Restrict Member Access in SharePoint 2010 Team Sites - dummies

Restrict Member Access in SharePoint 2010 Team Sites

In addition to providing several kinds of administrative roles, SharePoint 2010 provides groups for restricting access — Quick Deploy Users and Restricted Readers. Quick Deploy Users move content from one server to another, such as from a staging server to a production server. Restricted Readers can view only items and pages but can’t see any item history.

Here are common SharePoint groups, their permission levels, and their permissions. The permissions are cumulative as you move clockwise.


After you know how to add new users and domain groups to a SharePoint group, finish setting up security for a site collection by doing the following:

  1. Add user accounts or domain groups to the Site Visitors group.

    The Site Visitors group has Read permissions, which enables this group to view the site collection’s content.

    Add the Authenticated Users domain group to the Site Visitors group. This enables all your network users to access your site collection.

  2. Add user accounts or domain groups to the Site Members group.

    Members of the Site Members group have Contribute permissions, which allow them to add content to the site collection.

  3. Add users to the Hierarchy Manager and Designers groups in publishing sites.

    You may want to create a separate permission level for consultants. SharePoint team sites don’t have these groups by default, but you can create similar groups if you need that kind of role.

  4. Configure unique permissions for content structures in and below the top-level site.

    You have to stop inheriting permissions from the top-level site before you can create unique permissions for sites, lists, and libraries.

  5. Add sites to the site collection.

    You can inherit permissions or use unique permissions when you create the site.

Remember that everything in the site collection inherits from the site collection by default. Make sure your site collection permissions don’t grant too many people access.

To make contacting site owners and designers easy, consider adding the Contact Details and Site Users Web Parts to your sites.