Chapter 24
SharePoint Security Groups
Security in SharePoint is something that many people new to the software can find confusing, especially those who are not used to managing sites and security. At a basic level SharePoint security is fairly straightforward to set up and manage; at a more complex level it has broken the heart of many a SharePoint administrator as security and users got out of control. One of the major problems with SharePoint is that it does not enable you to quickly see who has access to what within your site collection. SharePoint 2010 addresses this problem, but not completely, as you will see in this lesson.
Out of the box SharePoint security is based on permission inheritance when you create a site. Initially your users will have access to all objects based on their permissions to the site itself, including for example the Shared Documents library and calendar. Users who have access to the site will have access to these libraries and lists.
Inheritance
People and groups are given access to a SharePoint site; as a result they will have access to document libraries, individual documents, and lists. When you create new objects, those objects also inherit the permissions of the site and users of your site have access to them. This process also applies to subsites. When you create a subsite, users with permissions to the main site collection (the parent site) will also by default have access to the subsite and its objects. In many cases this is not what you ...
