Forum Discussion
Restricting unauthenticated sharing / Anyone links to certain users or group
Hello.
We want specific users in our organisation to be able to share documents anonymously using "Anyone links".
Our current Office 365 "Sharing Policy" is set so that users can share external to "New and Existing guests" , for both sharepoint and onedrive.
The problem is that Sharepoint Admin centre doesn't appear to have the option to allow us to maintain our existing policy "New and Existing guests" which applies to 99% of the business and allow only a couple of individuals the option to share files anonymously, within the Microsoft ecosystem.
For example, the marketing team want to a share company presentation slides externally without specifying every email address that is permitted to view the shared file.
With this in mind, is there a PowerShell script that I can deploy that will allow for certain users or groups to share files anonymously whilst keeping our default policy "New and existing guests" for the rest of the business?
+1. This is such a common requirement and sad that there is not a straightforward way to break whatever inheritance(s) are in place and 'do it like NTFS permissions'.
That said, because you have 'Allow only users in specific groups to share externally', this means that only the members defined in that group will be able to share 'externally' and, to your point, will honor that ONLY based on the slider bars shown in your top screenshot unless..... Not exactly what we are after, and ALWAYS so much the case with the O365 platform.
Then, take into account this little doodad, which makes things EVEN MORE CONFUSING in Admin Center, that more or less implies per user setting, but sadly, cannot be invoked as such.
I suppose you could define two groups, as indicated here:
setting each respectively as:
- Authenticated guests only (default)
- OR
- Anyone
- +1 on this. For 99% of users we don't want them to be able to share anonymous links BUT for 1% who have a valid use case, we do!
