I've got a SharePoint application and I'm sad to say that in my SharePoint-induced excitement, I ignored a lot of the security concerns I should have been paying more attention to. Though we didn't before, now we actually need granular security, so I need to get educated. I'm mostly interested in how to best create groups and add users to those groups. We have a single main site collection and a couple dozen subsites under that collection. How can I best create a granular security world where I can independently assign rights to each of these subsites?
我有一个SharePoint应用程序,我很遗憾地说,在我引起的SharePoint引起的兴奋中,我忽略了许多我应该更加关注的安全问题。虽然我们之前没有,但现在我们确实需要粒度安全,所以我需要接受教育。我最感兴趣的是如何最好地创建组并将用户添加到这些组。我们有一个主要的网站集和该集合下的几十个子网站。如何才能最好地创建一个细粒度的安全世界,我可以独立地为每个子网站分配权限?
1 个解决方案
#1
4
To have permissions vary at the "sub site" level which is the SPWeb object in object model terms you need to enable unique permission for the site.
要使权限在“子站点”级别(对象模型术语中的SPWeb对象)不同,您需要为站点启用唯一权限。
A good article outlining the permission hierarchy in SharePoint 2007 can be found on the office web site About controlling access to sites and site content
可以在办公室网站上找到一篇概述SharePoint 2007中权限层次结构的好文章关于控制对站点和站点内容的访问
In my experience if you are able to use permission inheritance over granular security it's much less hassle to manage.
根据我的经验,如果您能够使用权限继承而不是粒度安全性,那么管理就不那么麻烦了。
Breaking site permission inheritance
打破站点权限继承
- Click "People and groups"
- Click "Site permissions"
- From the actions menu in the list click "Edit Permissions"
点击“人员和群组”
点击“网站权限”
从列表中的操作菜单中单击“编辑权限”
Other references
- SharePoint 2007: Permissions, permissions, permissions.
- SharePoint 2007 SiteGroups - part 1 - the basics
SharePoint 2007:权限,权限,权限。
SharePoint 2007 SiteGroups - 第1部分 - 基础知识
#1
4
To have permissions vary at the "sub site" level which is the SPWeb object in object model terms you need to enable unique permission for the site.
要使权限在“子站点”级别(对象模型术语中的SPWeb对象)不同,您需要为站点启用唯一权限。
A good article outlining the permission hierarchy in SharePoint 2007 can be found on the office web site About controlling access to sites and site content
可以在办公室网站上找到一篇概述SharePoint 2007中权限层次结构的好文章关于控制对站点和站点内容的访问
In my experience if you are able to use permission inheritance over granular security it's much less hassle to manage.
根据我的经验,如果您能够使用权限继承而不是粒度安全性,那么管理就不那么麻烦了。
Breaking site permission inheritance
打破站点权限继承
- Click "People and groups"
- Click "Site permissions"
- From the actions menu in the list click "Edit Permissions"
点击“人员和群组”
点击“网站权限”
从列表中的操作菜单中单击“编辑权限”
Other references
- SharePoint 2007: Permissions, permissions, permissions.
- SharePoint 2007 SiteGroups - part 1 - the basics
SharePoint 2007:权限,权限,权限。
SharePoint 2007 SiteGroups - 第1部分 - 基础知识