Vous êtes sur la page 1sur 11

SharePoint out-of-box Permissions, and how they map to User Groups

Vi sit o M r em be r

Restricted Read

Limited Access

Contribute

Full Control

Permission Levels
View Only

Manage Hierarchy

Approve

Design

Read

(D

ef au l

User Groups

tO

ne r)

Permissions
List Permissions

X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X X

X X X X X X X X X X X X

X Manage Lists X Override Check Out X Add Items X Edit Items X Delete Items X View Items X Approve Items X Open Items X View Versions X Delete Versions X Create Alerts X View Application Pages Site Permissions

X X X X X X X X

X Manage Permissions X View Usage Data X Create Subsites X Manage Web Site X Add and Customize Pages X Apply Themes and Borders X Apply Style Sheets X Create Groups

X X X X X X X X

X X X

X X X X

X X X

X Browse Directories X Use Self-Service Site Creation X View Pages X Enumerate Permissions

X X

X X X X X X

X X X X X X

X Browse User Information X Manage Alerts X Use Remote Interfaces X Use Client Integration Features X Open X Edit Personal User Information Personal Permissions

X X X

X X X X

X X X

X X X X

X X X X

X X X

X X X

X X X

X X X

X Manage Personal Views X Add/Remove Personal Web Parts X Update Personal Web Parts

Notes. SharePoint provides three User Groups by default: Visitor, Member and Owner. These correspond to three of nine "Permission Levels" that are provided for different user security. Each Permission Level is a pre-configured list of specific permissions for doing things on the portal. Options for customizing: 1. A custom User Group can be defined that maps to a different permission level, or even a combination of permission levels. 2. Users or domain groups can be added under a default Permission Level instead of a User Group 3. A custom Permission Level can be defined if none of the preconfigured lists is suitable. 4. Combinations of the above, such as creating a custom Permission Level, then creating a custom User Group that corresponds to it.

More Notes. User Group definitions are common and available across all sites in a single site collection. Subsites will, by default, use the same User Groups as the site definition. Custom User Groups can be defined per subsite. These may inherit from the site collection User Groups, or be completely customized. Edit Items is the permission that allows a user to see unpublished versions of documents and pages. Rollover red triangles for individual notes... some permissions depend on others.

Description Create and delete lists, add or remove columns in a list, and add or remove public views of a list. Discard or check in a document which is checked out to another user. Add items to lists, add documents to document libraries, and add Web discussion comments. Edit items in lists, edit documents in document libraries, edit Web discussion comments in documents, and customize Web Part Pages in document libraries. Delete items from a list, documents from a document library, and Web discussion comments in documents. View items in lists, documents in document libraries, and view Web discussion comments. Approve a minor version of a list item or document. View the source of documents with server-side file handlers. View past versions of a list item or document. Delete past versions of a list item or document. Create e-mail alerts. View forms, views, and application pages. Enumerate lists.

Create and change permission levels on the Web site and assign permissions to users and groups. View reports on Web site usage. Create subsites such as team sites, Meeting Workspace sites, and Document Workspace sites. Grants the ability to perform all administration tasks for the Web site as well as manage content. Add, change, or delete HTML pages or Web Part Pages, and edit the Web site using a Windows SharePoint Services-compatible editor. Apply a theme or borders to the entire Web site. Apply a style sheet (.CSS file) to the Web site. Create a group of users that can be used anywhere within the site collection.

Enumerate files and folders in a Web site using SharePoint Designer and Web DAV interfaces. Create a Web site using Self-Service Site Creation. View pages in a Web site. Enumerate permissions on the Web site, list, folder, document, or list item. View information about users of the Web site. Manage alerts for all users of the Web site. Use SOAP, Web DAV, or SharePoint Designer interfaces to access the Web site. Use features which launch client applications. Without this permission, users will have to work on documents locally and upload their changes. Allows users to open a Web site, list, or folder in order to access items inside that container. Allows a user to change his or her own user information, such as adding a picture.

Create, change, and delete personal views of lists. Add or remove personal Web Parts on a Web Part Page. Update Web Parts to display personalized information.

SharePoint out-of-box Permissions mapped to Site Settings


Key Groups: Site collection Administrators

Permissions: Edit Items Add Items Create Subsites Browse Directories Manage Permissions

Site Actions
Edit Page Show Ribbon Sync to SharePoint Workspace New Page New Document Library New Site More Options Manage Content and Structure View All Site Content Edit in SharePoint Designer Site Permissions Site Settings

Permissions: Manage Lists View Usage Data Create Subsites Add and Customize Pages Manage Web Site Apply Themes and Borders Browse User Information Enumerate Permissions

Site Settings
Users and Permissions People and Groups Site Permissions Site collection administrators

Map of permissions to the Site Actions menu

This menu item will be visible if any of the Site Settings are permitted for this user see next map

Map of permissions to the Site Settings page Look and Feel Welcome page Title, description, and icon Master page Page layouts and site templates Tree view Site theme Navigation Galleries Site columns Site content types Web Parts List templates Master pages and page layouts Themes Solutions Site Administration Regional settings Site libraries and lists User alerts RSS Search and offline availability Sites and workspaces Workflows Workflow settings Site output cache Term store management Content and structure Searchable Columns Content and structure logs

see next map

Site Collection Administration Search Settings Search Scopes Search Keywords FAST Search Keywords FAST Search site promotion and demotion Fast Search user context Recycle bin Site Collection Features Site hierarchy Site collection navigation Site collection audit settings Audit log reports Portal site connection Site collection policies Content type publishing Variations

Site Actions Manage site features Reset to site definition Delete this site Site Web Analytics reports Site Collection Web Analytics reports

Variations Labels Translatable columns Variation Logs Suggested Content Browser Locations SharePoint Designer Settings Visual Upgrade Help settings

Reporting Services Manage Shared Schedules Reporting Services Site Settings