I’m working on a talk about simplifying SharePoint security. I’ve got the basics of groups, permissions, permission levels, etc. handled. I’ve got coverage of the impact of the Copy Link option covered.
Are there other things that you or users struggle with when it comes to implementing SharePoint security? I’d love to answer here — and then include the answer in my talk.
Thor Projects LLC
What about the multiple (and increasing!) admin roles?
And have you already covered external?
Yea, we cover external pretty well.
We’ve not talked about the various admin roles because I felt like it wouldn’t be relevant to most people but perhaps I’m underestimating that.
Thor Projects LLC
In my conversations with clients/prospects it comes up every time. Most times early on. MS has done their usual fabulous job of making it convoluted. Especially that they seem to keep changing it in 365. Hence, in my opinion, anything you can put out there that actually simplifies it, is a large step in the right direction!
Admittedly, I find myself somewhat nostalgic for the days when this stuff didn’t change weekly!
Good idea, and definitely needed. I do come across a few common items when chatting with clients about security, such as using AD groups versus SP groups, synchronizing AD and SP groups, nesting versus not nesting security groups, security trimming, inheriting versus not inheriting permissions, etc. While these items are very technical in nature, the decisions and policies are driven by many business consideration. This is where I believe clients need a better understanding in terms of operational risks and configuration management (perhaps even some change management) in order to be better informed to make better decisions and develop better policies.
Amitabh Srivastav, CIP, IGP, PMP
VP, Operations & Governance