Sharing options that can be set by IS&T, upon request, for each site collection<\/h2>\n
By default, new site collections created for departments, research groups, etc., are set to disallow sharing outside of BU. This optimizes security by guarding against accidental external sharing. The site collection administrator can request that the sharing options be changed to any of the three levels at any time. We recommend that you do not request external sharing to be enabled unless and until you need and plan to use it. Note that changing from an option that allows external sharing to a more restrictive option will cause disruption for people outside of BU with whom content has been shared. The three options that can be set for each site collection are shown below.<\/p>\n
The site collection administrator controls access to content within the site collection. While access can be controlled at various levels, e.g., the site collection, a subsite, a document library or list, or even a folder or single document, security is most easily and successfully maintained when sharing and permissions are kept as simple and clear as possible. In general, maintaining permissions at the site collection or subsite level is highly recommended: easy to understand and to maintain. Site collections should be designed so that all content in a given area, e.g., a subsite, has the same access requirements.<\/p>\n We strongly recommend that you use groups to control access in SharePoint. Rather than assigning permissions to individuals, assign permissions to groups and then add people to the group that provides the desired access. By default, SharePoint commonly defines three groups:<\/p>\n These permission levels are set by commonly followed convention, but you can modify them if you need to, and you can set up additional groups for special requirements. If you are used to permissions in SharePoint 2007, you will recall that Members had \u201cContribute\u201d permissions. The SharePoint Online default is to give Members \u201cEdit\u201d permissions. \u201cEdit\u201d permissions provide more capability than \u201cContribute;\u201d e.g., anyone with \u201cEdit\u201d permissions can create, modify, and delete Lists and Document Libraries. This enhances collaboration capabilities, but if you prefer to limit these capabilities at any level, you can always change the permissions for Members to \u201cContribute.\u201d<\/p>\n The site collection administrator can also choose who can request access to a site or share a site with others by controlling the Access Requests Settings, show below. You can reach these settings by choosing \u201cSite settings\u201d from the dropdown menu under the gear (upper right), then choosing \u201cSite permissions\u201d from the \u201cUsers and Permissions\u201d group, then choosing \u201cAccess Request Settings\u201d from the \u201cPermissions\u201d tab of the Ribbon.<\/p>\n By default, new site collections allow Members to share the site and allow requests for access. You should familiarize yourself with these options and ensure that they are configured to suit your needs. Note that any time you create a new subsite with unique permissions, that subsite will probably be created with all these options enabled, so be sure to set them as you desire. Having these options enabled provides convenience and may be appropriate in some situations, but this convenience can reduce security by allowing sharing of content without the oversight of the site collection administrator.<\/p>\n Last updated 2020-03-03 Microsoft 365 is Microsoft\u2019s cloud-based offering of a number of services, including SharePoint Online. Boston University\u2019s Information Services & Technology (IS&T) maintains a tenant in Office 365, through which it offers departments, research groups, and others the opportunity to request and manage their own SharePoint site collections. Boston University\u2019s Microsoft 365 Security…<\/p>\n","protected":false},"author":1356,"featured_media":0,"parent":271,"menu_order":1,"comment_status":"closed","ping_status":"closed","template":"","meta":[],"_links":{"self":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/pages\/93275"}],"collection":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/users\/1356"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/comments?post=93275"}],"version-history":[{"count":20,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/pages\/93275\/revisions"}],"predecessor-version":[{"id":147053,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/pages\/93275\/revisions\/147053"}],"up":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/pages\/271"}],"wp:attachment":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/media?parent=93275"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}![\"O365](\"\/tech\/files\/2015\/08\/O365SharingOutsideYourCompanyOptions.png\")
<\/a><\/p>\nPermissions controlled by the site collection administrator<\/h2>\n
\n
Sharing options controlled by the site collection administrator<\/h2>\n
![\"O365](\"\/tech\/files\/2015\/08\/O365AccessRequestsSettings-636x168.png\")
<\/a><\/p>\nReferences<\/h2>\n
\n