Modifying Base Permissions in SharePoint Online
Hi,
I am new to SharePoint and trying to understand the security model of SharePoint 2013. As far as I understand, Base Permissions in SharePoint cannot be modified either via UI or via APIs. However, Permissions levels (combination of base permissions) can
be modified either ways.
If the Base Permissions can really be modified, how can it be done using the REST APIs?
Thanks,
Vibhuti
Base Permissions can not be modified in SharePoint 2013. Permission Levels are a named collection of Base Permissions. Although you can modify some of the built-in permission levels I recommend always creating a copy and modifying the copy
rather than modifying the original permission level.
Paul Stork SharePoint Server MVP
Principal Architect: Blue Chip Consulting Group
Blog: http://dontpapanic.com/blog
Twitter: Follow @pstork
Please remember to mark your question as "answered" if this solves your problem.
Similar Messages
-
SharePoint Online switching to mobile view when attempting to add user permissions
Hello,
I am having a very weird problem that just started out of no where. It happens when I go to the Site Settings of my site collection and click on Site Permissions. When I click Grant Permissions to try to add users, the browser will immediately switch to
the mobile view.
I am able to switch back to the regular browser view, then when I click Grant Permissions, the box to select the user opens. I then choose the user and click Share. After clicking Share, the popup immediately goes to the mobile view. When I exit that the
users were never granted permissions.
This only happens so far when I am trying to add permissions. Is there something that I could have messed up?
What is happening and how can I fix this? I am out of ideas and unable to add permissions for users. I do not want to have to blow this site collection away.
Thanks.Hi Andy,
According to your description, my understanding is that the page would switch to mobile view when attempting to add user permissions in SharePoint Online.
I recommend to verify the things below:
Clear the caches in browser to see if the issue still occurs.
Test the same scenario in another computer to see if the issue still occurs.
Append mobile=0 to the URLs in SharePoint Online.
In the meanwhile, you can post your question to the forum for SharePoint Online: http://social.technet.microsoft.com/Forums/msonline/en-US/home?forum=onlineservicessharepoint.
More experts will assist you, then you will get more information relation to SharePoint Online.
Best regards.
Thanks
Victoria Xia
TechNet Community Support -
Modify email invitation/alert content in sharepoint online
Hi, its a known bug that we can't modify the email notification messages thats being sent from sharepoint online site to the users. Just wanted to make sure microsoft has not yet make any update for this. ? or any other alternate / hack for this? Basically
i want to send a custom email when people 'share' something in my office365 site.
Thanks, Saravanan PRSYammer should be available with your O365 subscription today, but you would have to switch to it within the SharePoint Online tenant settings.
That said, end users can subscribe to Yammer groups, or specific tags, or specific users.
Trevor Seward
Follow or contact me at...
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs. -
Hi,
I want to setup an outpund hybrid search for SharePoint 2013 on-premise to SharePoint Online.
But I'm not shure if this works with ADFS SSO.
Has somebody experience with this setup?
Here's my guide which I'm going to use for this installation:
Introduction
In this post I'll show you how to get search results from your SharePoint Online in your SharePoint 2013 on-premise search center.
Requirements
User synchronisation ActiveDirectory to Office 365 with DirSync
DirSync password sync or ADFS SSO
SharePoint Online
SharePoint 2013 on-premise
Enterprise Search service
SharePoint Online Management Shell
Instructions
All configuration will be done either in the Search Administration of the Central Administration or in the PowerShell console of your on-premise SharePoint 2013 server.
Set up Sever to Server Trust
Export certificates
To create a server to server trust we need two certificates.
[certificate name].pfx: In order to replace the STS certificate, the certificate is needed in Personal Information Exchange (PFX) format including the private key.
[certificate name].cer: In order to set up a trust with Office 365 and Windows Azure ACS, the certificate is needed in CER Base64 format.
First launch the Internet Information Services (IIS) Manager
Select your SharePoint web server and double-click Server Certificates
In the Actions pane, click Create Self-Signed Certificate
Enter a name for the certificate and save it with OK
To export the new certificate in the Pfx format select it and click Export in the Actions pane
Fill the fields and click OK Export to: C:\[certificate
name].pfx Password: [password]
Also we need to export the certificate in the CER Base64 format. For that purpose make a right-click on the certificate select it and click on View...
