Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Sharepoint 2010 Permissions Issue: Site Owners cannot edit site group permissions

Posted on 2011-03-21
11
Medium Priority
?
1,621 Views
Last Modified: 2012-05-11
Hello,

We are experinencing an issue in our new Sharepoint 2010 Production environment.

In our environment we use a very simple security hierarchy, with each site consisting of an Owners (full control), Members (contribute), and Visitors (read) group. Everything has been moving along smoothly with site owners administering their various site group memberships until late last week some of our site admins reported that they have lost the ability to get into any of their site permissions groups to add or remove members.

Using their credentials I was able to re-create the error on my PC (see SP2010-Permission-error.jpg). The site owners permissions are configured correctly, and when I run a verify permission against the site it correctly recognizes that the user has full control delegated through the site Owners Group. Also the  groups themselves are owned by the Site Owners Group and just to be sure I gave ownership of these groups to a named site admin but still no luck.

As a site collection admin I can still access these groups without issue.

At this point I am a bit stumped and am curious if anyone has seen a similar issue in the past. Any help would be much appreciated.

  SP2010-Permission-error
0
Comment
Question by:dkirchhefer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 2
11 Comments
 
LVL 14

Expert Comment

by:KoenVosters
ID: 35186686
Have you checked if the rights of "Full Control" are correctly set? I once had a situation where the user could edit while having Read Rights, and we found out they added base permissions to the read right.
0
 
LVL 4

Expert Comment

by:G-Brain
ID: 35187160
Hi,
maybe there are some problems with the user profile sync.
Are your admins synchronized ?
Do you recieve the same error if you delete the profiles from the owners group and after that to reinstate them ?

0
 

Author Comment

by:dkirchhefer
ID: 35191781
Thanks for the help guys.

To KoenVosters: Yes I did check the "Full control" permissions, and it really does have every permission possible on that site.

To G-brain: I to looked at user profile sync, and actually forced a full sync with AD thinking this might resolve the issue, unfortunately it still persists. Also the issue persists after deleting and re-adding the users to the Site Owners Group.

Thanks for your help so far!
0
What Is Blockchain Technology?

Blockchain is a technology that underpins the success of Bitcoin and other digital currencies, but it has uses far beyond finance. Learn how blockchain works and why it is proving disruptive to other areas of IT.

 
LVL 14

Expert Comment

by:KoenVosters
ID: 35196444
Have you checked the web application policies in Central Administration?
0
 
LVL 4

Expert Comment

by:G-Brain
ID: 35196498
Hi,
which authentication method do you have on your farm ?
0
 

Author Comment

by:dkirchhefer
ID: 35222974
We use Kerberos authentication.
0
 
LVL 14

Expert Comment

by:KoenVosters
ID: 35223053
Did u check the policies?
0
 

Author Comment

by:dkirchhefer
ID: 35245576
Hello KoenVosters,

Sorry for the belated response, I really appreciate your help on this issue.

Just to make sure I understand what your asking, are you referring to "User Permissions for Web Applications" located under Web Applications-User Permissions? If so then yes I did check there and have included a screencast, everything is enabled as I would expect.

Thanks again for taking a look at this, I'm as stumped as ever.

 dkirchhefer-438273.flv
0
 

Accepted Solution

by:
dkirchhefer earned 0 total points
ID: 35316982
Ticket closed. I finally was able to resolv this issue and suprize suprize it was user error. One of our site collection admins installed a list permissions add-on for testing, and when it expired it blocked all permissions managment at the site level. It has now been removed and everything is functioning normally.

Thanks for your help.
0
 

Author Closing Comment

by:dkirchhefer
ID: 35356973
Solved my own issue.
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Scenario: Let’s say you have a quote worksheet in Excel that you use to work up sales figures and such for your clients. You utilize SharePoint to manage and keep track of these documents. You would like values from your worksheet to populate Sh…
Microsoft SharePoint Foundation 2010 and Microsoft SharePoint Server 2010 do not offer the option to configure the location of the SharePoint diagnostic trace log files during installation.  This can, however, be configured through Central Administr…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

664 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question