Friday 2 September 2011

Create custom permissions – for SharePoint

It’s been a while since we’ve published one of iTech-Ed Associate Darren Pritchard’s SharePoint 2007 beginners’ guides. This time he’s explaining custom permissions and how to create them.

Let’s start off by defining what we’re talking about. Specifying custom permission levels give you more control over the degree of access users can have to SharePoint sites, site collections, or site content. In effect, you create a new security group.

So, let’s run through the steps:
  1. From the site collection click ‘Site Actions’ 
  2. Click ‘Site Settings’
  3. Under ‘Users and Permissions’ click ‘Advanced Permissions’ 
  4. You will then see a list for permission level group
  5. Select the ‘Settings’ drop down
  6. Click ‘Permission Levels
  7. Click ‘Add a Permission Level’
  8. You will then be able to create your own security group.

It’s worth remembering that only this site and all its sub-sites will have access to your new group.

Below is a list of permissions that can be set. Please note that selecting one may also result in others being selected because they are required as part of your selection.

List Permissions:
  • Manage Lists – create and delete lists, add or remove columns in a list, and add or remove public views of a list.
  • Override Check Out – discard or check in a document that is checked out to another user.
  • Add Items – add items to lists, add documents to document libraries, and add Web discussion comments.
  • Edit Items – edit items in lists, edit documents in document libraries, edit Web discussion comments in documents, and customize Web Part Pages in document libraries.
  • Delete Items – delete items from a list, documents from a document library, and Web discussion comments in documents.
  • View Items – view items in lists, documents in document libraries, and view Web discussion comments.
  • Approve Items – approve a minor version of a list item or document.
  • Open Items – view the source of documents with server-side file handlers.
  • View Versions – view past versions of a list item or document.
  • Delete Versions – delete past versions of a list item or document.
  • Create Alerts – create e-mail alerts.
  • View Application Pages – view forms, views, and application pages. Enumerate lists.

Site Permissions:
  • Manage Permissions – create and change permission levels on the Web site and assign permissions to users and groups.
  • View Usage Data – view reports on Web site usage.
  • Create Subsites – create subsites such as team sites, Meeting Workspace sites, and Document Workspace sites.
  • Manage Web Site – grants the ability to perform all administration tasks for the Web site as well as manage content.
  • Add and Customize Pages – add, change, or delete HTML pages or Web Part Pages, and edit the Web site using a Windows SharePoint Services-compatible editor.
  • Apply Themes and Borders – apply a theme or borders to the entire Web site.
  • Apply Style Sheets – apply a style sheet (.css file) to the Web site.
  • Create Groups – create a group of users that can be used anywhere within the site collection.
  • Browse Directories – enumerate files and folders in a Web site using SharePoint Designer and Web DAV (Distributed Authoring and Versioning) interfaces.
  • View Pages – view pages in a Web site.
  • Enumerate Permissions – enumerate permissions on the Web site, list, folder, document, or list item.
  • Browse User Information – view information about users of the Web site.
  • Manage Alerts – manage alerts for all users of the Web site.
  • Use Remote Interfaces – use SOAP, (Simple Object Access Protocol) Web DAV, or SharePoint Designer interfaces to access the Web site.
  • Use Client Integration Features – use features that launch client applications. Without this permission, users will have to work on documents locally and upload their changes.
  • Open – allows users to open a Web site, list, or folder in order to access items inside that container.
  • Edit Personal User Information – allows a user to change his or her own user information, such as adding a picture.

Personal Permissions:
  • Manage Personal Views – create, change, and delete personal views of lists.
  • Add/Remove Personal Web Parts – add or remove personal Web Parts on a Web Part Page.
  • Update Personal Web Parts – update Web Parts to display personalized information.

Armed with that information, you’re now in a position to try to create a new security group and give a person or a group of people a different level of access from what they had previously.

2 comments:

Chevy Suburban Turbo said...

I enjoyed your post. It’s a lot like college – we should absorb everything we can but ultimately you need to take what you’ve learned and apply it.

get bank checks said...

Excellent post,I was looking for something like. I found this post very informative.........