删除所有人组是否安全? [英] Is it safe to delete the everyone group

问题描述

嗨-我注意到在创建新的网站集时，默认情况下会创建一个名为Everyone的SP组

Hi - I've noticed that an SP group called Everyone gets created by default when I create a new site collection

我不希望所有人都能访问每个网站集

I don't want everyone to have access to every site collection

如果该组包括Authenticated Users组的所有成员以及内置的来宾帐户，以及其他几个内置的安全帐户(例如SERVICE，LOCAL_SERVICE，NETWORK_SERVICE和其他)，则可以安全地删除该组和它可以 用PowerShell完成

If this group includes all members of the Authenticated Users group as well as the built-in Guest account, and several other built-in security accounts like SERVICE, LOCAL_SERVICE, NETWORK_SERVICE, and others - is it safe to delete this group and can it be done with PowerShell

我的脚本运行没有错误，但是没有删除该组:

My script ran without error but didn't delete the group:

$ weburl = http://test. 财务 
$ spweb = Get-SPWeb $ weburl

$weburl = http://test.finance  
$spweb = Get-SPWeb $weburl

    $ remove_groups = @(每个人")

    $remove_groups = @("Everyone")

   foreach($ remove_groups中的$ remove_group)
    {
       if($ spWeb.SiteGroups [$ remove_group] -ne $ null)
       {
           $ spweb.SiteGroups.Remove($ remove_group)
          写入主机已删除的组$ remove_group
       }
    }

    foreach($remove_group in $remove_groups)
    {
        if($spWeb.SiteGroups[$remove_group] -ne $null)
        {
            $spweb.SiteGroups.Remove($remove_group)
            Write-host Deleted Group $remove_group
        }
    }

谢谢

Jonj

推荐答案

jonjames.

Hi jonjames.

根据网站的策略和安全要求，正确的权限管理取决于SharePoint网站的所有者:如果您不希望任何人能够访问该网站，则可以安全地删除允许任何经过身份验证的用户的组到 访问并仅向特定的用户/组授予访问权限.

Managing permission the right way is up to the SharePoint site's owner, according to the site's policies and security requirements: if you don't want anyone to be able to access the site, you can safely remove groups that allow any authenticated user to access and grant access permissions only to a specific set of users/groups.

再见.

这篇关于删除所有人组是否安全?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！