Managing Security and
Permissions in SharePoint
Alex Pearce
 Alex Pearce (Office 365 MVP)
 BFC Networks
 BLOG: http://www.bfcnetworks.com
 apearce@bfcnetworks.com / @alex_pearce
 Interests in Office 365 Education, Configuration
not Customisation, integration.
“Allow a user to data and
content within your
SharePoint environment”
Permission Bingo
 5 in a row – 3 prizes
 Horizontal and Vertical lines only
Agenda
 Permission types
 SharePoint Groups
 Users
 Inheritance of permissions
 Office 365 External Sharing
 Organisation Culture and Structures
Permission normal to users
 View
 Members
 Owners
 Site Collection Administrators
Above and beyond
 Site Collection Administrators
 Web Application – View (search
crawler)
 Web Application – Full Control
 Farm
Approve / Decline
 Approve or Decline content being published
to the requested area
 Only user submitted and approvers can see
content
 Workflow to approve or decline before the
content is available for all to see in that site
SharePoint Groups
“A set of users or groups
defined to a single group to
help manage content better in
SharePoint”*
SharePoint Groups
 Include individual Users or Active Directory
Groups
 Permissions are not set on SharePoint
Groups, they are only groups (doesn’t
matter on their name)
SharePoint Groups: Names
 Include individual Users or Active Directory
Groups
 Permissions are not set on SharePoint
Groups, they are only groups (doesn’t
matter on their name)
SharePoint Groups: Names
SharePoint Groups: Managing
 Set
 Name
 About Me
 Group Owners (can be SharePoint Group)
 Group Settings
– Who can view
– Who can edit
 Membership request
SharePoint Groups: Names
SharePoint Groups: Names
SharePoint Groups: Association
 Each site has 3 groups associated with it
 Visitors (View)
 Members (Contribute)
 Owners (Full Administrators)
 Associated at creation of site
SharePoint Groups: Association
Understanding what a user has
 A user can have permission from the
following
 Added Individually
 Added to a SharePoint Group
 Added to a Active Directory Group
– Then added individually or into a SP Group
 Other
– Site Collection Admin
– Higher Farm Permissions (bad practice)
Check Permissions
 Search by user or group to see how they
have permission to this area (DEMO)
Breaking Down Content
 Site
 List
 Item
Permissions are inherited from the above and
can be broken (break inheritance) so only
certain users can access the content
When we break inheritance
 Copy or remove exciting groups
 Add individual users/groups
 Deny access for users who inherit from
above
BREAKING INHERITANCE
Creating a site with permission set, breaking inheritance on a
document library and setting permissions
Office 365 External Sharing
 Permissions
 View
 Edit
 Give external access to content
 Per site
 Per list/library (recently added)
 Per folder
 Per item
OneDrive: External Sharing
 Allow view with no permissions
 Shared With Everyone folder
– Everyone except External
 Anonymous access to content
EXTERNAL SHARING
Permissions in Office 365 and OneDrive for Business
Organisation Culture/Structure
 What should be accessible to all users to
view, edit or comment?
Yammer
Change is the new constant. Yammer is
a private social network that helps you
and your teams stay on top of it all.
Yammer team collaboration software
and business applications allow you to
bring your team together so you can
have conversations, collaborate on files,
and organize around projects so you
can go further – faster.
Yammer
Change is the new constant. Yammer is
a private social network that helps you
and your teams stay on top of it all.
Yammer team collaboration software
and business applications allow you to
bring your team together so you can
have conversations, collaborate on files,
and organize around projects so you
can go further – faster.
Organisation Culture/Structure
 What should be accessible to all users to
view, edit or comment?
 Does giving users access to content that is
not direct to their job role prevent them
from doing their job?*
 If they find it becomes part of their role, should
they be allowed to comment?
 If they have past experience or a personal
interest, should they be allowed to comment?
Organisation Culture/Structure
 Does an open approach to content and
comments help improve the contribute to
content in that data?
 Should an open approach to social networking
mean a different approach to how we do
permission in other areas (not just SharePoint)?
Organisation Culture/Structure
 Permissions is based on your role but everyone
does it based on the user…Where is the
business continuity if that person leaves?
Should they be able to see the pervious
employees permissions, sites, files? How about
their OneDrive?
Thank you for attending!
Alex Pearce @alex_pearce
apearce@bfcnetworks.com