Click the Details tab and then click Copy to File
On the Welcome to the Certificate Export Wizard page, click Next
On the Export Private Key page, click Next
On the Export File Format page, click Base-64 encoded X.509 (.CER), and then click Next.
As file name enter C:\[certificate
name].cer and then click Next
Finish the export
Import the new STS (SharePoint Token Service) certificate
Let's update the certificate on the STS. Configure and run the PowerShell script below on your SharePoint server.
if(-not (Get-PSSnapin "Microsoft.SharePoint.PowerShell" -ErrorAction SilentlyContinue)){Add-PSSnapin "Microsoft.SharePoint.PowerShell"}
# set the cerficates paths and password
$PfxCertPath = "c:\[certificate name].pfx"
$PfxCertPassword = "[password]"
$X64CertPath = "c:\[certificate name].cer"
# get the encrypted pfx certificate object
$PfxCert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2 $PfxCertPath, $PfxCertPassword, 20
# import it
Set-SPSecurityTokenServiceConfig -ImportSigningCertificate $PfxCert
Type Yes when prompted with the following message.
You are about to change the signing certificate for the Security Token Service. Changing the certificate to an invalid, inaccessible or non-existent certificate will cause your SharePoint installation to stop functioning. Refer
to the following article for instructions on how to change this certificate: http://go.microsoft.com/fwlink/?LinkID=178475. Are you
sure, you want to continue?
Restart IIS so STS picks up the new certificate.
& iisreset
& net stop SPTimerV4
& net start SPTimerV4
Now validate the certificate replacement by running several PowerShell commands and compare their outputs.
# set the cerficates paths and password
$PfxCertPath = "c:\[certificate name].pfx"
$PfxCertPassword = "[password]"
# get the encrypted pfx certificate object
New-Object System.Security.Cryptography.X509Certificates.X509Certificate2 $PfxCertPath, $PfxCertPassword, 20
# compare the output above with this output
(Get-SPSecurityTokenServiceConfig).LocalLoginProvider.SigningCertificate
[/code]
## Establish the server to server trust
[code lang="ps"]
if(-not (Get-PSSnapin "Microsoft.SharePoint.PowerShell" -ErrorAction SilentlyContinue)){Add-PSSnapin "Microsoft.SharePoint.PowerShell"}
Import-Module MSOnline
Import-Module MSOnlineExtended
# set the cerficates paths and password
$PfxCertPath = "c:\[certificate name].pfx"
$PfxCertPassword = "[password]"
$X64CertPath = "c:\[certificate name].cer"
# set the onpremise domain that you added to Office 365
$SPCN = "sharepoint.domain.com"
# your onpremise SharePoint site url
$SPSite="http://sharepoint"
# don't change this value
$SPOAppID="00000003-0000-0ff1-ce00-000000000000"
# get the encrypted pfx certificate object
$PfxCert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2 $PfxCertPath, $PfxCertPassword, 20
# get the raw data
$PfxCertBin = $PfxCert.GetRawCertData()
# create a new certificate object
$X64Cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2
# import the base 64 encoded certificate
$X64Cert.Import($X64CertPath)
# get the raw data
$X64CertBin = $X64Cert.GetRawCertData()
# save base 64 string in variable
$CredValue = [System.Convert]::ToBase64String($X64CertBin)
# connect to office 3656
Connect-MsolService
# register the on-premise STS as service principal in Office 365
# add a new service principal
New-MsolServicePrincipalCredential -AppPrincipalId $SPOAppID -Type asymmetric -Usage Verify -Value $CredValue
$MsolServicePrincipal = Get-MsolServicePrincipal -AppPrincipalId $SPOAppID
$SPServicePrincipalNames = $MsolServicePrincipal.ServicePrincipalNames
$SPServicePrincipalNames.Add("$SPOAppID/$SPCN")
Set-MsolServicePrincipal -AppPrincipalId $SPOAppID -ServicePrincipalNames $SPServicePrincipalNames
# get the online name identifier
$MsolCompanyInformationID = (Get-MsolCompanyInformation).ObjectID
