Category Archives: SharePoint Server

Manage External Sharing at the Site Collection Level – Office 365 (SharePoint Online)

Office 365 with SharePoint Online allows you to have granular level control of your data and how it’s shared internally and externally. In the previous post, Manage External Sharing at the Tenant Level – Office 365 (SharePoint Online), I showed you the tenant level options; the post below, I will highlight a how to do this at a site collection level.

Please keep in mind that you will need to do your own internal security assessment and fit these settings to your organization.

For more detailed information about all the external sharing scenarios in SharePoint Online, please use the Microsoft KB below.

https://support.office.com/en-us/article/Manage-external-sharing-for-your-SharePoint-Online-environment-c8a462eb-0723-4b0b-8d0a-70feafe4be85?ui=en-US&rs=en-US&ad=US

Login to the Office Admin Center

On the left navigation menu, click Admin Centers

Click SharePoint

  • You need the correct permissions to access SharePoint Admin center and make the changes

Click Site Collections

Select the Site Collection you want to change the sharing on

Click Sharing

Set the Sharing Settings

Sharing Outside your organization – Select the option that meets your security requirements. If you have tenant level settings that are more restrictive than the default options, the lesser options will not be available.

  • Don’t allow sharing outside your organization – Prevents all users for all sites from sharing with external users. This option is typically set when organizations cannot share any content externally.
  • Allow sharing only with the external users that already exist in your organization’s directory – Allow sharing only for external users that are in the organizations directory. External users who do not already exist in your organization’s directory are prevented from accessing data. This is the most secure method to share data externally since the external users accessing the data must reside in the organizations directory. This gives the ability for checks and balances to be put in place because a typical user is not allowed to add external users to the organizations directory. Typically this goes through an approval work flow and is strictly governed.
  • Allow users to invite and share with authenticated external users – External users who have received sharing invitations are required to sign-in with a Microsoft account to access the content. This method is a little less secure than the one above, but it’s more secure than the one below. This gives the ability for external sharing governed by the user sending the links.
  • DEFAULT – Allow sharing to authenticated external users and using anonymous access – Allow site users to share sites with people who sign in as authenticated users, but you also want to allow site users to share documents through the use of anonymous guest links, which do not require invited recipients to sign in. You can also specify, in number of days, when the links will expire. This is the least secure and default option in SharePoint Online.

Additional Settings

  • Limit external sharing using domains – This option gives you granular level control to the domains you want or don’t want to allow sharing with.

Click Save

Manage External Sharing at the Tenant Level – Office 365 (SharePoint Online)

Office 365 with SharePoint Online allows you to have granular level control of your data and how it’s shared internally and externally. In the post below, I will highlight a few of the common settings and highlight the default settings. Please keep in mind that you will need to do your own internal security assessment and fit these settings to your organization.

For more detailed information about all the external sharing scenarios in SharePoint Online, please use the Microsoft KB below.

https://support.office.com/en-us/article/Manage-external-sharing-for-your-SharePoint-Online-environment-c8a462eb-0723-4b0b-8d0a-70feafe4be85?ui=en-US&rs=en-US&ad=US

Login to the Office Admin Center

On the left navigation menu, click Admin Centers

Click SharePoint

  • You need the correct permissions to access SharePoint Admin center and make the changes

Click Sharing

Sharing Outside your organization – Select the option that meets your security requirements.

  • Don’t allow sharing outside your organization – Prevents all users for all sites from sharing with external users. This option is typically set when organizations cannot share any content externally.
  • Allow sharing only with the external users that already exist in your organization’s directory – Allow sharing only for external users that are in the organizations directory. External users who do not already exist in your organization’s directory are prevented from accessing data. This is the most secure method to share data externally since the external users accessing the data must reside in the organizations directory. This gives the ability for checks and balances to be put in place because a typical user is not allowed to add external users to the organizations directory. Typically this goes through an approval work flow and is strictly governed.
  • Allow users to invite and share with authenticated external users – External users who have received sharing invitations are required to sign-in with a Microsoft account to access the content. This method is a little less secure than the one above, but it’s more secure than the one below. This gives the ability for external sharing governed by the user sending the links.
  • DEFAULT – Allow sharing to authenticated external users and using anonymous access – Allow site users to share sites with people who sign in as authenticated users, but you also want to allow site users to share documents through the use of anonymous guest links, which do not require invited recipients to sign in. You can also specify, in number of days, when the links will expire. This is the least secure and default option in SharePoint Online.

Default Link Type

  • Direct – Accessible only to users who already have permission to access the document
  • Internal – Accessible only to users within your organization
  • DEFAULT – Anonymous access links – Accessible by anyone

Additional Settings

  • Limit external sharing using domains – This option gives you granular level control to the domains you want or don’t want to allow sharing with.
  • Prevent external users from sharing files, folders, and sites they don’t own – I would highly recommend that you check this box. This prevents external users from sharing data they don’t own or that they should not be sharing.
  • External users must accept sharing invitations using the same account that the invitations were sent to – I would highly recommend that you check this box. This locks access down to the account where the invite was sent.

