Shulou(Shulou.com)06/03 Report--

In China, we usually share large files through QQ transit stations (single file maximum does not exceed 3G) or Baidu cloud disk (Single file cannot exceed 4G, more than buy super member, otherwise upload download is very slow, limited), if your enterprise has Office 365, no matter what version is OneDrive for Business, and 21V operation, on the BGP backbone line in Shanghai and Beijing, there is no speed limit and unlimited bandwidth, each Office 365 user or 1T of network disk space, Wouldn't it be better if we used it to upload files or share them?

But by default OneDrive for Business is not allowed to be shared or shared with outsiders for corporate data flow security reasons.

Note: There are four types of shared links:

Anyone who owns a link: Grant access to anyone who receives this link, whether they receive it directly from you or a link forwarded by someone else. This may include people outside the organization.

XXXX Company users with links: People in your own company provide access to links to this file to anyone in your company, whether they receive them directly from you or forward them to others.

Existing Access: The Users with existing access option is available to people who already have access to a document or folder. Use this option if you want to send links only to people who already have access.

Specific users: You can grant access to people you specify, although others may already have it. If a user forwards a sharing invitation, only people who already have access to the item can use the link.

Allow Editing is on by default. If you want others to view only the file, uncheck the check box.

Reference from: support.office.com/zh-cn/article/%E5%85%B1%E4%BA%AB-sharepoint-%E6%96%87%E4%BB%B6%E6%88%96%E6%96%87%E4%BB%B6%E5%A4%B9-1fe37332-0f9a-4719-970e-d2578da4941c

Therefore, to enable anonymous sharing to provide download or upload services to people outside the company, you need to enable anonymous permissions under the administrator settings of Office 365.

How do I open it?

Office 365 administrator log in to the admin center, click on the box in the upper left corner

select Manage

Expand tab

Select Sharepoint under Admin Center

Select OneDirve in Sharing and pull the slider to select "Anyone"

Set sharing permissions, such as forcing everyone to set the default number of days before sharing expires, whether the permissions of shared files can only be viewed or can be viewed and edited by default, and whether the permissions of shared folders are view, edit, upload, etc. Of course, this is the administrator's global setting of sharing permissions for all employees. The greater the permissions, the greater the granularity of each user's sharing permissions. In short: The folder sharing permissions set by Office 365 can be viewed, edited, and uploaded, so users can set the permissions for viewing, editing, and uploading to others in the shared folder permissions, or they can set only view, or only view and edit.

After setting, save it and it will take effect

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Note: If you can't save, it's because shared settings for SharePoint and OneDrive are saved in an inconsistent order

When you set SharePoint looser than OneDrive or set it all to the strictest (default setting), SharePoint settings are saved in the background, then OneDrive settings are saved, and you see Save without error.

When you set SharePoint to be as loose as OneDrive, OneDrive will be saved in the background before SharePoint, and an error will appear if the existing OneDrive settings are looser than the original SharePoint. If the existing OneDrive settings are the same as the original SharePoint, or stricter, no errors will occur.

As such cases are numerous, examples include:

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

At this time, the administrator has to make a request: Can you set some people to share anonymously, and some people do not have the right to share anonymously?

The answer is yes. First, you need to create a new user group in the Office 365 admin center group, add Zhang San to the user group, and finally slide to the bottom and click "Add". The type of the selected group is "Security".

set the name

Group creation complete, click on this group, click on "Edit" in the members

Click "Add Member"

Check the person (account) allowed to share anonymously, click Save, and close

Then go back to Sharepoint in the admin center

Administrators can click on "Classic Sharepoint Admin Center"

Select Share, check "Only allow users in the selected security group to share with authenticated external users," click the small book symbol in the address book

Share explanation reference: docs.microsoft.com/zh-cn/onedrive/manage-sharing

Note: In "People who can be shared outside the organization," there are 2 items that can be checked (if you selected the third item "Allow users to invite and share with authenticated external users" in the external sharing above, then only the first item "Share only users in the selected security group with authenticated external users" is displayed here)

1. If you check the first box, you need to create a security group and add it here. After this setting, all users in the organization cannot share anonymously through "anyone," users in the security group can share with external authenticated users through "specific users," and members outside the security group cannot share with external authenticated users.

