cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Define "Allow only users in specific security group to share externally" for sharepoint sites only

john john
Steel Contributor

‎May 19 2020 08:29 AM

‎May 19 2020 08:29 AM

Define "Allow only users in specific security group to share externally" for sharepoint sites only

As per my knowledge if we define that only users inside specific security group can share with external users, as follow:-

 

allowexternal.png

 

then this will be applied to SharePoint sites + onedrive personal sites. now inside our organization we want everyone to share files with external users inside their one-drives, while only allow users inside the above security group to share the sites with external users.. so is this possible? or the above settings will get applied to sharepoint and onedrive?

Labels:
12.7K Views
0 Likes
9 Replies
Reply
9 Replies
PeterRising

‎May 19 2020 12:10 PM - edited ‎May 19 2020 12:11 PM

‎May 19 2020 12:10 PM - edited ‎May 19 2020 12:11 PM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

@john john 

 

I just tested this, and with the setting applied it would not allow me to share externally from SharePoint or OneDrive from a user not in the security group.  As soon as I turned the setting off again, it allowed me to share once again.  So at first glance it sure looks like this is a settings that is either on or off across both SharePoint and OneDrive.

0 Likes
Reply
Stephen Rice

‎May 29 2020 12:21 PM

‎May 29 2020 12:21 PM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

Hi @john john,

 

This particular setting is only available at the organization level today and so is working as expected. The policies here will apply to content stored in OneDrive and in SharePoint. There is no way to configure separate lists of allowed users today. If you have any questions, feel free to let me know! Thanks!

 

Stephen Rice

Senior Program Manager, OneDrive

0 Likes
Reply
Tommy Rihu

‎Apr 06 2021 10:26 AM

‎Apr 06 2021 10:26 AM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

@Stephen Rice
so as @PeterRising wrote "I just tested this, and with the setting applied it would not allow me to share externally from SharePoint or OneDrive from a user not in the security group. As soon as I turned the setting off again, it allowed me to share once again. So at first glance it sure looks like this is a settings that is either on or off across both SharePoint and OneDrive."

why this happens have seen this to? does it take time for the group to apply our is it some Token thats taking time?

regards
Tommy
0 Likes
Reply
HenricStr

‎Feb 04 2022 12:55 AM

‎Feb 04 2022 12:55 AM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

@Stephen Rice 

For me this settings does not work. But that might be because I do not know how to combine this option with the overall tenant sharing settings.

For OneDrive our setting is least permissive, we only allow sharing withing our organization.

I would now like for a few users (that are in the same sec.group) to be able to share outside the organisation. But even after enabling the option "Allow only users in specific security group to share externally" it does not work.

Does our global setting need to be changed, to most permissive? And only then will the option "Allow only users in specific security group to share externally" actually serve it's purpose by actually blocking the sharing option for anyone not included in the sec.group

 

regards

0 Likes
Reply
Stephen Rice

‎Feb 04 2022 11:45 AM

‎Feb 04 2022 11:45 AM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

Hi HenricStr,

That's correct. The overall tenant sharing settings must be enabled in order for ANY external sharing to occur. Once they are enabled, every other setting applies further restrictions (such as only allowing the external sharing by specific people). Hope that helps!

Stephen Rice
Senior Product Manager, OneDrive
1 Like
Reply
Tobbe674953

‎Sep 29 2022 07:28 AM

‎Sep 29 2022 07:28 AM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

@Stephen Rice 

i have an issue with this setting.

as soon as i enable it, all external sharing is disallowed, even for users that are members of the specified group. If i disable the setting again, external sharing works.

 

what could be the issue here?

 

thanks in advance 

0 Likes
Reply
fbsPaul

‎Mar 24 2023 07:44 AM

‎Mar 24 2023 07:44 AM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

Did you get this figured out?

Two things I figured out are that it has to be a 'Mail-Enabled Security Group' and not just a 'Security Group' and also.... these settings seem to take a WHILE to take effect. 20 minutes or more later, no changes seem to be in place.

It's hard to troubleshoot this altogether when the changes are not only ambiguous (Microsoft's documentation completely fails to explain how it works), but they take long periods of time for minor changes to take effect. This is completely impractical.
0 Likes
Reply
CedricA

‎Jun 26 2023 02:33 AM - edited ‎Jun 26 2023 02:34 AM

‎Jun 26 2023 02:33 AM - edited ‎Jun 26 2023 02:34 AM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

@fbsPaul 

 

This is still an issue. Even as a member of specified group, it does not work. I had to disabled it. Even Switching it off and on again did not work 

0 Likes
Reply
AnisHKR1710

‎Feb 27 2024 07:01 AM - edited ‎Feb 27 2024 07:02 AM

‎Feb 27 2024 07:01 AM - edited ‎Feb 27 2024 07:02 AM

Re: Define "Allow only users in specific security group to share externally" for sharepoin

Hello everyone,

 

Did someone find a solution to this problem?

I used the mail enabled security groups BUT the users in that group still can't share files externally. 

 

Also note that if I untick the box: "Allow only users in specific security groups to share externally", people can share. I'd like to assume that this means that the problem comes from this setting alone and not from other tenant wide configurations.

0 Likes
Reply