Professional Documents
Culture Documents
SharePoint Saturday KC 2015 - Security and Search
SharePoint Saturday KC 2015 - Security and Search
and Search
Lou Farho, Design Architect
Alexander Open Systems
About M e
Lou Farho
LouFarho@aos5.com
20+ years in IT
10+ years working with Portals
7+ years working with SharePoint
http://www.linkedin.com/in/loufarho/
Wrote my first program in FORTRAN using a card punch machine
Bachelors in Physics (University of Nebraska-Lincoln)
Master in Computer Science (University of Nebraska-Omaha)
3
AO S SharePoint PortalPractice
Microsoft Gold Partner Top Talent
Portals and
Collaboration
Communications
Messaging
Server Platform
Customers Win
99.68% of customer respondents would refer AOS to their
peers!
4 | SharePoint Saturday St. Louis 2014
Agenda
Discuss SharePoint Security
Discuss Search
Demo
SharePoint Security
When you start looking at security, chances are good
that you start with the basics: who is allowed to access
SharePoint resources, what resources are they allowed
to see, what resources are they allowed to use, and
how
are
they
allowed
to
use
them.
SharePoint Groups
Direct Permissions
Permission Levels
6
SharePoint G roups
Use SP Groups to encapsulate the Permission
Levels
Owners
Members
Visitors
Custom Levels
Add AD Security Groups
Add Users
8
Description
Manage Lists
Create and delete lists, add or remove columns in a list, and add or remove public views of a list.
Discard or check in a document that is checked out to another user, and change or override settings
that allow users to read/edit only their own items.
Add Items
Edit Items
Edit items in lists, edit documents in document libraries, and customize Web Part pages in document
libraries.
Delete Items
View Items
Approve Items
Open Items
View Versions
Delete Versions
Create Alerts
Create alerts.
Description
Manage Permissions
Create and change permission levels on the web site and assign permissions to users and groups.
Create Subsites
Create subsites such as team sites, Meeting Workspace sites, and Document Workspace sites.
Grants the ability to perform all administration tasks for the web site, as well as manage content.
Add, change, or delete HTML pages or Web Part pages, and edit the website.
Create Groups
Create a group of users that can be used anywhere within the site collection.
Browse Directories
Enumerate files and folders in a website by using SharePoint Designer 2013 and Web DAV interfaces.
View Pages
Enumerate Permissions
Manage Alerts
Use SOAP, Web DAV, the Client Object Model, or SharePoint Designer 2013 interfaces to access the
website.
Use features that launch client applications. Without this permission, users must work on documents
locally and then upload their changes.
Enables users to open a website, list, or folder to access items inside that container.
Enables users to change their own user information, such as adding a12picture.
| SharePoint Saturday St. Louis 2014
PersonalPerm issions
Permission
Description
13
Im pact on Search
When Permissions change, SharePoint
must recalculate and update the index
for the scope impacted by the security
change.
14
D em o
1. Search Service Application
2. Crawl Health Report
3. Add User
4. Run an Incremental Crawl
5. Inspect Report
6. Modify an AD Security Group
7. Repeat 4&5
15
Sum m ary
Impact to incremental crawls using security
groups vs SharePoint Groups
SharePoint Farm Size determines overall impact
There will be other factors that impact the
incremental crawl. Documents!
Governance for Security and use of Security
Groups
Security Group Sprawl
16
Resources
http://technet.microsoft.com/en-us/libra
ry/cc721640.aspx
http://msdn.microsoft.com/en-us/library/
dd728295(v=office.12).aspx
https://www.nothingbutsharepoint.com/si
tes/eusp/pages/active-directory-groupsvs--sharepoint-groups-for-user-manageme
nt-a-dilemma.aspx
17