?
Solved

Sharepoint 2010 permissions best practices

Posted on 2010-11-15
2
Medium Priority
?
991 Views
Last Modified: 2013-11-05
I'm setting up permissions for Sharepoint 2010 and an intranet we are developing.  We have about 50 users or so.  We are migrating a large number of shared documents into a directory structure under a single Document repository with fairly granular read / contribute rights based on the directories within the document store.  If I have a number of security groups in active directory based on department and other commonalities.  Is there a recommended way to apply security? Should I just put my security groups on these directories or go another way with the built in Sharepoint groups?  Thanks for any help, Sharepoint Experts.
0
Comment
Question by:smillion
2 Comments
 
LVL 35

Accepted Solution

by:
Joseph Daly earned 1000 total points
ID: 34137533
I would reccomend using your AD groups to secure access to the files. This way you have a single point of administration where you can easily add/remove members who need access without having to open the sharepoint site.

Also I dont know how big of an IT staff you have but the majority of admins and helpdesk personell will be more familiar with security groups through AD than using the users/groups from within sharepoint.
0
 
LVL 24

Assisted Solution

by:Awinish
Awinish earned 1000 total points
ID: 34143208
0

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses
Course of the Month5 days, 13 hours left to enroll

588 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question