Forum Discussion

jarvis2020

Brass Contributor

Jul 30, 2020

Solved

Deny access to Sharepoint for some O365 User

I want to forbid user access to sharepoint and to give him access to other Office365 applications.User has Office E3 licence. I removed user from Sharepoint collection https://company.sharepoint.com...

SharePoint Online

Andrew Hodges
Jul 31, 2020
jarvis2020

That is right, but make sure everyone is in that AD group apart from that one user otherwise some of your users will loose access.

jarvis2020

Brass Contributor

Jul 30, 2020

Steven Andrews

Here are permissions:

EditGiven through the "Members" https://group.limited/

https://group.limited/ AccessGiven through the "SharePointHome OrgLinks Viewers" group.

On site i want to remove access from,on site permissions, Site visitors are "Everyone except external users"

I located above groups and both have only one member "Everyone except external users"

Is it safe to remove this group ?

Andrew Hodges

Bronze Contributor

Jul 30, 2020

Hi jarvis2020 ,

Its not safe to remove that group. Its everyone in your company. So if you remove it from any site all users that are not explicitly given access through another group will loose access to the site.

If you do indeed need everyone in your company to access a site but 1 person not too then the only way to solve that is to create an AD Group for instance "All SharePoint users" and add everyone except that one user, then use that group.

You could maybe block them with conditional access too, may be worth a look.

jarvis2020
Brass Contributor
Jul 30, 2020
Andrew Hodges , so if i understood correctly, remove "Everyone except external users", and then add
Azure AD group ?

thanks
- Andrew Hodges
  Bronze Contributor
  Jul 31, 2020
  jarvis2020
  
  That is right, but make sure everyone is in that AD group apart from that one user otherwise some of your users will loose access.