How do I set up permissions using Entra ID Security Groups to limit access to SharePoint intranet sites and News Posts?

Peter Prowse 0 Reputation points
2024-07-01T00:12:12.2533333+00:00

We have implemented a SharePoint based Intranet site for a customer.

They have Entra ID in a flat hierarchical structure, which is causing problems for granting/restricting access to both sites (location specific) and News Posts.

How do we make the permissions in Entra ID granular enough to solve for the permissions issues?

Or what changes do we need to make in SharePoint to manage access appropriately?

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
4,205 questions
SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
10,130 questions
SharePoint Development
SharePoint Development
SharePoint: A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.Development: The process of researching, productizing, and refining new or existing technologies.
2,777 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,316 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Givary-MSFT 30,176 Reputation points Microsoft Employee
    2024-07-01T05:47:37.7766667+00:00

    @Peter Prowse Thank you for reaching out to us, As I understand you want to secure SharePoint access for one of your clients.

    To make the permissions in Entra ID granular you can consider implementing a role-based access control (RBAC) model. This involves defining roles and permissions that are specific to organization's needs and assigning those roles to users and groups in Entra ID.

    Sharing this for reference - https://video2.skills-academy.com/en-us/sharepoint/restricted-access-control you can review this to begin with how one can manage SharePoint access efficiently.

    Adding more tags related to SharePoint for more visibility.

    Let me know if you have any further questions, feel free to post back.

    1 person found this answer helpful.
    0 comments
  2. AllenXu-MSFT 17,666 Reputation points Microsoft Vendor
    2024-07-01T05:52:46.4466667+00:00

    Hi @Peter Prowse,

    You can create Microsoft Entra ID security groups based on business processes and assign team members to the appropriate groups. You can restrict access to non-group connected SharePoint sites by specifying Entra security groups or Microsoft 365 groups that contain the people who should be allowed access to the site.

    Reference:

    Restrict SharePoint site access with Microsoft 365 groups and Entra security groups.

    If the answer is helpful, please click "Accept as Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments