SharePoint Online - Security Groups - Inheritance

New Contributor

Hello,

 

I have on interesting question about SharePoint Online and Security Groups.

I site for example "Customer", where is document library. In that library is folder "IT" and in that folder are two subfolders "Administrative" and "Technician".

 

Folder "IT" - two security groups

  • SG_ALL_READ
    • everyone in this security group have permission read folder IT
    • members of this groups:
      • SG_ADM_RW
      • SG_TECH_RW
  • SG_ADM_FC
    • everyone in this security group have permission full control in the folder "IT"
    • members of this groups are users administrators

Subfolder "Administrative" - Inheritance is disabled

  • SG_ADM_RW
    • members of this groups are users from administrative with permission read and write

Subfolder "Technician" - Inheritance is disabled

  • SG_TECH_RW
    • members of this groups are users technicians with permission read and write

 

When administrator from security group SG_ADM_FC will create new subfolder in folder "IT", for example "Others", this folder "Others" will automatically inherit security groups SG_ALL_READ and SG_ADM_FC. Which means that all users (administrators, users from administrative, users technician) have access for new folder "Other" (no matter what permission).

 

My questions is:

Is there any way how to tell security group SG_ALL_READ "do not automatically inherit yourself" when new subfolder is created?

 

This scenario is for regular users. That is why I need this. I know me as administrator can do it but I need something more easier for regular user.

I tried to create diagram .. hope it is understandable :-).

StandaCZE_1-1621846215722.png

 

 

Thank you very much for your help!!

 

0 Replies