Nov 29 2017
12:07 PM
- last edited on
Feb 06 2023
04:07 AM
by
TechCommunityAP
Nov 29 2017
12:07 PM
- last edited on
Feb 06 2023
04:07 AM
by
TechCommunityAP
How can I disable sharing on a whole site collection or the whole tenant for SharePoint Online?
I see that option at the site level, but I need to apply it to hundreds of sites.
Thanks for your help.
Nov 29 2017 12:12 PM
Nov 29 2017 12:15 PM
Sorry, I should have mentioned that it is for internal users. I want to prevent contributors from breaking permission inheritance when they use the share option internally.
Nov 29 2017 12:29 PM
Nov 29 2017 12:32 PM
Nov 29 2017 12:35 PM
Nov 29 2017 01:04 PM
Adding to David's answer, you can give a look to www.sharepointusecases.com/2014/11/managing-sharing-access-requests-sharepoint-site/. It's an old article, but still valid.
I remember some time ago there was a thread in this community where someone shared a script to apply the setting to multiple sites. Perhaps you can search for it.
Mar 05 2019 05:15 PM
We had this issue and found the following solution:
Under the site and subsite we had sharing turned off ( i.e. Under the subsite we went to site permissions then clicked access requests on the ribbon and unticked 'Allow members to share site and individual files and folders'.
However staff were able to share or use copy link to send links to staff who did not currently have access and this was breaking folder inheritance. Staff were also able to see and change the settings of the site and document libraries.
The default 'edit' permission applied to member groups is apparently the cause.
We switched all group permissions from 'edit' to 'contribute'. This removed the ability to see or change settings on the site or document library. However they can still create, edit, and delete files and folders as normal.
It also removed the ability to share or send links to anyone but those who already have access. They can send the share email but if the staff member does not already have access it prompts them with a ' You do not have permission..'message and unique permissions are not created.
Unique permissions are also no longer created when the user who receives the URL already has access.