Permissions Flashcards
Which SharePoint page is most important when managing site access and security?
Site Permissions
At how many different levels of a site or subsite can permissions be managed?
Four:
- Site
- Library/List
- Folder
- Item
- Folder
- Library/List
Define:
Permission inheritance
It means that a SharePoint component such as a site or library automatically uses the same access settings as its parent.
Example: A folder may inherit the permissions of the document library where it resides, or a library may inherit the permissions of the site where it is located.
What term is used to describe access permissions when they are not inherited from a component’s parent?
Unique permissions
What term describes a named collection of individuals or domain groups created within SharePoint for the purpose of managing access and security?
A SharePoint group
What administrative problem could arise if you frequently opt to manage access at the document or item level?
Access management may require a lot of work and eventually become overwhelming.
It’s generally better to manage access at a higher level - site, library/list, or folder.
What is the primary advantage of using SharePoint groups rather than individuals to manage permissions?
They allow you to define a group of individuals at one central location within SharePoint.
You can then grant desired permissions to that group in multiple places within a site or site collection.
How can you tell whether a site or site component inherits permissions from its parent?
The top of the Site Permissions page contains a sentence that indicates whether the permissions are inherited.
What must a Site Owner do to add someone to a subsite on which permissions are inherited, if permissions on the parent site must not change?
Go to Site Settings and select “Edit Permissions” or “Manage Permissions”.
This breaks the inheritance, establishing “unique permissions” on the subsite.
What is the purpose of the permission level known as “Limited Access”?
Limited Access allows the system to access theme files and other hidden files that SharePoint needs in order to properly format and render pages within the site.
Limited Access does not give access to what we normally think of as “content”.
When does SharePoint automatically grant a user “Limited Access”?
This occurs when a user has been given access to a component at a lower level within the site or site hierarchy, but hasn’t been given any kind of normal access at the site level.
Limited Access simply allows SharePoint to access some hidden files, stored at the site level, that are needed to properly render pages.
Who has the ability to give the “Limited Access” permission level to a user?
SharePoint itself automatically does this when needed for the proper rendering of pages.
It’s not possible for users of any permission level to grant “Limited Access”.
What is the name of the permission level that grants read/write access to a user or group?
Contribute
What is the name of the permission level that gives a user or group the ability to read, but not add or update?
Read
What is the difference between a Site Owner and a Group Owner?
A Site Owner can modify and manage the structure of a site.
A Group Owner can manage the membership and settings associated with a SharePoint group.
A Site Owner can be – but does not have to be – a Group Owner.
What is the most notable management difference between a domain group (AD or NT group) and a SharePoint group?
A domain group is managed outside of SharePoint (e.g., on an Active Directory server).
Membership changes must typically be made by authorized individuals not associated with the SharePoint site.
A SharePoint group is managed within SharePoint itself.
Membership changes can be made by the designated Group Owner(s) without assistance.
A named collection of individual permissions or rights is called a…
Permission level
**Examples: **
- Approve
- Contribute
- Read
The word “permissions” is used in two ways in SharePoint. Describe them.
Permissions can refer to the individual rights that are bundled into a named permission level.
Example: “Edit items” is a permission included within the “Contribute” permission level.
In broader terms, permissions is often used to refer to the whole set of facilities that enable a Site Owner to control access and security.
The context will help you understand which meaning is intended.
When a new site or subsite is created, what is the default setting for permission inheritance?
New sites or subsites inherit permissions from the site from which they were created, unless you specify otherwise.
Define:
Fine-grained permissions
Permissions managed at the list/library, folder or item level.
Why is it important to consider your security requirements before setting up a SharePoint site or group of sites?
It’s best to set up your sites, subsites, lists and libraries so they can use permission inheritance wherever possible.
Put sensitive data into their own subsites, lists, libraries, or folders, using unique permissions there.
What should you consider when giving a name to a SharePoint group?
Use a name that differentiates the role represented by that group, within the context of the current site collection.
All SP groups can be used anywhere within the current site collection, so a descriptive name is important.
What feature or facility can you use in order to quickly determine a user or SharePoint group’s permissions within the current site collection?
Click on “Check Permissions”.
How can you quickly identify content that has unique permissions anywhere within a current site?
On the Site Permissions page, click on “Show me uniquely secured content”.
