Home

SharePoint Online Folders, Office 365 Groups, Sharing

%3CLINGO-SUB%20id%3D%22lingo-sub-1190827%22%20slang%3D%22en-US%22%3ESharePoint%20Online%20Folders%2C%20Office%20365%20Groups%2C%20Sharing%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1190827%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20all%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20have%20an%20internal%20site%20for%20users%20to%20access%2C%20a%20document%20library%20with%20a%20top-level%20departmental%20folder%20and%20subfolders%20for%20each%20department.%20Single%20site%2C%20not%20creating%20additional%20sites%20for%20departments%20as%20there%20is%20no%20need%2C%20just%20a%20single%20site%20with%20a%20communications%20site%20as%20a%20link%20aggregator%20which%20allows%20users%20to%20easily%20find%20the%20document%20repository%2C%20access%20it%20via%20web%2C%20sharepoint%20or%20OneDrive.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe've%20created%20Office%20365%20Security%20groups%2C%20added%20users%20to%20them.%20Users%2C%20all%20of%20the%20same%20site%20domain%20in%20Azure%20AD%2C%20after%20being%20added%20to%20the%20groups%2C%20the%20groups%20are%20applied%20to%20the%20folders.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EUsers%20then%20access%20the%20Sharepoint%20online%20site%20-%20and%20they%20can't%20see%20the%20folders%20or%20the%20folder%20contents.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHere%20is%20where%20the%20problem%20arises%20-%20they%20can%20only%20see%20them%20when%20they%20are%20added%2C%20individually%2C%20to%20the%20folder%2C%20not%20when%20only%20the%20group%20they%20are%20a%20member%20of%20is%20added%20to%20the%20folder.%20If%20you%20look%20at%20the%20resulting%20permissions%20when%20a%20user%20is%20in%20a%20group%20SharePoint%20reports%20no%20access%20(other%20than%20the%20default%20SharePoint%20groups).%20When%20you%20add%20the%20Individual%20they%20have%20access.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20don't%20want%20to%20manage%20individuals%20at%20a%20folder%20level%2C%20don't%20want%20to%20create%20separate%20SP%20groups%2C%20can't%20have%20a%20single%20site%20with%20a%20single%20set%20of%20top-down%20permissions%2C%20can't%20keep%20propagating%20sites%20for%20every%20department.%20Simple%20ask%20-%20administer%20users%20in%20groups%2C%20nest%20groups%20if%20needed%2C%20provide%20group-level%20access%20to%20folders%2C%20enable%20users%20to%20access%20resources.%26nbsp%3B%3CBR%20%2F%3E%3CBR%20%2F%3EDoes%20SharePoint%20allow%20users%20to%20access%20resources%20when%20they%20are%20part%20of%20an%20Azure%20AD%20group%20of%20any%20kind%20or%20must%20they%20be%20added%20Individually%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1190827%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EFiles%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EPermissions%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESharePoint%20Online%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1191040%22%20slang%3D%22en-US%22%3ERe%3A%20SharePoint%20Online%20Folders%2C%20Office%20365%20Groups%2C%20Sharing%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1191040%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F566701%22%20target%3D%22_blank%22%3E%40gork3%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20don't%20tend%20to%20use%20Office%20365%20security%20groups%20but%20for%20sure%20permissions%20in%20SharePoint%20can%20be%20managed%20by%20using%20SharePoint%20Groups%20or%20Azure%20AD%20Groups.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Occasional Visitor

Hello all, 

 

We have an internal site for users to access, a document library with a top-level departmental folder and subfolders for each department. Single site, not creating additional sites for departments as there is no need, just a single site with a communications site as a link aggregator which allows users to easily find the document repository, access it via web, sharepoint or OneDrive.

 

We've created Office 365 Security groups, added users to them. Users, all of the same site domain in Azure AD, after being added to the groups, the groups are applied to the folders.

 

Users then access the Sharepoint online site - and they can't see the folders or the folder contents.

 

Here is where the problem arises - they can only see them when they are added, individually, to the folder, not when only the group they are a member of is added to the folder. If you look at the resulting permissions when a user is in a group SharePoint reports no access (other than the default SharePoint groups). When you add the Individual they have access. 

 

We don't want to manage individuals at a folder level, don't want to create separate SP groups, can't have a single site with a single set of top-down permissions, can't keep propagating sites for every department. Simple ask - administer users in groups, nest groups if needed, provide group-level access to folders, enable users to access resources. 

Does SharePoint allow users to access resources when they are part of an Azure AD group of any kind or must they be added Individually?

1 Reply
Highlighted

@gork3 

 

I don't tend to use Office 365 security groups but for sure permissions in SharePoint can be managed by using SharePoint Groups or Azure AD Groups. 

 

 

Related Conversations
Office365 groups spam emails
rav-i-den in Office 365 on
3 Replies
MS Project - Impression GANTT + Ressources
Emmanuel57570 in Project on
0 Replies
Why cant i share files in an external chat?
jerrodbug in Microsoft Teams on
1 Replies
Working with excel in Sharepoint desktop app
IanH1 in SharePoint on
2 Replies
Can't open different sections in OneNote Online
Simon_L in OneNote on
0 Replies