More Related Content

PPTX
Office 365 Groups: Deep Dive
PPTX
Next Generation Portals: Office 365
PPTX
#spsuk: Understanding the Office 365 Architecture
PPTX
Next Gen Portal in Office 365: April 2015. SUGUK
PPTX
Administering and Managing Office 365 Groups - SharePoint Engage Raleigh 2017
PPTX
Office365 groups from the ground up - SPSNashville
PPTX
Office365 Groups from the Ground Up - SPTechCon San Francisco 2016
PPTX
Office365 groups from the ground up - SPTechCon Boston
Office 365 Groups: Deep Dive
Next Generation Portals: Office 365
#spsuk: Understanding the Office 365 Architecture
Next Gen Portal in Office 365: April 2015. SUGUK
Administering and Managing Office 365 Groups - SharePoint Engage Raleigh 2017
Office365 groups from the ground up - SPSNashville
Office365 Groups from the Ground Up - SPTechCon San Francisco 2016
Office365 groups from the ground up - SPTechCon Boston

What's hot (20)

PPTX
Essentials for the SharePoint Power User - SPTechCon San Francisco 2016
PDF
Useful Things End Users Should Know About Office 365 Groups & Team Sites
PPTX
The top 10 things I wish I had known about O365 groups
PPTX
The New Office 365: Changes in Policy and Practice
PPTX
Establishing a Collaboration Roadmap
PPTX
MVP ComCamp 2014 (Melbourne) - Keeping Up With Office 365
PPTX
SharePoint Saturday Stockholm 2015 - SharePoint Online Friend or Foe
PPTX
Office Delve for Office 365 Administrators
PPTX
SharePoint Server 2016 - Lets get ready - Wisconsin SharePoint User Group
PPTX
Suguk Yammer deep dive
PPTX
Share point saturday putting you at the centre of the intranet
PPTX
What's New with OneDrive for Business - SharePoint Fest Chicago
PPTX
Life in the clouds: SharePoint and Office 365
PPTX
Making a real world sharing strategy for SharePoint, OneDrive & Teams
PPTX
Office 365 Groups - Roadmap & Overview
PPTX
What are SharePoint Hub Sites and how should they be implemented - SPSTC 2018
PPTX
Training – Introduction to SharePoint Online for Collaboration and Document M...
PPTX
Essentials for the SharePoint Power User - NACollabSummit
PPTX
Office 365 Vancouver. A Team Approach to Azure Information Protection
PPTX
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Essentials for the SharePoint Power User - SPTechCon San Francisco 2016
Useful Things End Users Should Know About Office 365 Groups & Team Sites
The top 10 things I wish I had known about O365 groups
The New Office 365: Changes in Policy and Practice
Establishing a Collaboration Roadmap
MVP ComCamp 2014 (Melbourne) - Keeping Up With Office 365
SharePoint Saturday Stockholm 2015 - SharePoint Online Friend or Foe
Office Delve for Office 365 Administrators
SharePoint Server 2016 - Lets get ready - Wisconsin SharePoint User Group
Suguk Yammer deep dive
Share point saturday putting you at the centre of the intranet
What's New with OneDrive for Business - SharePoint Fest Chicago
Life in the clouds: SharePoint and Office 365
Making a real world sharing strategy for SharePoint, OneDrive & Teams
Office 365 Groups - Roadmap & Overview
What are SharePoint Hub Sites and how should they be implemented - SPSTC 2018
Training – Introduction to SharePoint Online for Collaboration and Document M...
Essentials for the SharePoint Power User - NACollabSummit
Office 365 Vancouver. A Team Approach to Azure Information Protection
Everything you need to know about sharing files in SharePoint & OneDrive - SP...
Ad

Viewers also liked (20)