$MsolServicePrincipalID = (Get-MsolServicePrincipal -ServicePrincipalName $SPOAppID).ObjectID
$MsolNameIdentifier = "$MsolServicePrincipalID@$MsolCompanyInformationID"
# establish the trust from on-premise with ACS (Azure Control Service)
# add a new authenticatio realm
$SPSite = Get-SPSite $SPSite
$SPAppPrincipal = Register-SPAppPrincipal -site $SPSite.rootweb -nameIdentifier $MsolNameIdentifier -displayName "SharePoint Online"
Set-SPAuthenticationRealm -realm $MsolServicePrincipalID
# register the ACS application proxy and token issuer
New-SPAzureAccessControlServiceApplicationProxy -Name "ACS" -MetadataServiceEndpointUri "https://accounts.accesscontrol.windows.net/metadata/json/1/" -DefaultProxyGroup
New-SPTrustedSecurityTokenIssuer -MetadataEndpoint "https://accounts.accesscontrol.windows.net/metadata/json/1/" -IsTrustBroker -Name "ACS"
Add a new result source
To get search results from SharePoint Online we have to add a new result source. Run the following script in a PowerShell ISE session on your SharePoint 2013 on-premise server. Don't forget to update the settings region
if(-not (Get-PSSnapin "Microsoft.SharePoint.PowerShell" -ErrorAction SilentlyContinue)){Add-PSSnapin "Microsoft.SharePoint.PowerShell"}
# region settings
$RemoteSharePointUrl = "http://[example].sharepoint.com"
$ResultSourceName = "SharePoint Online"
$QueryTransform = "{searchTerms}"
$Provier = "SharePoint-Remoteanbieter"
# region settings end
$SPEnterpriseSearchServiceApplication = Get-SPEnterpriseSearchServiceApplication
$FederationManager = New-Object Microsoft.Office.Server.Search.Administration.Query.FederationManager($SPEnterpriseSearchServiceApplication)
$SPEnterpriseSearchOwner = Get-SPEnterpriseSearchOwner -Level Ssa
$ResultSource = $FederationManager.GetSourceByName($ResultSourceName, $SPEnterpriseSearchOwner)
if(!$ResultSource){
Write-Host "Result source does not exist. Creating..."
$ResultSource = $FederationManager.CreateSource($SPEnterpriseSearchOwner)
$ResultSource.Name = $ResultSourceName
$ResultSource.ProviderId = $FederationManager.ListProviders()[$Provier].Id
$ResultSource.ConnectionUrlTemplate = $RemoteSharePointUrl
$ResultSource.CreateQueryTransform($QueryTransform)
$ResultSource.Commit()
Add a new query rule
In the Search Administration click on Query Rules
Select Local SharePoint as Result Source
Click New Query Rule
Enter a Rule name f.g. Search results from SharePoint Online
Expand the Context section
Under Query is performed on these sources click on Add Source
Select your SharePoint Online result source
In the Query Conditions section click on Remove Condition
In the Actions section click on Add Result Block
As title enter Results for "{subjectTerms}" from SharePoint Online
In the Search this Source dropdown select your SharePoint Online result source
Select 3 in the Items dropdown
Expand the Settings section and select "More" link goes to the following URL
In the box below enter this Url https://[example].sharepoint.com/search/pages/results.aspx?k={subjectTerms}
Select This block is always shown above core results and click the OK button
Save the new query ruleHi Janik,
According to your description, my understanding is that you want to display hybrid search results in SharePoint Server 2013.
For achieving your demand, please have a look at the article:
http://technet.microsoft.com/en-us/library/dn197173(v=office.15).aspx
If you are using single sign-on (SSO) authentication, it is important to test hybrid Search functionality by using federated user accounts. Native Office 365 user accounts and Active Directory Domain Services
(AD DS) accounts that are not federated are not recognized by both directory services. Therefore, they cannot authenticate using SSO, and cannot be granted permissions to resources in both deployments. For more information, see Accounts
needed for hybrid configuration and testing.
