>

A sample text widget

Etiam pulvinar consectetur dolor sed malesuada. Ut convallis euismod dolor nec pretium. Nunc ut tristique massa.

Nam sodales mi vitae dolor ullamcorper et vulputate enim accumsan. Morbi orci magna, tincidunt vitae molestie nec, molestie at mi. Nulla nulla lorem, suscipit in posuere in, interdum non magna.

Use Workflow to Simulate Content Type Security

Another day, another MSDN-forums inspired post. Someone was asking whether they could secure a content type such that when a user clicks on the “new” button on a custom list, only content types to which that person is granted access would appear in…

Content Approval as Poor Man’s Automatic Item Level Security

There’s a common business scenario with InfoPath forms.  We want allow people to fill out InfoPath forms and submit them to a library.  We want mangers (and no one else) to have access to those forms. This question comes up now and then on…

What is Limited Access Anyway?

UPDATE 11/03/08: Be sure to read the excellent and detailed comment from Dessie Lunsford to this post. I’ve been working on a secret tech editing project for an up-coming book and it references this blog entry by Tyler Butler on the MSDN ECM blo…

Quick Tip: Configure Security to Allow Admins to Access any My Site in SharePoint

In a sign that Social Computing is beginning to take off with SharePoint, I see an increased number of My Site type questions. One common question goes something like this: "I am an administrator and I need to be able to access every My Site. H…

Views and Columns on Lists and Document Libraries Cannot Be Secured

UPDATE (02/29/08): This new codeplex project seems to provide a method for securing individual columns: http://www.codeplex.com/SPListDisplaySetting. If you have any experience working with it, please leave a comment. Forum posters frequently ask a …

Solution: System.IO.FileNotFoundException on “SPSite = new SPSite(url)”

UPDATE: I posted this question to MSDN here (http://forums.microsoft.com/Forums/ShowPost.aspx?PostID=2808543&SiteID=1&mode=1) and Michael Washam of Microsoft responded with a concise answer. I created a web service to act as a BDC-friend…

Minimum Security Required For InfoPath Forms

I needed to meet a security requirement for an InfoPath form today. In this business situation, a relatively small number of individuals are allowed to create a new InfoPath form and a much wider audience are allowed to edit it. (This is new-hire o…

SharePoint Does Not Provide “Who Has Access” Reports

UPDATE 01/28/08: This codeplex project addresses this issue: http://www.codeplex.com/AccessChecker. I have not used it, but it looks promising if this is an issue you need to address in your environment. UPDATE 11/13/08: Joel Oleson wrote up a very …

SharePoint Security Fundamentals Primer / Avoid Common Pitfalls

UPDATE 12/18/07: See Paul Liebrand’s article for some technical consequences of removing or modifying the default group names (see his comment below as well). Overview: SharePoint security is easy to configure and manage. However, it has pr…