SharePoint Je Si Kutoa “Ambao Ina Access” Ripoti

UPDATE 01/28/08: Mradi huu codeplex anwani suala hili: http://www.codeplex.com/AccessChecker. I have not used it, lakini inaonekana kuahidi kama hili ni suala unahitaji kushughulikia katika mazingira yako.

UPDATE 11/13/08: Joel Oleson aliandika juu ya post nzuri sana juu ya suala kubwa usimamizi wa usalama hapa: http://www.sharepointjoel.com / Lists / Posts / Post.aspx?List=0cd1a63d-183c-4fc2-8320-ba5369008acb&ID=113. It links to a number of other useful resources.

Forum users and clients often ask a question along these lines: "How do I generate a list of all users with access to a site" or "How can I automatically alert all users with access to list about changes made to the list?"

There is no out of the box solution for this. If you think about it for a moment, it’s not hard to understand why.

SharePoint security is very flexible. There are at least four major categories of users:

  • Anonymous users.
  • SharePoint Users and Groups.
  • Active Directory users.
  • Hutengeneza Uthibitishaji Based (FBA) watumiaji.

The flexibility means that from a security perspective, any given SharePoint site will be dramatically different from another. In order to generate an access list report, one needs to ascertain how the site is secured, query multiple different user profile repositories and then present it in a useful fashion. That’s a hard problem to solve generically.

How are organizations dealing with this? I’d love to hear from you in comments or email.

</mwisho>

Tags technorati: ,

7 mawazo juu ya "SharePoint Je Si Kutoa “Ambao Ina Access” Ripoti

  1. Kenneth Kolk

    HELP MTU TAFADHALI LAZIMA HAVE Jibu. Pe imekuwa mabalozi kwa siku kuangalia kwa muhimu ya dhahabu ambayo kufungua salama. Mimi ni kujaribu kuandika ripoti katika Utendaji Server Point kwamba itakuwa kutumia id kuingia kwa ajili ya SharePoint kwa data chujio juu ya ripoti.. sauti haki rahisi…WRONG… Nimekuwa karibu unlucky katika kupata mtu yeyote ambaye ana remotely wazo la jinsi hii inaweza kufanyika. Uhakika Najua mimi naweza kujenga folder ripoti kwa kila mmoja kuwa nina haja ya kuripoti juu ya, THATS aina ya messy. Hata hivyo, kupata karibu na ufumbuzi tu mimi hadi sasa. Tafadhali kama una ufumbuzi au unajua mtu ambaye anaweza kuwa na uwezo wa kusaidia nje email yangu saa ken.kolk @ medcor.com Shukrani mapema.

    Kujibu
  2. txcraig

    Another "Who Has Access" solution to consider is Idera’s Security Reporter http://www.idera.com/Products/Tours/Images/Pointadmintoolset12.jpg, part of the Idera Point admin toolset. It is different from other solutions in that it does not modify your SharePoint user interface. The reporting tool runs standalone on your desktop and talks to SharePoint via a web service that is easily installed to any Web Front End. It can output to XML or PDF.

    The toolset also has a tool called Permissions Analyzer http://i40.tinypic.com/ac68ev.png which does the inverse of "Who Can Access What" – you specify a user, and for each SharePoint site, orodha, doclib, nk. it will show you the resulting effective permissions, including details on each of the 33 SPBasePermissions including exactly which roles and web application policies affected each permission. You can select which zone to consider when evaluating web application polices (intranet, internet, nk). Chombo hiki ni Handy sana katika mazingira ya helpdesk wakati wewe ni kujaribu kufikiri kwa nini mtumiaji hawezi kupata maudhui hasa. Bei ni nzuri sana, kuangalia katika http://www.idera.com (kutoa taarifa kamili – Mimi nina sehemu ya timu ambayo iliundwa toolset).

    Kujibu
  3. Paulo SCHÄFLEIN
    Mimi kazi katika timu ya kwamba kujengwa DeliverPoint, ambayo ina Discover Idhini ukurasa. Discover Idhini ukurasa, kupatikana kutoka tovuti, orodha na bidhaa orodha, itaonyesha ambaye ana upatikanaji wa bidhaa. It will "explode" kundi jumla ili kutoa picha kamili.
    Kujibu
  4. Sarah Roth
    Mimi nina katika mchakato wa kujenga webpart kwamba kwanza anasoma sharepointusers kwa safari ya kubadili maudhui, kisha maswali dhidi ya vikundi AD kupata watumiaji ambayo ni nafasi ya safari ya mabadiliko kwa sababu ya tangazo uanachama wao. Ujenzi na Standart LDAP sasa, but I have no clue how to user LDAPS (which we unforuntatly use).
    Kujibu
  5. Chris
    Paulo,
    This is a good question to address early on in the implementation. There is a way to check security for individual roles in SharePoint, but there is no built in way to be able to display all security settings across an implementation. In our implementation, we are handling security on the provisioning of a site collection by keeping this as a central operation instead of using self-service creation of these collection. Then the responsibility of security is the responsibility of the site owner group. This means we had to establish a strong governance structure with plenty of policies explaining the impact of sites that are not properly secured.
    Hata hivyo, this brings to light a needed capability within a SharePoint implementation — a tool that will create security reports that can be reviewed, at minimum, by the site owners.
    Kubwa baada ya… now I’m going to end up spending the day thinking about security (and it’s a Saturday!)
    Chris
    Kujibu

Kuondoka Reply

Anwani yako si kuchapishwa. Mashamba required ni alama *