Best Regards,
Eric
Eric Tao
TechNet Community Support -
Export list from sharepoint online to Excel 2007 failed
Hello, Office365 sharepoint online, Office 2007 32bit, Win 8.0 x64. When I try to export a list to Excel, I get this error: You do not have adequate permissions to modify this list. Changes to your data cannot be saved.; This comes right after I am prompted
to enable data connections, and the Import Data dialog. Even I double check the permission for the list. I get this error on two different computers; I have tried several browsers (IE10, IE9 ;FireFox, Chrome). How do I fix this problem? Thanks.are you using sharepoint 2010 or 2013 ? if you are using 2013 then remove office and install office from office 365 portal.. make sure you are signed in the office excel client application with the same username and password you are using for office 365
portal..give it a try ! -
Remove "Shared with Everyone" folder from OneDrive/Sharepoint Online
Due to security concerns, we want to get rid of the "Shared with Everyone" folder our entire user-base (which is around 1800). Is there an automated way of removing it from SharePoint Online permissions or a PowerShell script?
Hi
Unfortunately, there isn't a way to remove the "Shared With Everyone" folder for all users. As
an admin, you can just log into every user's OneDrive for business library to delete it one by one. Sorry for this. If the amounts of the users are large, it will take heavy workloads to work on this. In this situation, we suggest you let the users delete
the folder by themselves.
Amit Kotha -
SharePoint Online External Users
So I was taking SharePoint online for a test drive a few days ago. While I was looking at how users are given permissions to list and libraries I realize something that might
make or break SP Online for me. The out-of-the-box SharePoint Online implementation gives you one private site collection and one public website. Let just focus on the public website in this example. Now, by default the public website is at least viewable
to everyone. But what if I created a survey on my public website and only wanted members of the site to have access to it. I know that you can "Share Site" with external users. But can you allow visitors to your site the ability to create their own account,
and in turn fill out the survey? And of course without purchasing a license for every person filling the survey.
Jeffrey T McFarlandI'm not sure about making content on your public site private, but you can make content on your private sites public. You basically turn on external users for the entire Office 365 SharePoint Online account. Then you can optionally disable it
for certain site collections. That way, you can control who has access to what. This article might be helpful in explaining how external users works in SharePoint Online:
http://office.microsoft.com/en-us/sharepoint-online-enterprise-help/share-a-site-with-external-users-HA102476183.aspx -
we have a long list of disabled/deleted users in AD
Somehow, they are still appeared as active user in Sharepoint Online.
How do we get rid of those list?
Hope you can advice. Thanks.SharePoint does not remove users from SharePoint permissions just because they were deleted/disabled in AD. This is to maintain referential integrity. In fact, when you delete a user from SharePoint, that user remains in the SharePoint content database,
just marked as deleted.
They do not have access to SharePoint given their account is deleted/disabled. But as far as automatically managing this, I'm not aware of a tool. On-prem there is Metalogix ControlPoint which does a great job of this, I haven't explored the O365 options.
Trevor Seward
Follow or contact me at...
  
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs. -
Hi,
We have an Office 365 environment which is linked to our on premise ADFS environment. We have started to make some deployments of sites to our SharePoint Online environment. For the majority of sites this is great and the ability to access the sites
from anywhere is a real bonus. However, there are some sites and data that I would be much more comfortable in migrating to SharePoint Online if there were a way to make them only accessible via users/computers connected to the corporate network.
I have seen articles in how you can configure ADFS to allow all connections to the Office 365 tenant only from the network or not but what I am after is something which can be configured on a site by site basis (i.e. not the whole Office 365 environment
or SharePoint Online environment) to only allow access when connecting from the corporate network.
Any advice/help would be much appreciated?
Many thanks
PaulHi,
This is the forum to discuss questions and feedback for Microsoft Office, the issue is more related to SharePoint online, I recommend you post your question to the Microsoft Office 365 Community Sites and document sharing Forum
http://community.office365.com/en-us/f/154.aspx
The reason why we recommend posting appropriately is you will get the most qualified pool of respondents, and other partners who read the forums regularly can either share their knowledge or learn from your interaction with us. Thank you for your understanding.
Thanks
George Zhao
Forum Support
Come back and mark the replies as answers if they help and unmark them if they provide no help.
If you have any feedback on our support, please click "[email protected]" -
Sharepoint online & Sharepoint Designer 2013
Hi, I am receiving an error each time I try to open a SharePoint online site through SharePoint designer 2013.
The error is saying "The Server Could not complete your request". I click on 'Details' and get a repeated "403 Forbidden403 Forbidden403 Forbidden" error message. After I pass this message I get a standard "You do not have permission
to open this web site in SharePoint designer"
Here are a list of things that have so far not worked for me:
Using "https://" rather than "http://" - Same issue.
