[AccessD] OT: Sharepoint Security

Jim Hewson JHewson at karta.com
Wed Jun 22 09:08:09 CDT 2005


Jim,
I'm a novice, but will become the SharePoint "Expert" when I change
jobs, in my company, next month.  I'm interested in the outcome of your
question.
A couple of random thoughts...
There are two levels of security for SharePoint.  They are Central
Administration and Site Administration rights.  Central take precedence
over site rights.  If a person is a member of the Central Administration
group which manages the settings for the Web Server and virtual servers,
they effectively have Administrative rights to the entire portal.
In Site Administration, IIRC, there is a toggle somewhere to designate a
person to have the same rights as the parent area or site.
Let me know if you have found the solution.
Regards,
Jim H.

-----Original Message-----
From: accessd-bounces at databaseadvisors.com
[mailto:accessd-bounces at databaseadvisors.com] On Behalf Of Jim DeMarco
Sent: Wednesday, June 22, 2005 8:04 AM
To: AccessD (E-mail)
Subject: [AccessD] OT: Sharepoint Security

List,

I've done some Googling but I can't seem to find the answer to this odd
problem.  I set up a Sharepoint site as a test bed (Sharepoint Services
not Server) and gave a few users access.  No matter what rights I give
the users they have full admin rights to the sight.  I set up custom
security groups and the site is completely ignoring them.  To further
add to the mystery I removed on user (she is not a member of any
security group therefore should not have access to the site) and she can
still get in with full admin rights.  Is it possible that Sharepoint is
deferring to Windows rights?  These are all IT staff here and have more
liberal rights to our network than the average user.

Does anyone have a clue?  A push in the right direction would be
appreciated.

TIA

Jim DeMarco
Director of Application Development
Hudson Health Plan



************************************************************************
***********
"This electronic message is intended to be for the use only of the named
recipient, and may contain information from Hudson Health Plan (HHP)
that is confidential or privileged.  If you are not the intended
recipient, you are hereby notified that any disclosure, copying,
distribution or use of the contents of this message is strictly
prohibited.  If you have received this message in error or are not the
named recipient, please notify us immediately, either by contacting the
sender at the electronic mail address noted above or calling HHP at
(914) 631-1611. If you are not the intended recipient, please do not
forward this email to anyone, and delete and destroy all copies of this
message.  Thank You".
************************************************************************
***********

--
AccessD mailing list
AccessD at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/accessd
Website: http://www.databaseadvisors.com



More information about the AccessD mailing list