Presentation is loading. Please wait.

Presentation is loading. Please wait.

Inventory & Monitoring Program SharePoint Permissions Who has access? What can they do with the access? What is the easiest way to manage the permissions?

Published byEmory Richard Modified over 9 years ago

Similar presentations

Presentation on theme: "Inventory & Monitoring Program SharePoint Permissions Who has access? What can they do with the access? What is the easiest way to manage the permissions?"— Presentation transcript:

1 Inventory & Monitoring Program SharePoint Permissions Who has access? What can they do with the access? What is the easiest way to manage the permissions? What structure of sites and lists/libraries makes the most sense for your workflow?

2 Inventory & Monitoring Program All sites inheriting permissions

3 Inventory & Monitoring Program “Breaking” some of the inheritance lines

4 Inventory & Monitoring Program All securable objects inheriting permissions

5 Inventory & Monitoring Program “Breaking” some of the inheritance lines

6 Inventory & Monitoring Program Authentication – establishes identity We use Active Directory as the authentication provider AD user accounts can represent individuals or groups of people –NPS\dsmith –NPS\domain users AD user accounts are added to SharePoint, either as individual users or as part of SharePoint groups

7 Inventory & Monitoring Program Authorization - permission to do certain tasks What can a user see? Apply permissions so users can get to the information they need, but not have access to restricted information What can a user do with the resource? Apply permissions so that the ability to modify the resources is not more than is necessary

8 Inventory & Monitoring Program Permissions and Permission Levels Thirty-three distinct permissions Permission levels are groups of distinct permissions Permission levels are assigned to individual users or to SharePoint groups Default permission levels are full control, design, contribute and read

9 Inventory & Monitoring Program Default permission levels Full Control (Owners group): All permissions. Design: Create lists and document libraries, edit pages and apply themes to the web site. Contribute (Members group): Add, edit, and delete items in existing lists and document libraries. Read (Visitors group): Read-only access. View and open items and documents. Limited Access: Automatically assigned, to give enough access so the user can navigate to the item that they do have permission for.

10 Inventory & Monitoring Program

11 Planning Design a clear hierarchy of inheritance Separate sensitive data into its own lists, libraries, or even better, subsites Balance ease of administration with the control of granular permissions Decide what groups to use and what permission levels to give them

12 Inventory & Monitoring Program SharePoint Groups

13 Inventory & Monitoring Program Who might be in these groups? Team Site Owners (Full Control) –Two or three individuals at the most Team Site Members (Contribute) –Might be individuals if a small workgroup –Might be an Active Directory group that includes everybody in an office or organizational group (e.g. NPS\inpnridg for NRPC) –Might be all NPS domain users Team Site Visitors –Often all NPS domain users if not sensitive info on site

14 Inventory & Monitoring Program A group can have different permissions on different sites!

15 Inventory & Monitoring Program Fine Points In most cases, assign permission levels to SharePoint groups instead of individuals Look for existing Active Directory groups or ask that they be created All groups have an owner (can be a single person or a single group) Settings determine who can view or edit the membership of a group Restricted access sites should be lower in the hierarchy

16 Inventory & Monitoring Program

Download ppt "Inventory & Monitoring Program SharePoint Permissions Who has access? What can they do with the access? What is the easiest way to manage the permissions?"

Similar presentations

JERRY GILES MNIS Unclassified Information Sharing Service PAUL HILTON.

JERRY GILES MNIS Unclassified Information Sharing Service PAUL HILTON.
Kentico CMS 5.5 R2 What’s New. Highlights Intranet Solution Document management package – WebDAV support – Project & task management – Document libraries.

Kentico CMS 5.5 R2 What’s New. Highlights Intranet Solution Document management package – WebDAV support – Project & task management – Document libraries.
File Server Organization and Best Practices IT Partners June, 02, 2010.

File Server Organization and Best Practices IT Partners June, 02, 2010.
SharePoint 2010 Permissions Keith Tuomi. profile KEITH TUOMI SharePoint Consultant / Developer at itgroove Developing Online Systems since 1991 10 years.

SharePoint 2010 Permissions Keith Tuomi. profile KEITH TUOMI SharePoint Consultant / Developer at itgroove Developing Online Systems since years.
11 WORKING WITH GROUPS Chapter 7. Chapter 7: WORKING WITH GROUPS2 CHAPTER OVERVIEW  Understand the functions of groups and how to use them.  Understand.

11 WORKING WITH GROUPS Chapter 7. Chapter 7: WORKING WITH GROUPS2 CHAPTER OVERVIEW  Understand the functions of groups and how to use them.  Understand.
1 of 4 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 4 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
1 of 6 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 6 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
Administering Active Directory

Administering Active Directory
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
11 SHARING FILE SYSTEM RESOURCES Chapter 9. Chapter 9: SHARING FILE SYSTEM RESOURCES2 CHAPTER OVERVIEW  Create and manage file system shares and work.

11 SHARING FILE SYSTEM RESOURCES Chapter 9. Chapter 9: SHARING FILE SYSTEM RESOURCES2 CHAPTER OVERVIEW  Create and manage file system shares and work.
1 of 7 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 7 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2006 Microsoft Corporation.

1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2006 Microsoft Corporation.
Managing Identity and Permissions

Managing Identity and Permissions
Agenda 22 7.SharePoint Changes 8.Items & Lists 9.Files & Libraries 10.SharePoint & Office 11.Help 12.Wrap Up.

Agenda 22 7.SharePoint Changes 8.Items & Lists 9.Files & Libraries 10.SharePoint & Office 11.Help 12.Wrap Up.
1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2006 Microsoft Corporation.

1 of 5 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2006 Microsoft Corporation.
1 of 4 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 4 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.

1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.
Mark Kashman Senior Product Manager –

Mark Kashman Senior Product Manager –
Chapter 7 WORKING WITH GROUPS.

Chapter 7 WORKING WITH GROUPS.
m AUTHOR EXECUTIVE TRACK CONSULTANTMAUIDAN HOLME.

m AUTHOR EXECUTIVE TRACK CONSULTANTMAUIDAN HOLME.

Similar presentations

Ads by Google