Sharepoint MySites -- making them *completely* private?

We are toying around with the idea of rolling out MySites.  However, we'd like to make them COMPLETELY private.  In other words, no public profile.  This would essentially be a storage space for user files, and nothing more.  We wouldn't want other authenticated users getting to the page.  Is this possible?
LVL 1
mgudites1Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Justin SmithSr. System EngineerCommented:
If you don't mind me asking, why dont you want a public profile page?  You can adjust who has "read" access to MySites in the configuration page on your User Profile App.  However, I think that just locks others out of the "MySite" and not the Profile page.

You do understand that the Profile is just a page showing user attributes.  The MySite is an actual site collection the user owns, and it can be locked down so others can't access.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
mgudites1Author Commented:
Essentially, we're looking to give MySites to our employees, in lieu of a network drive that they would traditionally use for storing their personal files.  However, since our users aren't always very savvy, and while I realize there are both "Personal" and "Shared" document areas on a MySite, we're afraid they will end up putting confidential documents in the "Personal" area by mistake.  Since there's no need for anyone but the user his/herself to see the MySite anyway, we'd prefer to just make it accessible to only them.

When you say "you can adjust who has 'read' access to MySites in the configuration page on your User Profile App," is that a global setting or a user-by-user setting that each person would change?

Also, is there a way to limit what a user can do in their MySite?  I notice I have the ability to create new content areas, sites, etc.  How do we limit this?
Justin SmithSr. System EngineerCommented:
Sorry, what version of SharePoint do you have (I assuming 2010)?
Protecting & Securing Your Critical Data

Considering 93 percent of companies file for bankruptcy within 12 months of a disaster that blocked access to their data for 10 days or more, planning for the worst is just smart business. Learn how Acronis Backup integrates security at every stage

mgudites1Author Commented:
My bad, should have specified.  We are on 2007, but we will be moving to 2010 in about 2 months.  We likely won't be rolling any of this out until we're actually on 2010.
Justin SmithSr. System EngineerCommented:
Go into SSP Admin - My Site Settings.  Look at the bottom of this page.
mgudites1Author Commented:
I see the "Default Site Reader" group, and currently nothing is in there.  So, as long as nothing is in there when sites are created, the sites will be accessible only by the individual who the site belongs to?
Justin SmithSr. System EngineerCommented:
Correct.  Definitely do some testing, though.
mgudites1Author Commented:
Very cool, and I did just test things and verified I can't access other MySites.

One more question, since I think I'm going to be asked:  since like you said, each MySite is like an individual site collection that the user has control of, is there a way to further limit what they can do, like making it so they can't grant others permissions, or create sub-sites within their MySites?  Or, do they pretty much have free reign over their site?  And if there is a way to lock it down, is there a way to do it globally, or is it user-by-user?

Thanks, I appreciate all the input.
Justin SmithSr. System EngineerCommented:
Popular question.  In my experience, in SharePoint 2010 the closest you can get is to create a User Policy on the MySites web application.  Create a new security role, disable what you want, then apply this role to users on the MySite web application.  HOwever, I don't remember off the top of my head if you can create new security roles for web app policies in 2007.
mgudites1Author Commented:
Got it, I'll take a look once we're in 2010.  Thanks for all your help!!!
Justin SmithSr. System EngineerCommented:
You might consider setting a size quota limit on the sites as well......
mgudites1Author Commented:
Yes that makes sense...
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft SharePoint

From novice to tech pro — start learning today.