cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How MS-Teams/Office-365-Group Owners got Full control permissions on the underlying sharepoint site

john john
Steel Contributor

‎Jun 21 2019 07:32 AM - edited ‎Jun 21 2019 07:44 AM

‎Jun 21 2019 07:32 AM - edited ‎Jun 21 2019 07:44 AM

How MS-Teams/Office-365-Group Owners got Full control permissions on the underlying sharepoint site

Using the office 365 admin center and the office 365 admin username i created a new MS Teams as follow, and i name it "TestTeam123":-

admin123.png

 

now this have created a new Office 365 group + sharepoint modern team site. I also realized the following:-

 

1. adding a member to the MS-Teams or Office 365 group will automatically  grant the member user Edit permission on the sharepoint site. now this behavioure is understandable as inside the SharePoint site, we can find that inside the sharepoint member group >> there is an office 365 group's member added by default (which have the same name as the sharepoint members group) as follow:-

 

memebrs2.png

and most importantly, if i remove the above office 365 group's member from the sharepoint members group (i did this for testing purposes only, as on reality we should not do so), the Office 365 group's members will not longer have access to sharepoint site.

 

2. But what i did not understand is that if we add an owner to the MS Teams/Office-365-group then the owner will have full control permission on the sharepoint site. so i thought that similar to the members case, i will find that the office 365 group's owner is added inside the sharepoint owner group, but this is not the case. but on the other hand i checked the SharePoint's site collection admins section, and i found this group is added by default:-

 

SCA.png

 

now based on the above case, i have the following 3 questions:-

1. for the above "TestTeam123 Owner" group added inside the site collection admins section, is this the sharepoint owner group? or it is the office 365 group's owners?

 

2. Why did Microsoft add the office 365 group's member inside the sharepoint member group, while it did not add the office 365 group's owner inside the sharepoint owner group?

 

3. for testing purposes i remove the "TestTeam123 Owner" group from the site collection admins section, but still the office 365 group's owners users have full control on the sharepoint site.. so what is going behind the scenes ? i did the remove around 20 hours ago, so i do not think it is a sync or timing issue...

 

 

Labels:
1,708 Views
0 Likes
2 Replies
Reply
2 Replies
Kevin McKeown

‎Jun 24 2019 08:34 AM

‎Jun 24 2019 08:34 AM

Re: How MS-Teams/Office-365-Group Owners got Full control permissions on the underlying sharepoint s

To answer your first question, TestTeam123 Owners you see in the Site Collection Administrators seems to be the Office 365 Owners role group and not the site's SharePoint security owners group. 

 

The reason I think this is because if you open your browser's dev tools and inspect the HTML for that element (the group as you see it when viewing the Site Collection Admins), you will see that it is a domain-type federated group and not a SharePoint security group.

0 Likes
Reply
john john

‎Jun 24 2019 09:50 AM

‎Jun 24 2019 09:50 AM

Re: How MS-Teams/Office-365-Group Owners got Full control permissions on the underlying sharepoint s

 

@Kevin McKeown wrote:

To answer your first question, TestTeam123 Owners you see in the Site Collection Administrators seems to be the Office 365 Owners role group and not the site's SharePoint security owners group. 

 

The reason I think this is because if you open your browser's dev tools and inspect the HTML for that element (the group as you see it when viewing the Site Collection Admins), you will see that it is a domain-type federated group and not a SharePoint security group.

@Kevin McKeown  thanks for the reply. but what about my third question, which is the most important to me... any idea what is going on?

0 Likes
Reply