Removing SharePoint Designer, deleting cache in "users>Roaming>SharePoint designer cache" - Same issue.
Clearing Generic Credentials in Credential Manager - Same issue.
Checking SharePoint site permissions to ensure that " Same issue.
My Admin role grants no restrictions.
I have Nintex trials installed and have used it to build forms on the site, I also have Nintex workflow however current tutorials detailing how to do what I need to do require SharePoint Designer 2013.
Finally SharePoint Developer 2013 has opened sites before, both SharePoint online sites and on prem, but now our company has gone in for the 'real deal' site I can not open this in SharePoint Designer 2013.
Any support would be very much appreciated, I have been trying to find a solution for a number of days now going into a week.
Regards,
AndrewHi Andrew,
What permission do you have at site collection level and site level?
For troubleshooting your issue, please go to your site collection -> site settings -> site collection administration -> SharePoint Designer Settings, make sure you enable the SharePoint Designer.
Also make sure the o365 sites are added to the trusted sites and the WebClient services (Search: services.msc) is running.Then in SPD go to Account > Switch Account and type in the credentials of the site you are trying to open (it defaults to your
Microsoft Login).
Reference:
http://community.office365.com/en-us/f/154/t/184387.aspx
https://social.technet.microsoft.com/Forums/en-US/15fd1436-3166-4e43-8b22-cdb480091548/cant-open-sharepoint-online-site-in-sharepoint-designer-2013?forum=sharepointcustomization
Best Regards,
Eric
Eric Tao
TechNet Community Support -
SharePoint Online Public Facing Website Issues/Limitations
Hi,
We would like to use SharePoint Online for a public facing website (we are using the intranet side already which works well) but have noticed a lot of issues trying to get it to work the way we want to. I have seen on the web that there are quite a few limitations
from various blogs/forums with suggested work-arounds but none of them have worked thus far.
Basically I need to make a call on whether or not SP Online will be able to meet the requirements or if we'll have to look at an alternative solution.
E.g. 1) Document Libraries
1.1) I've created a document library and exposed it through an app part on a public page. This seems to work fine for the most part when using PDF files but any Word/Excel documents want to open in OWA or, if forced, in the client application which then
starts prompting for credentials. The requirement here is to have various documents available to the public to download and fill in. Is it possible to force all files within a document library, when clicked, to prompt to download/save the file?
1.2) When clicking on the name of the document library that is displayed in the app part, it wants to open the document library itself which then redirects to the login page. The issue with this is that if a user goes down a level into a folder in the document
library, they have to use the browser back button to go back up a level. Most users will click on the title though which doesn't lend well to a good user experience. Is there any way to prevent this and have the title link to the page with the app part or
have some form of folder navigation present?
E.g. 2) Calendars
1.1) I have found a "work around" in changing the content type to Event for this to somewhat work but we need a calendar to be filterable by a certain category which doesn't seem possible when adding the calendar app part to a public page. If it
is possible to display a view selector on the public page, that would suffice but it seems that adding the part to the page limits it to a pre-defined view.
1.2) I also tried displaying it as a "list" instead of a calendar view but when trying to open a single item to see its contents, we are again redirected to the login screen. Is there any way around this?
1.3) Using the same list approach at least shows the column titles but when trying to open the filter drop down I get "Cannot show the value of the filter. The field may not be filterable, or the number of items returned exceeds the list view threshold
enforced by the administrator" which doesn't happen when logged in. Is this also by design or is it fixable somehow?
1.4) The same issue applies for the title of the calendar whereby clicking on it directs the user to a login screen.
I've tried numerous attempts at getting the above to work but basically if SP Online public facing websites are not meant to be more than simple content pages/brochure type sites then we'll have to use an alternative solution. If anyone else has encountered
the same types of issues or figured out workarounds for them, I'd love to hear what they are!
Kind regards,
RickHi ,
According to your description, my understanding is that you want to customize the search result for displaying news pages with query string in your SharePoint Online.
