Feb 26 2018
12:53 PM
- last edited on
Feb 06 2023
03:02 AM
by
TechCommunityAP
Feb 26 2018
12:53 PM
- last edited on
Feb 06 2023
03:02 AM
by
TechCommunityAP
We have enacted the following instructions in SharePoint Online to enable the Anyone external sharing option.
We received a note from MS Support saying that in late March, the Everyone sharing option would be changed. See information here: https://support.microsoft.com/en-us/help/4089534/how-to-grant-the-everyone-claim-to-external-users-i...
We are unfamiliar with the Everyone setting.
I simply would like to confirm that the changes we enacted to enable Anyone external sharing will still be functional past the March 23 date mentioned in that communication.
Thanks all.
Feb 27 2018 06:52 AM
Anonymous sharing will continue to work as usual.
We have already discussed it: https://techcommunity.microsoft.com/t5/Office-365/Will-anonymous-external-sharing-be-disabled-New-wa...
Feb 27 2018 08:36 AM
Thanks so much!
Mar 08 2018 05:32 AM - edited Mar 08 2018 05:47 AM
What about the case for SharePoint Sites where Everyone has been used inside SharePoint Groups to grant everyone including External users access/permissions to the site?
Checking our Tenant via Get-SPOTenant PowerShell command the "ShowEveryoneClaim" property is already set to True without any action from us.
So will we and any other Tenant administrator still be impacted on the After March 23 change?
Either run the PowerShell cmdlets like
Set-SPOTenant -ShowAllUsersClaim $true
Or implement an ADD Groups approach?
If this has already been discussed in other threads I hope you can redirect me to it since I didn't find it...
Mar 08 2018 05:57 AM
"After this date [March 23, 2018], an external user will see only the content that’s shared with that user or with groups to which the user belongs. External users will no longer see content that’s shared with Everyone, All Authenticated Users, or All Forms Users. By default, content that’s granted permissions to these groups will be visible only to your organization's users."
So, the article is clear. (see https://support.microsoft.com/en-us/help/4089534/how-to-grant-the-everyone-claim-to-external-users-i...)
But I understand that in your tenant the "ShowEveryoneClaim" property is already set to True without any action from you, hence you want to know what will happen after March 23, 2018.
@Stephen Rice surely knows the answer...
Mar 08 2018 06:16 AM
Mar 12 2018 12:09 AM
@Stephen Rice is it possible for you to help out here to clarify if all our customers will be effected or not after March 23.. They use Everyone role inserted into SharePoint Visitors group on a large number of SharePoint sites to allow internal as well as external accounts read access to content managed on SP sites..
Below I have pasted in what Microsoft communicated out in the Admin center/notification and I read it as all tenants needs to do an action to continue as before. But the 3 tenants I have checked all has the Set-SPOTenant -ShowEveryoneClaim set to True without doing anything..
So please help out so it is crystal clear if action is still required or not in relation to SharePoint sites and use of Everybody role...
---
New ways to govern access of external users are coming to Office 365 |
Major update: General Availability rollout started |
||
Applied to: All customers |
Starting March 23, 2018, we're giving you new ways to govern access of external users. As part of this update, external users will no longer be able to see content that has been Shared with Everyone, All Authenticated Users, or All Forms Users, even if they have been invited or added to authorized groups. |
Mar 12 2018 11:39 AM
Hi @Freddy Bang,
Sorry for the delay, I am following up on this and will get back to you when I have an answer. Thanks!
Stephen Rice
OneDrive Program Manager II
Mar 15 2018 08:31 AM
Mar 15 2018 04:36 PM
Hey @Freddy Bang,
I have an answer for you :) By default, the value of the ShowEveryoneClaim is "unspecified". Get-SPOTenant returns the "effective" value in this case, which is currently "true". After this change goes live, the "effective" value of "unspecified" will be False. We're going to update the documentation to make this more clear (keep an eye out for that in the next few days).
In the meantime, if you want to keep the current behavior, you should explicitly set the value to True via PowerShell.
I'm not sure if this counts as a "clear" understanding but I hope it helps! Let me know if this doesn't make sense!
Stephen Rice
OneDrive Program Manager II
Mar 16 2018 03:53 AM
Thanks @Stephen Rice,
I assume I have to look at the documentation for Get-SPOTenant and/or How to govern access of external users in Office 365 or where to keep looking?
Mar 16 2018 09:25 AM
Hi Freddy,
I think I can give you the relevant info here:
If you want documents that are shared with "Everyone" to continue to be accessible by external users (present and future), then run:
Set-SPOTenant -ShowEveryoneClaim $true
If you want documents that are shared with "Everyone" to only be accessible by internal users, then run:
Set-SPOTenant -ShowEveryoneClaim $false
Hope that helps!
Stephen Rice