SharePoint Products and Technologies Security from Service Accounts to Item-Level Access: Webcast (05-04-2007)

Good afternoon all my MOSS Security FANS!

Thank you for attending the webcast on SharePoint and security. I hope everyone got to see some great technologies and how to look at some the great new changes in Office SharePoint Server 2007. I have a couple of resources to share with you:

To watch the webcast again:
SharePoint Products and Technologies Security from Service Accounts to Item-Level Access

This is a great resource to see the demos again:
ITPRODSK-107: Security and SharePoint – From Service Accounts to Item-Level Access

Question: We have users that want full control, but we don’t want them to be able to add groups to AD, what permissions that would be?
You really need to look to delegation of permissions in AD. Take a look at these links for more information:

  1. Design considerations for delegation of administration in Active Directory: Achieving autonomy and isolation with forests, domains, and organizational units
  2. Step-by-step guide to using the Delegation of Control wizard
  3. Best practices for delegating Active Directory administration: How delegation works in Active Directory
  4. est practices for delegating Active Directory administration: Case study: a delegation scenario

Question: Is BDC part of WSS or only part of MOSS?
No, the business data catalog is not a part of WSS. It is a part of Microsoft Office SharePoint Server 2007 Enterprise edition.

Question: If I have an external vendor working with my company, do I have to set up an account for them in AD for them to have access to an application?
No, you can use the ASP.Net provider model to authenticate them with a SQL account, take a look at this TechNet magazine article for more information:

Question: Will these ASP.Net security settings apply to all ASP type deployments and not just a SharePoint environment?
Yes, this is all a part of the ASP.Net provider model. Take a look here for more information:

Question: Can you programmatically set permissions – Through WMI, PowerShell, or .Net?
Yes you can, take a look here for the SDK:

Comments (1)

  1. Anonymous says:

    Good Afternoon all my search gurus! Thank you for spending time with me on the webcast to get an overview