This screen shot is the default sharing settings for SharePoint Online

This screen shot is how I setup my own SharePoint Online external sharing.

Restrict Syncing to Specific Domains – OneDrive for Business (Office 365)

OneDrive for Business now can restrict syncing of files to managed computers. This is done by configuring OneDrive for Business to sync with only specified domains. Use the process below to enable this option and add specified domains.

Login to the Office Admin Center

On the left navigation menu, click Admin Centers

Click OneDrive

Click Sync

Click Allow syncing only on PCs joined to specific domains

Click Add Domains

Add the domain(s) in which you want to add to the list

Check Block sync on Mac OS if that’s required

  • This will prevent Mac OS users from syncing entirely

Click Save

SharePoint Web Part Page Maintenance – SharePoint Online

I recently ran into the issue where I made some changes to a web part on my BLOG and I was not able to view the page anymore. Since I was not able to view the page, I wasn’t able to fix or remove the web part.

I posted a question on the Microsoft Community Forum and was shown a way to edit the fix the webpart.

ERROR

There is a way to edit Web Parts on Pages that throw errors – you just add ?contents=1 to the end of the URL and SharePoint gives you the Web Part Maintenance version of the page.

 

Based on my BLOG URL, I went here: http://office365support.ca/blog/default.aspx?contents=1

 

Then you can delete whichever Web Part you last edited and then hopefully the page will run as per normal.

 

Thanks for visiting and reading my posts. I am always looking for more ideas. Please comment or email me with what you would like to see.

Kelsey Epps

Office 365 MVP

Email Me Follow me on Twitter Connect with me on LinkedIN Facebook Me

Enable Anonymous Access to an Office 365 SharePoint Online BLOG

One of the questions that I get email about, is how I am using SharePoint Online public site to host my BLOG. Out of the box Office 365 P plans have a public site. Since this is hosted on SharePoint online, you can add various components; one of them being a BLOG. The problem is that by default you have to be authenticated in order to view and post on this BLOG. Not such a good idea, because I don’t want to license every user that I want to view my BLOG.

Luckily for me (and you), there are some smart SharePoint developers out there that have solved the issue.

Download this custom SharePoint web part

Please follow my own instructions on how to upload and activate this custom web part to Office 365 SharePoint Online 


  1. Browse to the top level of your BLOG site

     

  2. Click Site Settings

     

  3. Click Edit Page

     

  4. Click Add a Web Part


  5. Select the custom web part ‘SetAnonymousBlogPermissions’ under Hatch Solutions

     

  6. Click Add


  7. Once the web part is added, click ‘Sort out my Blog Permissions’


  8. At this point your BLOG lists, comments and links are viewable without logging into SharePoint Online.

     

  9. Close the web part

Thanks for visiting and reading my posts. I am always looking for more ideas. Please comment or email me with what you would like to see.

Kelsey Epps

Office 365 MVP

Email Me Follow me on Twitter Connect with me on LinkedIN Facebook Me

Adding Custom Web Parts to SharePoint Online

This task is one that had me frustrated for a number of nights. Being around SharePoint for the last few years, I am fairly accustom to adding Web Parts (custom and out of the box). Personally, I am running Office 365 on the P plan and I wanted to add a Twitter feed to my blog. This didn’t seem like a hard task at the time, but I ran into one big problem.

Enterprise Plans

 

  1. Open the Site Actions drop down menu

     

  2. Click Site Settings

     

  3. Click Solutions (Under Galleries)

     

  4. Click Solutions Menu

     

  5. Click Upload Solution

     

  6. Enterprise Plans you will notice that you have the link for Solutions


 

Personal and Small Business Plans

The Problem with P plan users is that there is no Solutions link under Galleries


  1. In order to upload a custom web part to a P plan Office 365 SharePoint Online account, you must browse to the Solution Gallery.
    1. Open IE and browse to the top level of the SharePoint site
    2. Append /_catalogs/solutions/forms/allitems.aspx to the site address (http://www.toplevelsite.com/_catalogs/solutions/forms/allitems.aspx

       

  2. Providing that you are logged in with the correct account and have permissions, this will take you to the solution gallery, where you can upload and activate custom web parts for site


     

  3. Click Solutions Menu

     

  4. Click Upload Solution

     

  5. Browse to your custom .wsp file and click OK


     

  6. After the web part has been uploaded, you can activate it; select the web part and click Activate

     

  7. Now that the custom web part is uploaded and activated in the Solution Gallery, you can edit the site page that you want to add it to and then add it as per a normal web part.

 

For my site, I have added this web part for the Twitter feeds on the right side of my page.

Twitter Widget Web Part – Office365/SharePoint Online sandboxed Solution

 

Thanks for visiting and reading my posts. I am always looking for more ideas. Please comment or email me with what you would like to see.

Kelsey Epps

Office 365 MVP

Email Me Follow me on Twitter Connect with me on LinkedIN Facebook Me