For your issue, you can create custom search result template and modify the following code:
<a href=”_#=ctx.CurrentItem.Path=#_”>
_#=ctx.CurrentItem.Title=#_
</a>
For more information, you can refer to the blog:
http://www.abelsolutions.com/totm/creating-customized-search-results-in-sharepoint-2013/
http://sharepointfieldnotes.blogspot.com/2012/11/customizing-sharepoint-2013-search.html
http://channel9.msdn.com/Events/SharePoint-Conference/2014/SPC322
Best Regards,
Eric
Eric Tao
TechNet Community Support -
Clarification on SharePoint Online and SQL Server
I have several subsites on a SharePoint 2013 server that uses external content types and the Business Data Connectivity Service to access tables in a SQL Server database. I used the Sharepoint 2013 Designer to configure most of this, but at times, I also
used Visual Studio 2013. Everything works fine. It successfully uses a secure store Application ID to authenticate connections to a remote SQL Server (i.e. the SQL Server and SharePoint server are 2 completely different machines that are not even within the
same domain). The external lists on the SharePoint site are capable of reading data in the SQL tables, updating data, adding new data, and deleting old data. I have specified permissions to users/groups that help me control who can access the external lists
on the SharePoint sites. Everything has been working well for a while now.
But now I have to start thinking about using SharePoint Online, instead of an on-premises SharePoint server. And everything I am reading indicates that what I do above is not going to work with SharePoint Online. It sounds like I will have to either move
our database to a SQL Azure service, or if I want to continue using our existing SQL Server, then I am going to have to develop a WCF service that will allow SharePoint Online to communicate with our own SQL Server. Am I understanding this correctly? Or is
there a way to take what I did above and make it work with SharePoint Online?
Thank you,
StevenHi,
We can use Hybrid Connections to connect SharePoint Online to an on-premises SQL Server.
Here is a blog from MSDN for your reference:
http://blogs.msdn.com/b/alimaz/archive/2014/07/31/connect-sharepoint-online-to-an-on-premises-sql-server-from-an-azure-provider-hosted-app-using-hybrid-connections.aspx
We can also customize a WCF service and publish it to public web site to achieve it.
Best Regards
Dennis Guo
TechNet Community Support -
Sharepoint Online - File Associations - Create association for .sql files in SPO365
I maintain a document library as a script repository with .sql scripts. we refer to these often for operational processes.
unfortunately, we are currently only given the option to download these files from SharePoint Online.
Is it possible to create an association in SharePoint Online to have these files preview as text or to at least open them in SSMS or Notepad.
caveat = we dont want to change the default OS association for these files. SSMS is fine for the desktop, but in SPO365 a text viewer would be ideal as it would most easlily facilitate a copy and paste.
Thanks
G'B
Scott DavisHi,
According to your description, when you removed the Read List and Read Item operations and created them back based off of the view and recreated the external list, you saw all the columns you wanted.
Then you can modify view to choose the columns which you want to display.
The issue is, now the item picker and other operations that did not change seem to be going off of the view.
Do you mean that when you add/edit the item, it still displays the foreign key column in the list view?
Best Regards,
Lisa Chen
Forum Support
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
[email protected]
Lisa Chen
TechNet Community Support -
Workflow to change file permission in SharePoint Online Document Library
1.What are my options with SPD 2013 If I want to change a documents file permission in a workflow?
2.Where does SPO host 2013 Workfows?
3.If connecting to SPO Can I use Worklow Manager 1.0?
4.Will I need to host my Workflow Manager workflows on server or Azure if running against o365/SPO?
5.If I wish to create SPO 2013 workflows with Visual Studio 2012, what do I need and will I be limited to actions I see in SPD 2013?
============================
Thank You
cyberpine.comYou can host this workflow as a SharePoint App in SharePoint Online or use SharePoint Designer to create this workflow as long as you use the app step. Managing the permissions can be done with a REST call. The initiator of the workflow must have
been granted the right to "Manage Permissions" and the app must have full control of the Site Collection. We have done so for several of our clients. I know you asked this question some time ago, but I thought the info might still be helpful. -
Building Site Collections in SharePoint Online
Hello all,
Please forgive me for this very basic question, but I was not able to find the info online.
Background info: I have a great deal of experience with SharePoint administration on-prem but not much experience with SharePoint Online. My current organization has O365 and wants to build a collaboration environment and an Intranet. I understand the information
architecture practices that would have been common for this for an on-prem environment, and I understand that those have changed with 2013 and SharePoint Online due to the new practice of organizing everything under one web app.
