change permission on list item

%3CLINGO-SUB%20id%3D%22lingo-sub-1453607%22%20slang%3D%22en-US%22%3Echange%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1453607%22%20slang%3D%22en-US%22%3E%3CP%3EI%20have%20number%20of%20list%20items(1000%2B)%20for%20which%20one%20user%20have%20edit%20permission.%3C%2FP%3E%3CP%3Ei%20want%20to%20make%20it%20read%20permission%20for%20that%20user%20and%20dont%20want%20to%20do%20manually%20for%20each%20item%20one%20by%20one.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ei%20saw%20solution%20using%20add-in%20plumsail%20which%20have%20%22change%20sharepoint%20permissions%22%20option.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ecan%20i%20achieve%20this%20using%20any%20in%20build%20sharepoint%20%22action%20item%22%20other%20than%20plumsail%3F%3C%2FP%3E%3CP%3EI%20dont%20want%20to%20use%20plumsail..%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20just%20want%20to%20change%20permissions%20for%20number%20of%20items%20(1000%2B)to%20read%20for%20particular%20user%20for%20list%20which%20have%2010000%20records%2C%20dont%20want%20to%20do%20it%20manually%20one%20by%20one%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1453607%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ELists%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EPermissions%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eplumsail%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESharePoint%20Online%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1453907%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1453907%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F670519%22%20target%3D%22_blank%22%3E%40rautchetan27%3C%2FA%3E%26nbsp%3B%3A%26nbsp%3B%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3EPowershell%20script%20will%20easier%20and%20faster%20option%20in%20this%20case.%3C%2FP%3E%3CP%3EYou%20can%20do%20this%20using%3A%3C%2FP%3E%3CP%3E1)%20Power%20Automate%2C%20use%20%22Apply%20to%20Each%22%20action.%3C%2FP%3E%3CP%3E2)%20Nintex%20Workflow.%3C%2FP%3E%3CP%3E3)%20SharePoint%20workflow%20-%20REST%20API%20and%20loop%20action.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1454227%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1454227%22%20slang%3D%22en-US%22%3E%3CP%3EIt%20is%20actually%20quite%20easy%20and%20straightforward.%20To%20enable%20Item%20Level%20Permissions%2C%20go%20to%20List%20Settings%20%26gt%3B%20Advanced%20Settings.%3C%2FP%3E%3CP%3EItem%20Level%20Permissions%3C%2FP%3E%3CP%3EScroll%20a%20bit%20down%20and%20you%20will%20see%20Item%20Level%20Permissions%20section.%3C%2FP%3E%3CP%3EItem%20Level%20Permissions%3C%2FP%3E%3CP%3EInside%20the%20section%2C%20you%20will%20see%20two%20categories%3C%2FP%3E%3CP%3ERead%20access%20and%3CBR%20%2F%3ECreate%20and%20Edit%20access%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1454259%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1454259%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F493704%22%20target%3D%22_blank%22%3E%40Lewis-H%3C%2FA%3E%26nbsp%3Bthat%20is%20not%20a%20solution%20as%20the%20poster%20wants%20to%26nbsp%3Bchange%20permissions%20for%201%20user%20only%3B%20not%20for%20everyone%2C%20for%20a%20specific%20security%20group%20or%20for%20someone%20in%20an%20Office%20365%20group.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ERob%3CBR%20%2F%3ELos%20Gallardos%3CBR%20%2F%3E%3CFONT%20size%3D%222%22%20color%3D%22%23333399%22%3EMicrosoft%20Power%20Automate%20Community%20Super%20User%3C%2FFONT%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1454292%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1454292%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F670519%22%20target%3D%22_blank%22%3E%40rautchetan27%3C%2FA%3E%26nbsp%3B%3A%20Yes%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F493704%22%20target%3D%22_blank%22%3E%40Lewis-H%3C%2FA%3E%26nbsp%3B%20is%20correct%2C%20If%20you%20don't%20want%20to%20use%20any%20script%20then%20through%20list%20settings%20--%26gt%3B%20under%20advanced%20settings%20option%20you%20will%20find%20%22Item%20Level%20Permission%22%20as%20per%20below%20screenshot%2C%20change%20the%20settings%20accordingly%3A%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22ItemLevelPermission.PNG%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F197939iD3AA6B1BD2D68119%2Fimage-size%2Fmedium%3Fv%3D1.0%26amp%3Bpx%3D400%22%20title%3D%22ItemLevelPermission.PNG%22%20alt%3D%22ItemLevelPermission.PNG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1454462%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1454462%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F679665%22%20target%3D%22_blank%22%3E%40Ashish_Kohale%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eyour%20solution%20is%20applicable%20to%20all%20users%20for%20all%20items...%3C%2FP%3E%3CP%3EI%20want%20to%20make%20changes%20for%20particular%20user%20only.%3C%2FP%3E%3CP%3Eone%20user%20have%20edit%20access%20on%20number%20of%20list%20items%20and%20i%20want%20to%20make%20it%20read%20access%20for%20that%20user%20only.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1456542%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1456542%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F670519%22%20target%3D%22_blank%22%3E%40rautchetan27%3C%2FA%3E%26nbsp%3B%3A%20In%20this%20case%2C%20If%20Break%20Inheritance%20is%20not%20set%20at%20the%20Item%20level.%3C%2FP%3E%3CP%3E1)%20Create%20a%20group%20and%20add%20users%20in%20the%20groups.%3C%2FP%3E%3CP%3E2)%20Give%20Read%20permission%20to%20the%20group.%3C%2FP%3E%3CP%3E2)%20Check%20user%20permission%20for%20the%20item(%20you%20can%20user%20PowerShell%2FREST%20API).%3C%2FP%3E%3CP%3E3)%20Once%20you%20get%20the%20user%20permission%20in%20the%20success%20part%20of%20the%20code%20remove%20user%20from%20the%20all%20other%20groups%20except%20the%20one%20create%20above.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3ENote%3A%3C%2FSTRONG%3E%20PowerShell%20code%20is%20useful%20in%20such%20cases%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHope%20it%20helps%20!%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1456678%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1456678%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F679665%22%20target%3D%22_blank%22%3E%40Ashish_Kohale%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F174092%22%20target%3D%22_blank%22%3E%40Rob%20Elliott%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F493704%22%20target%3D%22_blank%22%3E%40Lewis-H%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20tried%20above%20solution%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3Elist%20settings%20--%26gt%3B%20under%20advanced%20settings--%26gt%3BCreate%26nbsp%3B%20and%20Edit%20access%20%3ANone%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3Ebut%20this%20not%20overwrite%20item%20level%20permission%20which%20already%20given.%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3Emeans%20if%20for%20few%20list%20items%20if%20i%20have%20given%20edit%20permission%20to%20one%20particular%20user%20and%20if%20i%20changed%20settings%20as%20above(%20create%20and%20Edit%20access%20to%20None)%2C%20still%20that%20use%20persist%20edit%20access%2C%20still%20that%20user%20have%20edit%20access...and%20its%20not%20get%20removed...%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1458485%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1458485%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F670519%22%20target%3D%22_blank%22%3E%40rautchetan27%3C%2FA%3E%26nbsp%3B%3A%20Is%20list%20item%20permission%20set%20with%20Unique%20permission%20i.e%20break%20inheritance%20is%20ON%20for%20Item%20level%20permission%20%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1454158%22%20slang%3D%22en-US%22%3ERe%3A%20change%20permission%20on%20list%20item%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1454158%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F679665%22%20target%3D%22_blank%22%3E%40Ashish_Kohale%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EFor%20each%20loop%20i%20tried%2C%20but%20you%20can%20not%20use%20%22%20stop%20sharing%22%20with%20each%20item%20for%20particular%20user.%3C%2FP%3E%3CP%3E%22stop%20sharing%22%20will%20stop%20sharing%20it%20with%20all%20users.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Contributor