PPTX
SharePoint User Group UK #FutureOfSharePoint 11 May 2016
PPTX
Collab365 Global Summit Slides
PPTX
European SharePoint Conference - TH3
PPTX
Session Slides from DEVintersection Europe
PPTX
Advanced SharePoint Integration (Azure Service Bus and Dynamics CRM)
PPTX
My slides from SharePoint Saturday Oslo
PPTX
Real World SharePoint Debacles
PPTX
Microsoft PowerApps Introduction by Usama Wahab Khan MVP
PPTX
My session slides from unityConnect 2016 in Haarlem
PDF
Gilles Pommier: Edit DevOps with PowerShell for Office 365 and SharePoint Onl...
PDF
Tomasz Głogosz: SharePoint Framework - nowa jakość w client-side development
PDF
Damian Wróblewski: Microsoft SharePoint i Startupy - Synergia technologiczna ...
PDF
Gokan Ozcifci: The Office 365 and Hybrid SharePoint Deployments bare essentials
PDF
Marcin Siewnicki: Inteligentne przepływy - jak wykorzystać możliwości Azure I...
PPTX
Typescript 102 angular and type script
PPTX
Spsnyc 2016 JSLink Primer
PPTX
Typescript 101 introduction
PDF
Practical management of development & QA environments for SharePoint 2013
PPTX
Building rich search experiences Apps for SharePoint
PPTX
Optimizing SharePoint 2013 public-facing websites for Internet search engines
SharePoint User Group UK #FutureOfSharePoint 11 May 2016
Collab365 Global Summit Slides
European SharePoint Conference - TH3
Session Slides from DEVintersection Europe
Advanced SharePoint Integration (Azure Service Bus and Dynamics CRM)
My slides from SharePoint Saturday Oslo
Real World SharePoint Debacles
Microsoft PowerApps Introduction by Usama Wahab Khan MVP
My session slides from unityConnect 2016 in Haarlem
Gilles Pommier: Edit DevOps with PowerShell for Office 365 and SharePoint Onl...
Tomasz Głogosz: SharePoint Framework - nowa jakość w client-side development
Damian Wróblewski: Microsoft SharePoint i Startupy - Synergia technologiczna ...
Gokan Ozcifci: The Office 365 and Hybrid SharePoint Deployments bare essentials
Marcin Siewnicki: Inteligentne przepływy - jak wykorzystać możliwości Azure I...
Typescript 102 angular and type script
Spsnyc 2016 JSLink Primer
Typescript 101 introduction
Practical management of development & QA environments for SharePoint 2013
Building rich search experiences Apps for SharePoint
Optimizing SharePoint 2013 public-facing websites for Internet search engines
Ad

Similar to Managing permissions in SharePoint (20)

PPTX
Helping Organizations & Users Decide: When To Use What In Office 365 - aOS Ca...
PPTX
Nintex Conference Amsterdam 2014 - The evolution of a business collaboration ...
PPTX
Permissions designed to scale
PPTX
SharePoint Skills for Everyone
PPTX
SharePoint Online - Friend or Foe
PPTX
Manage how people use your SharePoint Online
PPTX
How To Help Users Decide: When To Use What In Office 365
PPTX
Office 365 Productivity Tips "September Scrimmage"
PPTX
When To Use What In Office 365
PPTX
SharePoint Permissions Worst Practices
PDF
SharePoint Permissions 101 (text)
PPTX
Primend praktiline pilveseminar - Dokumendihalduse ja kommunikatsiooni viimin...
PPTX
Creating a knowledge community across your organization sug dc
PPTX
Auditing SharePoint Permissions
PPTX
Knowledge sharing through communities sps detroit
PPTX
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
PPTX
European SharePoint Conference 2014 - External Collaboration with SharePoint ...
PPTX
Office365 Governance Is Changing!!
PDF
SharePoint Team Site Permissions #Share4Biz
PPTX
Helping Organizations & Users Decide: When To Use What In Office 365 - aOS Ca...
Nintex Conference Amsterdam 2014 - The evolution of a business collaboration ...
Permissions designed to scale
SharePoint Skills for Everyone
SharePoint Online - Friend or Foe
Manage how people use your SharePoint Online
How To Help Users Decide: When To Use What In Office 365
Office 365 Productivity Tips "September Scrimmage"
When To Use What In Office 365
SharePoint Permissions Worst Practices
SharePoint Permissions 101 (text)
Primend praktiline pilveseminar - Dokumendihalduse ja kommunikatsiooni viimin...
Creating a knowledge community across your organization sug dc
Auditing SharePoint Permissions
Knowledge sharing through communities sps detroit
Paul Stork Collab365 SharePoint Summit slidedeck Going External with SharePoi...
European SharePoint Conference 2014 - External Collaboration with SharePoint ...
Office365 Governance Is Changing!!
SharePoint Team Site Permissions #Share4Biz

Recently uploaded (20)

