How to allow a set of users access to a sub site in SharePoint but not the root site

authorizationsharepoint-2007

We have a publicly addressable MOSS 2007 site which is only accessable to users with windows accounts. Off the root Site collection, we have a series of sub sites:

How do I allow a set of AD users access to the moss/depts/safety site, but not the moss root site or any other sub sites? I've tried to give them Open Only rights at the root, then break security inheritance for the safety sub site, but that doesn't seem to do the trick. They can go directly to depts/safety, but cannot go to http://moss

Best Answer

If you want a completely different set of permissions for http://moss/depts/safety than you do for http://moss (and for that matter, http://moss/depts/finance), set them up as site collections, with /depts as a wildcard inclusion managed path. That will allow you to keep navigation intact, but have completely different permissions (and site collection administrators) for each department site.

Related Solutions

Locked out of Sharepoint (but I’m admin!)

Can you try this?

http://technet.microsoft.com/en-us/library/cc262811.aspx

stsadm -o setsitelock 

   -url <URL name> 

   -lock {none | noadditions | readonly | noaccess}

SharePoint Permission on Document Library

Here is an MSDN forums topic that is very similar to yours. Basically, the result was that MS says SharePoint does a checkout/checkin once the form is submitted, which requires Edit permissions. A further post by Clayton Cobb outlines a possible workaround for the problem.

Best Answer

Related Solutions

Locked out of Sharepoint (but I’m admin!)

SharePoint Permission on Document Library

Related Topic