Important : Bug in Office 365 External Sharing

External sharing is activated by default on the Office 365 tenants.  This is already a major governance fail in my opinion, but it does get worse.  The security trimming is not working properly.  Security trimming means that you only see what you have been given access to see.  Site Members, Owners and Visitors will all get different menu options accordingly.  However, this is not working when sharing externally, so heads up all extranet administrators!

To make matters worse, external sharing users also don’t go into the Visitors group by default, they are added outside of any groups.  This means you need to manually check the permissions settings on every document and/or folder to see who has access to what.

External Sharing - User with Read Access not in Groups

 

 

 

 

 

 

 

 

 

 

You can configure all the settings from SharePoint Admin down to item level to be read only, and send the links out as read only – users will still see the full menu options.  This is not correct and is a major bug.

External Sharing - Full Menu Available

 

 

 

 

 

 

 

 

 

 

 

Also, users can click on the delete or rename options, and that’s when they get an error.  The error messages are also not consistent which will compound the issues training users on this.

External Sharing - You Don't Have Rights

 

External Sharing - Sorry Screen

 

 

 

 

 

 

 

 

 

 

 

 

 

 

So now think about it when you have hundreds of external users, with access to hundreds of documents – and you have to manually go through each one to figure out who has access where; let alone the not so great end user experience.  It’s a big problem guys.

We did log a call with Microsoft to escalate this, they said they would but advised us to add it to Uservoice, which we also did.  If you think this is a concern, please vote it up so Microsoft can fix it.

2 comments

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.