Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 522
  • Last Modified:

SharePoint 2013 Security Question

SharePoint 365 (SharePoint 2013)

When I am on a subsite under the root site, if I use the share feature and add a user, it looks like this automatically changes the root site users and permissions as well if I do not go to the site settings for the subsite and tell it to stop inheriting permissions. Is it true that someone can actually change the users and permissions when on a substite for multiple other sites or the global users and groups, if that site inherits permissions from the parent? I thought it used to be that one had to explicitly break permissions with the parent first before any changes could be made. Now, it looks like someone can be effecting more permissions than just the subsite without even knowing it. Is this true? If so, this would be really bad.
0
BobHavertyComh
Asked:
BobHavertyComh
1 Solution
 
Justin SmithSr. System EngineerCommented:
If you are sharing a subsite that is inheriting permissions, yes, it will adjust the permissions on the site it is inheriting from.  And yes, this would affect any other subsite that is inheriting from the same site.
0
 
BobHavertyComhAuthor Commented:
The problem I have is that someone could think they are adding a user or group to the particular site they are on when in fact they are entering this in many more spots than they think. In the case of 8 different subsites that inherit from the root site, if all 8 of them inherited from the root, someone could make a change to one subsite and effect all other subsites without realizing it. Very dangerous. I thought that it used to be in 2010 that you were forced to break permissions first, or forced to explicitly edit the parent on it's edit page, before changes like this could be made. Now power users have a share button that allows them to edit the parent settings from the child without any notice? So then every site should theoretically break permissions from the parent to prevent this? Doesn't this defeat the purpose of inheritance in many ways?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now