Weird Permissions Issue in SharePoint

1
votes

My SharePoint site uses Active Directory authentication. The Site Visitors SharePoint group contains the AD group of all users.

I have a subsite which Site Visitors have Read access to. Inside this subsite, I have a document library which I don't want visitors to have read access to and so I have made the permissions unique for this document library only and only allowed 2 explicit users to have access to it.

Despite this, I can still come onto the site as a Site Visitor AD user and navigate to this document library and read the files inside.

Any idea what's going on here? I should be able to lock down lists and doc libs like this shouldn't I?

Hope someone has seen an issue like this before. Are there any pages I can view which show me what users/groups have permission to this document library other than the standard Permissions one?

Thanks

Graeme

2
sharepointactive-directorypermissions
Can you check the permissions on the files themselves? i.e. hover over item -> manage permissions? - Colin
Thing is they shouldn't even be able to see the list at all? I went and checked and the files all inherit the permissions of the parent, i.e. the list. - Graeme
And you are sure you are not a member of an AD group that does have permission? are you logged in as the site admin? - Colin
The 2 users who should have access to the list are both admin users and the user I'm logged in as is just a member of the Site Visitors group. - Graeme
hmm gonna try it here, will let you know - Colin

2 Answers

1
votes

You might need to try out the Permissions Reporting Tool just today new version has been released.

0
votes

Hey there, I'm Kevin and I work on SharePoint permissions

If the users are site collection administrators, they will have access to the list regardless of the permissions set.