SharePoint blog permissions: a user guide

20 Mar
2012

This is a step-by-step guide to setting up correct permissions for your SharePoint blog. We’ll focus on the “comments” list, but you can take the same methods and apply it to photo libraries, post lists (for multiple authors), the list goes on. Let’s get started!

Step 1: Create a new permission level
Step 2: Stop inheriting
Step 3: Apply correct permissions

Create a new permission level

First we need to create a new permission level. This will allow us to give people specific rights on specific lists, instead of giving users global rights on a list. In order to do this, click on “Site Actions > Site Permissions.”
Note: you must be in the site collection root to create permission levels

In the ribbon click “Permission Levels”

Next click “Add a Permission Level”

I’ve included a screenshot of the settings I use for this “contributor level permissions” permission level. This lets my users leave comments, but not have rights to approve other comments…anything of that nature.

For reference, here’s the list of items I enable:

  • Add Items
  • Edit Items
  • Delete Items
  • View Items
  • Open Items
  • View Versions
  • Create Alerts
  • View Application Pages
  • View Pages
  • Use Remote Interfaces
  • Use Client Integration Features
  • Open

Stop Inheriting Permissions

Ok, you have created the correct permission level, now it’s time to apply it to users on your lists. The first thing we’ll do is manage our list. I’m going to use the comments list for this example, but you can also use “Posts”, “Photos”, or any other list.


Next, click “List Permissions” in the ribbon for the selected list.

What we need to do for our comments list is actually break the permissions so the contributor level permissions only applies to this list. So click “Stop Inheriting Permissions” in the ribbon.

Apply correct permissions

Once permissions are broken, click “Grant Permissions.”

Finally, select your users and grant them the “contributor level permissions” permission level that we created earlier.

Done!

What you have now is a list that has broken permissions in order to grant a certain level of permissions to a certain group of users. This works great for a SharePoint blog, because you often are working in an intranet environment with a lot of users. Using this method you can allow/disallow people from commenting on a person-by-person basis if you so prefer.

One thing to remember here is that breaking list permissions is never a great solution to anything. Unless you have a very good method of managing which lists have broken permissions, it can quickly get out of control. So use this method with care. Most likely if you have a small blog site and you are the site collection administrator, you’ll be fine with this way of doing things.

Let me know how it works, and as always, drop me an email if you’d rather someone else do it for you!

Note: this is a sister post of an article I wrote on Microsoft SharePoint’s “Get the Point” blog entitled Enhancing a SharePoint blog site with pictures (Part 1).

4 Comments

Setting SharePoint Blog Permissions

7 Dec
2011

Every time I create a blog in SharePoint I do two things.

  1. Break permissions on the blog, and grant the user owner-level permissions
  2. Break permissions on the comments list. Then grant all users contribute-level permissions so they can add comments.

“Access Denied” when creating a new page in Sharepoint 2010

5 Sep
2011

The reason you get this error is because the user needs “read” access to the Master Page Gallery list. Once that is given, and as long as they have the ability to “add and customize pages” in permission levels, creating pages should work great!

2 Comments

Managing a multiple blog site in Sharepoint 2010

22 Aug
2011

We just deployed over 50 blogs in one shot for an entire elementary school. The scope? Each teacher must be the owner of their own blog, while letting any other teacher be a contributing author. We must leave the option open for kids to be contributing authors to the blogs as well. The owner of the blog must also be the owner of the comments list, and each comment must be moderated. And for the final trick, everything must have the same master page, and the principal must have ownership rights over every blog.

Here’s what I did:

  1. Create a publishing site (for the landing page).
  2. Apply a Master Page to that site (see my blog on creating master pages for blog sites)
  3. Create a sub blog site
  4. Customize that site to your heart’s content
  5. Save that blog site as a template
  6. Distribute that template over and over and over and over :)
  7. Set permissions
    • First, break permissions on the individual blog
    • Give ownership rights to the owner of the blog
    • Second, in the comments list (still inheriting at this point), break the permissions
    • Give “member” rights to whoever is allowed to leave comments. Here I had to customize it so that the parents had rights to add, edit, and delete items on this specific list.
  8. Change list settings
    • List versioning settings: require content approval
    • List advanced settings: allow users to create and edit anything “created by the user”, not just anything
  9. Repeat steps 7 and 8 for every blog.

This wasn’t a particularly in-depth tutorial, but it’s just to let you know the basic workflow of setting up dozens of blogs at once. If you want to know more, let me know.