Recycle bin is visible for guests

%3CLINGO-SUB%20id%3D%22lingo-sub-2344361%22%20slang%3D%22en-US%22%3ERecycle%20bin%20is%20visible%20for%20guests%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2344361%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20All%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20a%20Sharpoint%20site%2C%20which%20can%20be%20shared%20to%20external%20geusts.%20The%20issue%20is%20that%20these%20external%20users%20have%20access%20to%20the%20recycle%20bin.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3ESite%20configuration%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3EThe%20sharing%20with%20external%20users%20is%20enabled%20through%20the%20following%20policy%3A%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Ruben_Claeys_MG_0-1620734050544.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F279775i46022AE5766959D5%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22Ruben_Claeys_MG_0-1620734050544.png%22%20alt%3D%22Ruben_Claeys_MG_0-1620734050544.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3EThese%20external%20users%20are%20added%20to%20a%20Sharepoint%20group%20and%20given%20%22Limited_root_level%22%20access%20to%20the%20site.%3CBR%20%2F%3EThe%20limited%20root%20level%20role%20is%20a%20custom%20role%20with%20the%20following%20configuration%3A%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Ruben_Claeys_MG_1-1620735592695.png%22%20style%3D%22width%3A%20627px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F279788iFDC3F5B507EC414B%2Fimage-dimensions%2F627x412%3Fv%3Dv2%22%20width%3D%22627%22%20height%3D%22412%22%20role%3D%22button%22%20title%3D%22Ruben_Claeys_MG_1-1620735592695.png%22%20alt%3D%22Ruben_Claeys_MG_1-1620735592695.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Ruben_Claeys_MG_2-1620735601511.png%22%20style%3D%22width%3A%20606px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F279789i4C527EEF9127A2DD%2Fimage-dimensions%2F606x469%3Fv%3Dv2%22%20width%3D%22606%22%20height%3D%22469%22%20role%3D%22button%22%20title%3D%22Ruben_Claeys_MG_2-1620735601511.png%22%20alt%3D%22Ruben_Claeys_MG_2-1620735601511.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3ESharepoint%20documentation%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3EAccording%20to%20the%20documentation%2C%20only%20users%20with%20a%20security%20role%20higher%20than%20read%20access%20have%20access%20to%20the%20recycle%20bin.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CEM%3EAny%20Site%20Member%26nbsp%3B(with%26nbsp%3BEdit%26nbsp%3Bpermissions%20level)%20or%20Site%2FGroup%20Owner%20(with%26nbsp%3BFull%20Control%26nbsp%3Bpermission%20level)%20can%20access%20the%20Recycle%20Bin.%20Visitors%20of%20the%20site%20(those%20with%26nbsp%3BRead%26nbsp%3Bpermission%20level)%20cannot%20access%20content%20in%20the%20Recycle%20Bin.%3C%2FEM%3E%3C%2FP%3E%3CP%3E%3CEM%3EFrom%20%26lt%3B%3CA%20href%3D%22https%3A%2F%2Fsharepointmaven.com%2Fhow-sharepoint-online-recycle-bin-works%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Ehttps%3A%2F%2Fsharepointmaven.com%2Fhow-sharepoint-online-recycle-bin-works%2F%3C%2FA%3E%26gt%3B%3C%2FEM%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EBut%20the%20%22Limited_root_level%22%20role%20I%20have%20created%2C%20has%20less%20options%20enbled%20than%20the%20Read%20access%20role.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3EControl%20permissions%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3EEffective%20access%20of%20Sharepoint%20group%20on%20site%3A%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Ruben_Claeys_MG_3-1620736026716.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F279792i985386C81969BAB0%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22Ruben_Claeys_MG_3-1620736026716.png%22%20alt%3D%22Ruben_Claeys_MG_3-1620736026716.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECan%20someone%20please%20help%20me%20with%20this%20issue%3F%20It%20is%20not%20preferable%20that%20external%20users%20have%20access%20to%20everythin%20that%20was%20deleted.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20a%20lot%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EKind%20regards%3C%2FP%3E%3CP%3ERuben%20Claeys%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2344361%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ESharePoint%20Online%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
New Contributor

Hi All,

 

I have a Sharpoint site, which can be shared to external geusts. The issue is that these external users have access to the recycle bin.

 

Site configuration

The sharing with external users is enabled through the following policy:

Ruben_Claeys_MG_0-1620734050544.png

These external users are added to a Sharepoint group and given "Limited_root_level" access to the site.
The limited root level role is a custom role with the following configuration: 

Ruben_Claeys_MG_1-1620735592695.png

 

Ruben_Claeys_MG_2-1620735601511.png

 

Sharepoint documentation

According to the documentation, only users with a security role higher than read access have access to the recycle bin.

 

Any Site Member (with Edit permissions level) or Site/Group Owner (with Full Control permission level) can access the Recycle Bin. Visitors of the site (those with Read permission level) cannot access content in the Recycle Bin.

From <https://sharepointmaven.com/how-sharepoint-online-recycle-bin-works/>

 

But the "Limited_root_level" role I have created, has less options enbled than the Read access role.

 

Control permissions

Effective access of Sharepoint group on site:

Ruben_Claeys_MG_3-1620736026716.png

 

Can someone please help me with this issue? It is not preferable that external users have access to everythin that was deleted.

 

Thanks a lot

 

Kind regards

Ruben Claeys

 

0 Replies