing
  • 14. San Francisco SharePoint Users Group – April 2014 14 Fixing Permissions • Role Based or Hierarchy Based • Plan a new group where ever a specific, discrete permission requirement exists • Make the group names as descriptive as possible, and/or write out a detailed, plain English narrative of the group’s purpose in the Description field • Create all groups at the root of your site collection with Read permissions • Elevate these permissions as needed within the site • Place users into groups as required
  • 15. San Francisco SharePoint Users Group – April 2014 15 Fixing Permissions • Communicate out to your users the date & time you will be switching over to a new permissions management scheme • Ensure your users know they should contact you directly if they lose access to anything • On the date and time agreed upon, remove all individually assigned users permissions on your site • All that should be left are groups on your permissions screens
  • 16. San Francisco SharePoint Users Group – April 2014 16 Questions Source: http://xkcd.com/1349