PDF
INTERSPEECH 2025 「Recent Advances and Future Directions in Voice Conversion」
PDF
sbt 2.0: go big (Scala Days 2025 edition)
PPTX
SGT Report The Beast Plan and Cyberphysical Systems of Control
PDF
The-2025-Engineering-Revolution-AI-Quality-and-DevOps-Convergence.pdf
PDF
Transform-Your-Factory-with-AI-Driven-Quality-Engineering.pdf
PDF
Auditboard EB SOX Playbook 2023 edition.
PDF
LMS bot: enhanced learning management systems for improved student learning e...
PDF
Convolutional neural network based encoder-decoder for efficient real-time ob...
PDF
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
PPTX
agenticai-neweraofintelligence-250529192801-1b5e6870.pptx
PDF
Improvisation in detection of pomegranate leaf disease using transfer learni...
PPTX
MuleSoft-Compete-Deck for midddleware integrations
PDF
Transform-Your-Supply-Chain-with-AI-Driven-Quality-Engineering.pdf
PPTX
GROUP4NURSINGINFORMATICSREPORT-2 PRESENTATION
PDF
IT-ITes Industry bjjbnkmkhkhknbmhkhmjhjkhj
PDF
The-Future-of-Automotive-Quality-is-Here-AI-Driven-Engineering.pdf
PDF
Co-training pseudo-labeling for text classification with support vector machi...
DOCX
Basics of Cloud Computing - Cloud Ecosystem
PDF
Advancing precision in air quality forecasting through machine learning integ...
PDF
Lung cancer patients survival prediction using outlier detection and optimize...
INTERSPEECH 2025 「Recent Advances and Future Directions in Voice Conversion」
sbt 2.0: go big (Scala Days 2025 edition)
SGT Report The Beast Plan and Cyberphysical Systems of Control
The-2025-Engineering-Revolution-AI-Quality-and-DevOps-Convergence.pdf
Transform-Your-Factory-with-AI-Driven-Quality-Engineering.pdf
Auditboard EB SOX Playbook 2023 edition.
LMS bot: enhanced learning management systems for improved student learning e...
Convolutional neural network based encoder-decoder for efficient real-time ob...
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
agenticai-neweraofintelligence-250529192801-1b5e6870.pptx
Improvisation in detection of pomegranate leaf disease using transfer learni...
MuleSoft-Compete-Deck for midddleware integrations
Transform-Your-Supply-Chain-with-AI-Driven-Quality-Engineering.pdf
GROUP4NURSINGINFORMATICSREPORT-2 PRESENTATION
IT-ITes Industry bjjbnkmkhkhknbmhkhmjhjkhj
The-Future-of-Automotive-Quality-is-Here-AI-Driven-Engineering.pdf
Co-training pseudo-labeling for text classification with support vector machi...
Basics of Cloud Computing - Cloud Ecosystem
Advancing precision in air quality forecasting through machine learning integ...
Lung cancer patients survival prediction using outlier detection and optimize...

