SharePoint roles can be assigned directly or indirectly to user accounts. Indirect assignment can only be used for user authenticated user accounts. Direct assignment can only be used for group and user authenticated user accounts.
User accounts and SharePoint roles must belong to the same site collection.
|
NOTE: SharePoint roles that reference permission levels and have the option hidden set, cannot be assigned to user accounts. |
To assign a SharePoint role directly to user accounts
- OR -
Remove user accounts in Remove assignments.
In order for SharePoint user accounts to obtain permissions to individual sites, assign SharePoint roles to the groups. SharePoint roles and groups must belong to the same site collection.
|
NOTE: SharePoint roles that reference permission levels with the Hidden option cannot be assigned to groups. |
To assign groups to a SharePoint role
- OR -
Remove groups in Remove assignments.
Installed Module: | System Roles Module |
Use this task to add a SharePoint role to system roles. If you assign a system role to employees, all the employees' user authenticated user accounts inherit the SharePoint role.
|
NOTE: SharePoint roles that reference permission levels with the Hidden option cannot be assigned to system roles. These SharePoint roles can be neither directly nor indirectly assigned to user accounts or groups. For more information, see Entering Master Data for SharePoint Permission Levels. |
|
NOTE: SharePoint roles with the option Only use in IT Shop set, can only be assigned to system roles that also have this option set. |
To assign a SharePoint role to system roles
Assign system roles in Add assignments.
- OR -
Remove system roles from Remove assignments.
Once a SharePoint role has been assigned to an IT Shop shelf, it can be requested by the shop customers. To ensure it can be requested, further prerequisites need to be guaranteed.
|
Note: IT Shop administrators can assign SharePoint roles to IT Shop shelves in the case of role-based login. Target system administrators are not authorized to add SharePoint roles in the IT Shop. |
To add a SharePoint role to the IT Shop
To remove a SharePoint role from individual IT Shop shelves
To remove an SharePoint roles from all IT Shop shelves
The SharePoint role is removed from all shelves by the One Identity Manager Service. All requests and assignment requests are canceled along with the SharePoint role as a result.
© 2022 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy