Security Plan Implementation

Security is essential, both for document management tasks and for the integrity of the search function. In document management, it is important to restrict access to sensitive information. In some cases, it is important to restrict the viewing of a document to those who edit or approve it, until it is ready for a larger audience. In search scenarios, it is important that when users view the results of searches, SharePoint Portal Server does not display documents to which they do not have access.

SharePoint Portal Server security uses standard Windows-based encrypted authentication to ensure password security. In addition, you can control access to documents by using a fixed set of three roles. SharePoint Portal Server roles offer a flexible and secure method to control access to documents. A role is a way to configure permissions for users based on the kinds of tasks they perform. SharePoint Portal Server roles add actions such as check-in, check-out, publish, and approve to traditional file-access permissions, such as Read, Write, and Change. Roles group users who have the same permissions and tasks with specific titles: coordinator, author, and reader.

Each role identifies a specific set of permissions: coordinators handle management tasks, authors add and update files, and readers have read-only access to published documents. Access permissions for the three roles are fixed and cannot be modified. SharePoint Portal Server also offers the option of denying users access to specific documents. Roles are usually specified at the folder level, although you can add coordinators at the workspace level for management tasks.

SharePoint Portal Server recognizes any security policies that you currently apply to your organization's servers, file shares, and databases. For example, when SharePoint Portal Server crawls documents stored on your organization's servers, SharePoint Portal Server enforces the security policy on each document when it displays search results.

SharePoint Portal Server enforces file-level security, not share-level security.

Assigning a user to a particular role gives the user the ability to perform specific tasks in the workspace. You must assign a user to a role at the workspace level before that user can have access to the workspace. The user can be an individual user or a group, where a group is a list of users who collectively have the same rights and permissions. For detailed information about roles and security, see Chapter 8, Planning Security.



Microsoft Sharepoint Portal Server 2001 Resource Kit
Microsoft SharePoint(TM) Portal Server 2001 Resource Kit (Examples & Explanations Series)
ISBN: 0735615624
EAN: 2147483647
Year: 2001
Pages: 231

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net