2. If you check the second option, after you add a security group, members of the security group can be shared with external users through "anyone" or "specific users," while members outside the security group cannot be shared externally.

Here I want to achieve the effect that only members of this group have permission to allow anonymous link sharing, so choose the configuration shown below:

Find Enter the group name we just entered Click on the magnifying glass to find, select "Allow external sharing of people" Add

Finally, slide to the bottom and click "OK" to save the configuration

So the final effect is that all other employee accounts except Zhang San do not have anonymous sharing permission.

And Zhang San can have the first item "anyone who owns the link" anonymous sharing permission

Then if you want to add Li Si later, you can also share anonymously with the outside world. You only need to add Li Si to this group of "people allowed to share externally." It is very simple. You can control which accounts can be shared anonymously with the outside world through the members of the group. Everyone except this group is not allowed to share anonymously with the outside world.

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Here I can share anonymously only if I don't target a certain group member, so I don't need to go to the "Classic Sharepoint Management Center" to do any configuration, so now everyone has anonymous sharing permission, then I use Zhang San's account to enter OneDrive and create a new folder.

Named folder name

tap share

Select "Anyone with links", allow editing (allow anonymous users to edit the information or upload files), apply

There is no person or email address added here. Click the link directly to generate symbols.

After the link is generated, copy the link directly to people outside the company (because no account or email address has been added, any external or internal person who gets the link URL can anonymously open the information shared by Zhang San for uploading, downloading and editing)

Then people outside the company can directly open this link and upload large attachments and other information.

Select Large Attachment Upload

In Zhang San's account OneDrive, you can see the files uploaded by others through the links created by Zhang San.

How do I modify permissions that have already been shared?

Still click on the file or folder you just shared and select Share

Click the ellipsis and click "Manage access rights"

You can delete the sharing link or add other member accounts with the sharing permission, etc.

Besides creating anonymous shares for others to download or upload, how do you keep shared material safe without anonymizing it to designated users inside or outside the company? What is the difference between Baidu cloud disk sharing?

Here I will demonstrate that the scenario is that Zhang San shares a file with Li Si. After Li Si receives the shared connection, he copies the connection to users outside the company through WeChat or QQ and other channels to see what effect it is:

Zhang San opts to share Power BI presentation data.xlsx file

Or permissions Select "Specific users" Permission to edit

Enter Li Si's mailbox and click Generate Copy Link.

Copy this URL link and send it to Li Si (QQ or WeChat can be used in various ways)

After Li Si gets the link, he will see the following interface when he opens it. Li Si needs to log in to see the information shared by Zhang San.

Following the above method, I share my email address with an external non-Office 365 account to simulate my partner, and I need to share this information with my partner

Also send the generated URL to my QQ mailbox partner, but I am not sure, this partner sent this link URL to my competitor, open to see what kind

Ask to check and open the Captcha in the shared partner mailbox. Enter the Captcha to open it.

Open it and you can see who it is.

Very interesting place: At the same time, it can also realize the collaborative office requirements of Zhang San and external QQ users 'partners to edit the same excel table online at the same time, and see which cell the other party is editing in real time. Each user is distinguished by different colors.

Finally, we can also change the play method to ensure the security of sharing out. The scenario is that Zhang San needs to share the data with the external partners of the company, or the above method, but the sharer does not fill in the partner email address, but fills in Zhang San's QQ email address, and then copies the generated URL link to the partner. In this way, every time the partner opens it, Zhang San's QQ email address is needed to open the Captcha. If Zhang San accidentally steals the URL maliciously, Then don't worry about the other party being able to open it, because every time you open it, you need the Captcha request in Zhang San's QQ mailbox. (Of course, setting the expiration date of sharing is also a good choice)

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.