Last week I presented a talk to the Cincinnati SharePoint User’s Group entitled, “Protecting your Content: Demystifying Data Loss Prevention (DLP)
in SharePoint 2016”. I couldn’t make it to the user group in person, but they were nice enough to let me present it via Skype. At the end of the talk I promised to post my slides.
You can download a read only copy of the slides from the talk using the link below:
Protecting your Content: Demystifying Data Loss Prevention (DLP)
My wife and I really enjoyed our visit to Washington DC last week. The conference attendees were great and both my sessions and workshop were well attended. It was a pleasure to feel that I was sharing information that people really wanted to learn about. The week was even better because at night we got to spend time with my daughter, son-in-law, and 6 month old granddaughter. Getting to present at a conference and spend time with family and friends is a great combination.
I promised to make my slides available, so I’ve uploaded them here. They are also available on the SharePoint Fest DC site for attendees. If you have any follow-up questions please email me at email@example.com. You can download a copy of the slides from each talk using the links below:
Changing the permissions assigned to the default Owners, Members, and Visitors groups in a SharePoint site is easy. You just navigate to Site Settings > Site Permissions. Then select the group whose permissions you want to change and assign them a new permission level using the Edit User Permissions button in the Ribbon. But that won’t work in the Site created behind an Office 365 Group. When you try to use the same procedure you find that the Edit User Permissions button is greyed out if you select any of the built in administrative groups. (See the Screenshot below.
The problem is that Office groups are created when you create a Security Group in Office 365. By default that security group is added to the built-in Members group of the Site Collection. To make sure that you don’t inadvertently lock users out of the site Microsoft disables your ability to change the permission on the default Administrative groups when using an Office Group based site.
But there is still a way to modify the permissions for the users in the groups. If you navigate to the home page of the site and select Site Permissions from the Settings menu (the gear) you will see a panel open on the right hand side of the browser window. Under Site Members you will see the security group that provides the basis for the Office group you created. If you select Edit under that group you can change the permissions for the members of the group to either Read or Full Control. However, instead of changing the permission level for the group it will actually move the security group to either the Site Visitors or Site Owners groups respectively.
But what if I want to change the default group’s permissions to Contribute instead of Edit? To do that you’ll need to use two different SharePoint groups.
First, use the Site permissions panel to move the underlying security group from the Site Members group to the Site Visitors group. This will give all your users Read permissions to the site.
Second, click on the Advanced permissions settings link at the bottom of the panel. This will take you to the regular site permissions page that you are used to. Now you can create a new SharePoint group and assign it whatever permission level you want. After you create the group add the same security group you moved above as a member of the new SharePoint group. Since SharePoint permissions are additive this will give all your users both Read permission and whatever new permission level you assigned, for example Contribute.
I hope that clarifies how to manage Permissions in the new Office 365 group sites. Since Team sites are based on Office Groups, the same procedure applies to any Team sites you’ve created.
I really enjoyed my time at the Dogfood Conference in Columbus on Friday. The attendees were great and my talk on OneDrive Sync was well attended. There were lots of questions, but I was still able to power through my slides and the demos. I want to express my thanks to the conference organizers and the attendees for the wonderful conference. I really enjoyed myself and I hope to be invited back to speak again next year.
I promised attendees that I would post the slides, so I’ve uploaded them here. If you didn’t get a chance to respond to the survey I posted you can also find a link to that here:
My wife and I really enjoyed our visit to Denver last week. The conference attendees were great and asked a lot of good questions at both of my sessions. It was a pleasure to feel that I was sharing information that people really wanted to learn about. It was even more exciting because this was my first chance to present under the logo of my own company. As you’ve probably seen on my web site I’ve left Blue Chip Consulting and launched my own one man firm under then name Don’t Pa..Panic Consulting. The Denver conference was just two weeks after deciding to go independent. So everything looked bright and shiny and new, to go with my new business cards.
The one thing that didn’t go well were the demos in my DLP talk. Despite checking them the night before, the SharePoint sites I was using for demos refused to load during my talk. I also tried demoing creating a new custom DLP policy and although that worked perfectly at 6:30 AM, when trying it for my talk PowerShell threw an error saying it couldn’t find the Exchange endpoint on the server. So I promised to spend some time this week recording the demos and making them available here. Note: I’m still working on the recordings, but they will be up soon.
I also promised to make my slides available, so I’ve uploaded them here. They are also available on the SharePoint Fest Denver site for attendees. If you have any follow-up questions please email me at firstname.lastname@example.org. You can download a copy of the slides from each talk using the links below:
Demo1: Creating Compliance Policy & eDiscovery Centers
More Soon !