Forum Discussion

Douglas Clelland's avatar
Douglas Clelland
Brass Contributor
Nov 01, 2017

Adding Security groups in SharePoint and Office 365 groups

Hello all!

We have several sites I have created for departments as Modern Team Sites connected to Groups (we are in SharePoint Online). I want to be able to utilize AD security groups for permssions to the Modern Team Sites connected to Groups. I can only add them from "Advanced Permissions" into the main 3 sharepoint groups (Owners, Members, Visitors)

 

But when folks from that AD group goes to said Modern Team Sites connected to Groups, it says they do not have permission to view. Do Modern Team Sites connected to Groups only accept adding indiviuals as users? when I do that everything works correctly

  • HCyber36's avatar
    HCyber36
    Copper Contributor
    low code workaround with powerautomate
    - List group members with the group id (MS365 List group members)
    - add all members to subsite group ive created (https request)
    - add subsite group to the item you wish to grant access too (https request)
  • Mmm...behind the scenes is still old SharePoint....but it's also true that Modern SPO Team sites are a little bit different compared to classic SPO sites. Adding here cfiessinger

  • Douglas Clelland

    Have you tried to add the security group out of the "standard" groups (i.e. Owners, Members, and Visitors)?

    In my experience, tweaking the "standard" groups by the "Advanced Permissions" UI doesn't work...

  • Had the same trouble - but found solution for Adding Local AD Security Groups to SharePoint Online Groups - Synced to Azure AD via Azure AD Connect to ur O365 tenant

     

    Connect-PnPOnline –Url https://site.sharepoint.com/sites/YourSite –Credentials $cred
    Add-PnPUserToGroup -LoginName Local_AD_Security-Group -Identity 'YourSite Members'

    __________

    Should remember that the Site Group associated with your Share Point site i.e. The Office 365 group - cannot currently have a Security Group of users from a Local AD Group added to it - HOWEVER there are Scripts available to Sync the users from an Local AD Group to an Office 365 Group.

     

    You will want users in the Office 365 Group as well so that they can be affiliated with your Microsoft Teams Team and Channels (If you use Microsoft Teams that is)

    _________

     

    Hope this helps someone.

     

    Cheers,

     

     

    • PittSharePointPro's avatar
      PittSharePointPro
      Iron Contributor

      Adam Weldon-Ming This is pretty good but looks like I'd have to connect to each site one at a time.  My customer will have a couple hundred modern SPO M365 Team Sites with Groups.  One for each of their clients.  I can get the internal users setup with no problem to access the SP resources using 'Everyone Except External'.  Problem is, they can't get the Planner because they need to be site members.  OK so not a problem, just add the existing users as 'site members' into the provisioning site template that I'm building.  But what about new hires moving forward?  I need an easy to use method for my customer to add their new hires into hundreds of existing groups.  I can't add a security group, as others mentioned in this thread, which would resolve this issue by simply adding the new hire to the security group.  Any thoughts on my situation and how to best manage this?

      • trenish's avatar
        trenish
        Copper Contributor

        PittSharePointPro  did you ever get an answer to this?  I'm also about to run into a scalability problem where adding new users is concerned.

Resources