Managing permissions in SharePoint

  • 1. Managing Security and Permissions in SharePoint Alex Pearce
  • 2.  Alex Pearce (Office 365 MVP)  BFC Networks  BLOG: http://www.bfcnetworks.com  [email protected] / @alex_pearce  Interests in Office 365 Education, Configuration not Customisation, integration.
  • 3. “Allow a user to data and content within your SharePoint environment”
  • 4. Permission Bingo  5 in a row – 3 prizes  Horizontal and Vertical lines only
  • 5. Agenda  Permission types  SharePoint Groups  Users  Inheritance of permissions  Office 365 External Sharing  Organisation Culture and Structures
  • 6. Permission normal to users  View  Members  Owners  Site Collection Administrators
  • 7. Above and beyond  Site Collection Administrators  Web Application – View (search crawler)  Web Application – Full Control  Farm
  • 8. Approve / Decline  Approve or Decline content being published to the requested area  Only user submitted and approvers can see content  Workflow to approve or decline before the content is available for all to see in that site
  • 9. SharePoint Groups “A set of users or groups defined to a single group to help manage content better in SharePoint”*
  • 10. SharePoint Groups  Include individual Users or Active Directory Groups  Permissions are not set on SharePoint Groups, they are only groups (doesn’t matter on their name)
  • 11. SharePoint Groups: Names  Include individual Users or Active Directory Groups  Permissions are not set on SharePoint Groups, they are only groups (doesn’t matter on their name)
  • 13. SharePoint Groups: Managing  Set  Name  About Me  Group Owners (can be SharePoint Group)  Group Settings – Who can view – Who can edit  Membership request
  • 16. SharePoint Groups: Association  Each site has 3 groups associated with it  Visitors (View)  Members (Contribute)  Owners (Full Administrators)  Associated at creation of site
  • 18. Understanding what a user has  A user can have permission from the following  Added Individually  Added to a SharePoint Group  Added to a Active Directory Group – Then added individually or into a SP Group  Other – Site Collection Admin – Higher Farm Permissions (bad practice)
  • 19. Check Permissions  Search by user or group to see how they have permission to this area (DEMO)
  • 20. Breaking Down Content  Site  List  Item Permissions are inherited from the above and can be broken (break inheritance) so only certain users can access the content
  • 21. When we break inheritance  Copy or remove exciting groups  Add individual users/groups  Deny access for users who inherit from above
  • 22. BREAKING INHERITANCE Creating a site with permission set, breaking inheritance on a document library and setting permissions
  • 23. Office 365 External Sharing  Permissions  View  Edit  Give external access to content  Per site  Per list/library (recently added)  Per folder  Per item
  • 24. OneDrive: External Sharing  Allow view with no permissions  Shared With Everyone folder – Everyone except External  Anonymous access to content
  • 25. EXTERNAL SHARING Permissions in Office 365 and OneDrive for Business
  • 26. Organisation Culture/Structure  What should be accessible to all users to view, edit or comment?
  • 27. Yammer Change is the new constant. Yammer is a private social network that helps you and your teams stay on top of it all. Yammer team collaboration software and business applications allow you to bring your team together so you can have conversations, collaborate on files, and organize around projects so you can go further – faster.
  • 28. Yammer Change is the new constant. Yammer is a private social network that helps you and your teams stay on top of it all. Yammer team collaboration software and business applications allow you to bring your team together so you can have conversations, collaborate on files, and organize around projects so you can go further – faster.
  • 29. Organisation Culture/Structure  What should be accessible to all users to view, edit or comment?  Does giving users access to content that is not direct to their job role prevent them from doing their job?*  If they find it becomes part of their role, should they be allowed to comment?  If they have past experience or a personal interest, should they be allowed to comment?
  • 30. Organisation Culture/Structure  Does an open approach to content and comments help improve the contribute to content in that data?  Should an open approach to social networking mean a different approach to how we do permission in other areas (not just SharePoint)?
  • 31. Organisation Culture/Structure  Permissions is based on your role but everyone does it based on the user…Where is the business continuity if that person leaves? Should they be able to see the pervious employees permissions, sites, files? How about their OneDrive?
  • 32. Thank you for attending! Alex Pearce @alex_pearce [email protected]

Editor's Notes

  • #10: *Cannot have SharePoint groups in other SharePoint Groups. Groups refers to AD Groups or other Groups types from Form Based Authentication
  • #20: https://bfc365.sharepoint.com/sites/Sam/SubSite/_layouts/15/start.aspx#/SitePages/Home.aspx
  • #22: https://bfc365.sharepoint.com/sites/Sam/SubSite/_layouts/15/start.aspx#/SitePages/Home.aspx
  • #24: https://bfc365.sharepoint.com/sites/Sam/SubSite/_layouts/15/start.aspx#/SitePages/Home.aspx
  • #25: https://bfc365.sharepoint.com/sites/Sam/SubSite/_layouts/15/start.aspx#/SitePages/Home.aspx
  • #27: Change is the new constant. Yammer is a private social network that helps you and your teams stay on top of it all. Yammer team collaboration software and business applications allow you to bring your team together so you can have conversations, collaborate on files, and organize around projects so you can go further – faster.
  • #28: *Cannot have SharePoint groups in other SharePoint Groups. Groups refers to AD Groups or other Groups types from Form Based Authentication
  • #29: *Cannot have SharePoint groups in other SharePoint Groups. Groups refers to AD Groups or other Groups types from Form Based Authentication
  • #30: *within reason of course – you wouldn’t give them access if it is restricted
  • #31: *within reason of course – you wouldn’t give them access if it is restricted
  • #32: *within reason of course – you wouldn’t give them access if it is restricted
  • #33: Permissions, Allow, Deny, Site Collection Admins, Owners, Members, Visitors, Approve, Decline, Workflow, Groups, SharePoint Online, Office 365, Active Directory, Azure, View, Contribute, Design, Break Inheritance, Site, List, External Access, Sharing, SharePoint Evolution Conference, OneDrive, Site, Web, Data, Organisation, Yammer, Exchange, Lync, Skype