Re: managing huge user permissions in teamsite in SPS2003
From: Steven Collier [MVP] (steven.collier_at_mvps.org)
Date: 02/06/05
- Next message: anonymous_at_discussions.microsoft.com: "Audiences - add users from another domain"
- Previous message: Steven Collier [MVP]: "Re: SPS new definition"
- In reply to: Sonu: "managing huge user permissions in teamsite in SPS2003"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 06 Feb 2005 16:41:51 +0000
1. Yes, you could assign permissions to groups and then add users to the
groups.
2. Yes, SharePoint has a concept of cross-site groups, provided your sites
are in the same collection you can add people to these groups rather than
use AD groups.
3. Yes - delegate. Although it's traditional to keep security admin a
central function, SharePoint works much better if you pass ownership out and
then let owners manage their own security. This can actually be more
accurate than centrally managed security, for example how often will a user
tell you they don't need access anymore, in a delegated model the owner of
the data would be able to simply remove them.
On 6/2/05 2:23, in article
A24F410A-87F5-4103-A330-AB03686E0A96@microsoft.com, "Sonu"
<Sonu@discussions.microsoft.com> wrote:
> My company has various teamsites on sharepoint portal and On each site they
> are having lots of document library, list , announcement etc and they have
> given per-list permission to each library or list also. They have added users
> from active directory and assigned specific roles(reader,contributor) on
> teamsite.They have also given specific rights for users on each document
> library or list.
> Here problem is user and user rights maintenance.If anybody wants rights to
> be changed on any particular item. It is big task.As user and team sites are
> growing ,managing user is becoming difficult.They are maintaining a excel for
> all these details and first refer that before going for any change on site.
> We can't even find consolidate information on all permissions per document
> library or list wise also on portal.
>
> What could be possibilities to tackle this situation
> like
> 1. can we do any thing with active directory.Creating Details group
> structure in active directory and using only groups instead of user on site
> and per-list.
> 2. Can we do something in sharepoint itself without changing active
> directory structure.
> 3. any other suggestion
- Next message: anonymous_at_discussions.microsoft.com: "Audiences - add users from another domain"
- Previous message: Steven Collier [MVP]: "Re: SPS new definition"
- In reply to: Sonu: "managing huge user permissions in teamsite in SPS2003"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