Between reading some articles and using my experience with on-prem, I am trying to design an organized information architecture that will facilitate both environments and the permissions structures they require. My tentative plan was to build one site collection
for the Intranet under https://mycompany.sharepoint.com/sites (under which subsites would be built for various Intranet divisions), and then a number of individual site collections for the collaboration environment under https://mycompany.sharepoint.com/teams
(/hr, /finance, etc., so that content owners and users could work in their own site collection without affecting a site collection belonging to someone else).
This is the article that initially caused me to believe that this is possible/a good idea: http://blogs.msdn.com/b/richard_dizeregas_blog/archive/2014/09/01/sharepoint-online-information-architecture-considerations.aspx.
"For [managed paths] you get the root, /search (explicit managed path), /sites (wildcard managed path), and /teams (wildcard managed path)."
However this article leads me to believe that I will not be allowed to create any site collections at all, only subsites: https://support.office.com/en-us/article/Plan-sites-and-manage-users-8e568d8d-3d65-42c4-99fa-f7285c9db842.
"You cannot create additional site collections in SharePoint Online for Office 365 for Small Business."
I understand the answer to this may depend on what version of O365 we have, and I am working to find that out.
My understanding is that I cannot be made a SharePoint Online administrator without being a global O365 administrator: http://blogs.technet.com/b/lystavlen/archive/2012/06/14/understanding-the-administrator-role-in-sharepoint-online.aspx.
"You cannot separate the roles of Office 365 global administrator and SharePoint Online Administrator."
Thus, I don't currently have the level of access I need to browse around the administration area and find the answers to my questions that way. When the time comes, I will likely be given temporary access or will be working with an O365 global administrator
to build.
Main question: Will I be allowed to build site collections under managed paths?
Larger question: How are others managing the information architecture for an Intranet and a Collaboration environment in SharePoint Online, especially if the answer to the prior question is no?
Thanks in advance for any insight you can offer.
ShaeHi,
According to the error message, the Microsoft.Online.SharePoint.Client.Tenant.dll seems not been loaded.
You can find it in the path below:
C:\Program Files\SharePoint Client Components\Assemblies
A code snippet about how to retrieve a list of site collections in a tenant for your reference:
const string username = "[email protected]";
const string password = "password";
const string tenantAdminUrl = "https://yourdomain-admin.sharepoint.com/";
var securedPassword = new SecureString();
foreach (var c in password.ToCharArray()) securedPassword.AppendChar(c);
var credentials = new SharePointOnlineCredentials(username, securedPassword);
using (var context = new ClientContext(tenantAdminUrl))
context.Credentials = credentials;
var tenant = new Tenant(context);
SPOSitePropertiesEnumerable spp = tenant.GetSiteProperties(0, true);
context.Load(spp);
context.ExecuteQuery();
foreach (SiteProperties sp in spp)
Console.WriteLine(sp.Title);
Best regards,
Patrick
Patrick Liang
TechNet Community Support
Maybe you are looking for
-
My problem and why i used the word sabotage that got deleted
i asked a gazzillion times how to deactivate the feature that auto redials the mised call...like at 4 in the morning if i go to iphone. i was told ....if you look through the plethora of begging by me,i was told it is not true...then another person s
-
I am using MacBook Air 13 for more than two years. I appears some setting in Safari has been changed unwittingly. Now whenever I open a web-page I have previously saved, the "saved as" page disappears and is replaced by a screen showing in grid view
-
0FIGL_O02 Init/Delta loading, Why more data ??
Hi, We usually load the 0FIGL_O02 using the 0FI_GL_4 extractor in Full mode. Because of the very long loading time, we decided to use it in Delta mode instead, so we deleted all the data inside the DSO and we lunched the Init loading. The situation i
-
How do I insert the value of an email field in the submit mailto: argument?
I want to create a button that will redirect a PDF form to an email address entered as a field in the form. In other words, a "return to sender" function. The button function has a submit to URL where you can use "mailto:[email protected]". How ca
-
Greetings all, I'm having an issue exporting from Motion 3. I'm working with an animation that is 3min45sec long, consisting of fairly high-res images and text, and a single camera that slowly tracks back away from them. Although the export seems to