I have number of list items(1000+) for which one user have edit permission.

i want to make it read permission for that user and dont want to do manually for each item one by one.

 

i saw solution using add-in plumsail which have "change sharepoint permissions" option.

 

can i achieve this using any in build sharepoint "action item" other than plumsail?

I dont want to use plumsail..

 

I just want to change permissions for number of items (1000+)to read for particular user for list which have 10000 records, dont want to do it manually one by one

9 Replies

@rautchetan27 :  Powershell script will easier and faster option in this case.

You can do this using:

1) Power Automate, use "Apply to Each" action.

2) Nintex Workflow.

3) SharePoint workflow - REST API and loop action.

@Ashish_Kohale 

 

For each loop i tried, but you can not use " stop sharing" with each item for particular user.

"stop sharing" will stop sharing it with all users.

It is actually quite easy and straightforward. To enable Item Level Permissions, go to List Settings > Advanced Settings.

Item Level Permissions

Scroll a bit down and you will see Item Level Permissions section.

Item Level Permissions

Inside the section, you will see two categories

Read access and
Create and Edit access

@Lewis-H that is not a solution as the poster wants to change permissions for 1 user only; not for everyone, for a specific security group or for someone in an Office 365 group.

 

Rob
Los Gallardos
Microsoft Power Automate Community Super User

@rautchetan27 : Yes @Lewis-H  is correct, If you don't want to use any script then through list settings --> under advanced settings option you will find "Item Level Permission" as per below screenshot, change the settings accordingly:

ItemLevelPermission.PNG

@Ashish_Kohale 

 

your solution is applicable to all users for all items...

I want to make changes for particular user only.

one user have edit access on number of list items and i want to make it read access for that user only.

@rautchetan27 : In this case, If Break Inheritance is not set at the Item level.

1) Create a group and add users in the groups.

2) Give Read permission to the group.

2) Check user permission for the item( you can user PowerShell/REST API).

3) Once you get the user permission in the success part of the code remove user from the all other groups except the one create above.

 

Note: PowerShell code is useful in such cases

 

Hope it helps !

 

@Ashish_Kohale @Rob Elliott @Lewis-H 

 

I tried above solution

 

list settings --> under advanced settings-->Create  and Edit access :None

 

but this not overwrite item level permission which already given.

 

means if for few list items if i have given edit permission to one particular user and if i changed settings as above( create and Edit access to None), still that use persist edit access, still that user have edit access...and its not get removed...

 

 

@rautchetan27 : Is list item permission set with Unique permission i.e break inheritance is ON for Item level permission ?