SharePoint permissions and SharePoint security

The SharePoint permissions and SharePoint security doesn’t depends on the version of SharePoint you are using and the features you have activated in a template. Since SharePoint 2007 the basics didn’t change and the most important questions is the same: Who can do what on which object?

Topics covered in this article:

  • SharePoint 2010

SharePoint 2010

There are 3 main questions which have to answered if it comes to SharePoint permissions and SharePoint security:

  1. Which objects needs to be secured?
  2. Who has access a secured object?
  3. What can someone do if access is granted?

SharePoint objects (Which)

Basically there are 4 different objects which can be secured in SharePoint:

  • Item
  • Document
  • List
  • Site

Columns can’t have custom permission settings.

SharePoint groups or AD groups (Who)

Usually an organization has an Active Directory where users are grouped into Active Directory groups. If an employee starts to work or leaves the company he will be updated in Active Directory.

So you can put AD groups into SharePoint groups. This way people are organized in Active Directory whereupon SharePoint groups define what a member of the SharePoint group can do. This way the administrative effort is low.

There are also other scenarios requiring different solutions…

SharePoint permissions (What)

A permission defines an action like edit or delete. Permissions are grouped into permission levels. And permission levels are joined to SharePoint groups or directly to users or AD groups.



With these basic information and rules about SharePoint permission and SharePoint security you can manage SharePoint sites and lists.