Solved

Can't stop file deletions

Posted on 2014-01-18
3
325 Views
Last Modified: 2014-01-19
I am trying to create a library where it's files cannot be deleted by anybody but the admin. For testing, I have created a new site and broke inheritance permissions from the parent.

I am the only person allowed on the site. I created a new permission set called NoDelete where I selected all permissions but deselected the delete items and files option. I created a group, added myself to it, added it to the site and assigned this permission set to it. So I still can act like an admin, but I should not be able to delete files or items from any library in this site. But I can delete, and all lists and libraries inherit permission from the site level, which has customized permissions as per above.  So why can i still delete files and items? Every other permission is enabled for this permission set, but I thought that disabling delete permissions only would work. Are there any other permissions that need to be disabled for this permission set to prevent item and/or file deletion?
0
Comment
Question by:BobHavertyComh
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 44

Accepted Solution

by:
Rainer Jeschor earned 350 total points
ID: 39790610
Hi Robert,
which SharePoint edition / version?
Are you sure that your account is JUST in this group or are you e.g. site collection admin?
In SharePoint you will get the combination of all permissions you have - besides an explicit deny permission set configured in the Central administration on web app level (afaicr).

Thanks.
Rainer
0
 
LVL 19

Assisted Solution

by:Walter Curtis
Walter Curtis earned 150 total points
ID: 39790952
Just a few points here - everything Rainer said is spot on, so check all of that. You mention that every other permission is on for this permission level. Make sure that the group you have granted permission to the library has only your custom permission bound to it.

Here are a few tips on testing:
Use the check permission function (found in the ribbon) to determine what the permissions are for individual users. Make sure you are checking permissions at the correct level you want.

Another thing I do always, use a second totally standard user account for testing. I have found that my admin account is never as I think so it is invalid for user testing. If you don't have a standard, "pure - virgin" account, get one and use that for your testing. Add or grant that account to the object you are working with, and test with the check permissions function and your results will be more accurate than your admin account.

Hope that helps,
0
 
LVL 9

Author Closing Comment

by:BobHavertyComh
ID: 39792072
I am site collection admin, so apparently that's the problem. I am on Office 385 SharePoint, so any test accounts have to be purchased. Thd 365 plan I'm working with is not enterprise and has no access to central admin to set web app level stuff. So test accounts need to purchased, and maybe that's an inevitable dev expense.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently came across an issue with a MOSS 2007 deployment where access into some sub-sites were denied, even for the MOSS farm administrators. A bit of background to the setup of this MOSS farm; this was a three server setup, consisting of a fr…
I thought I'd write this up for anyone who has a request to create an anonymous whistle-blower-type submission form created using SharePoint 2010 (this would probably work the same for 2013). It's not 100% fool-proof but it's as close as you can get…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question