Goal
I have created a new user, and I want to set his access permission to read so that he can only read the report but cannot edit it.
Problem
Under the Permissions tab, I don't see the permission option for the new user (Jeff Waters), instead, I see the permission option for the Directory Administrators. How can I change the permission for this new user?
You are looking in the wrong place. Your screen capture shows you trying to set permissions for the user. (Who can make changes to the user?) What you need to set is permissions for the report.
Go to the report, right-click, Properties | Permissions.
Related
I created a survey in my sharepoint online site.
If I give contribute permissions the user can add responses but can also edit permissions and add questions to the survey. Also, with contribute permissions, even if I set the survey advanced permissions to "Read responses that were created by the user" instead of "Read all responses" the user can still see all responses, even the other user responses, he also can edit and delete those answers...
If i give read permissions the user can't respond to the survey...
What can I do? What am I doing wrong?
Thank you
When you say that users "can also edit permissions and add questions to the survey", I believe in 2 scenarios:
The user has more pemissions than required at list or web level, probably being part of one or more group that has, for example, Design or Full Control permissions
Your "Contribute" permissions level was changed, and their permission was raised
So please just check the current users permissions and which groups they are members, just entering on survey settings> permissions for this survey> check permissions. Just check which groups the user is associated and be sure they have appropriated permissions.
Other important thing is to check if the role Contribute remains with the original permissions. Remember that it's a best practice to not change the original permissions levels, and you may check it on site settings > site permissions > permissions levels.
You may check more details and how the permissions levels are configured at the following link:
https://support.office.com/en-us/article/understanding-permission-levels-in-sharepoint-87ecbb0e-6550-491a-8826-c075e4859848
Just for your information: if the user has the right permissions and be a member of the expected groups with the Contribute permissions, it must not be able to change anything at list level, like questions or permissions.. Except if it's a site collection administrator or something like that ;)
I'm testing Pimcore right now, to see if it's a good fit for our company.
I was wondering if there is a way to give a user specific rights, like an author only being able to make content and edit his own content?
Yes you can provide user or role based permission to documents, assets or objects. Click here to see the screenshot of the user screen
Steps are as follows -
Go to settings -> User
Click on the specific user on which you want add some permissions.
On the right screen part go to the workflow tab.
Click on the add button present near Document title if you want to add permissions on documents. Same can be done on Assets and on Objects
Drag and drop documents on which you want to allow permissions.
Check the boxes if you want to allow user to publish, unpublish, delete etc.
Save
Same can be done on roles as well. If you want same set of permissions on couple of users then you can make a specific role, assign the desired permissions and then assign that role to multiple users.
Is there a way where can I search all permission of a certain user in Sharepoint? Because right now, the way I know is to navigate individually through ALL doc lib to check if that user has a permission on it. (Or belongs to a group that has permission on it).
My colleague ask me to give permission to a certain person and should be the same with her current permissions. So what I did is from the site, I navigate Site Actions > Site Permissions > Check Permissions. From there I take note of the groups that my colleague belongs to and add the new user into it. But the user cannot access that particular Doc lib he needed. Is there a way where I can see ALL possible permissions of a certain user so that I don't need to check ALL doc lib or lists individually?
Assign permissions directly to the user is a bad pattern, better assign permissions to a group and assign the user to the group.
To check user permissions for the whole site you must use a powershell script, below a script taken from another post from stackexchange
$urlWeb = "http://sp2010"
Get-SPUser -Web $urlWeb | select UserLogin, #{name=”Exlicit given roles”;expression={$_.Roles}}, #{name=”Roles given via groups”;expression={$_.Groups | %{$_.Roles}}},Groups | format-Table -auto
i'm using Sitecore 6.5.
I want to configure a Sitecore role to access the /system folder from the content editor.
(my end goal is to have certain user to access and edit the webforms in /system/modules/web forms for marketeers)
I have granted read rights to the system folder on the role, but the /system folder does not appear in the content editor tree.
I guess if there is some other security preventing the users to see the system folder?
I can only get a view on the system folder by granting full admin rights to the user.
First off, make sure the user has the Entire Tree and Hidden Items options ticked in the View tab.
Also, to check if it's access rights you can use the Access Viewer to see whether the user has access rights. If they don't you can click on the Read right (for instance) and see why they don't have access to the System node (for example, which role Denies the read access).
For more information, please check the Security Reference document on SDN.
I want to have user rights split into two. Some of the policies at the client's side mention that we should have a seperate user who has only the rights to add users and nothing else, and the Site Administrator should not be able to add users.
As of now, the Site Admin is used to Add users and to manage other configuration. Can we remove the User Addition role from Site Admin?
Is there a way to create a new User Role by writing some code?
I don't think it is possible to remove any permissions from the site administrator. You could do something wild like add security code to your master page, however. That could detect the current user and the current page, and throw an error if the site administrator were in the wrong place.
You can create a custom permission level, provided your permission sets summarise to one of the options offered by the SPBasePermissions enumeration. Unfortunately there is no specific 'add user' permission, only ManagePermissions. For reference anyway, here's a basic code sample.
I think the best approach is that given by strongopinions where a piece of code runs to check who the user is if they visit the Add User page.