By default, icons for site collections to which SharePoint farm administrators do not have access appear grayed out in the ControlPoint SharePoint Hierarchy. When an icon is grayed out, farm administrators cannot access the site collection/site (or any child objects to which they do not have access) from within ControlPoint. They can, however, use the ControlPoint Set Site Collection Properties feature to add themselves as site collection administrators.
If the SharePoint farm includes site collections that contain highly sensitive or confidential data that should remain "locked down" or if corporate policy dictates that farm administrators should not see sites to which they do not have access, ControlPoint Application Administrators can change the Value of the ControlPoint Setting Show All Site Collections to Farm Admins from True to False so that site collections to which farm administrators do not have access are not displayed in the SharePoint Hierarchy.
One of the user groups that is created in the ControlPoint Configuration Site when ControlPoint is first installed allows farms with different service accounts to authorize with each other when a cross-farm copy or move is performed.
The default name that ControlPoint assigns to this group is Remote Service Account Administrators. Because of special configuration requirements, if a different name is assigned to this group then the ControlPoint Application Administrator must update the Value of the ControlPoint Setting Remote Service Account Administrators for Cross Farm Operations with the new name so that ControlPoint will continue to recognize it.
By default, when the Auto Add Users to ControlPoint Groups action is used, any individual ControlPoint user group can have up to 1000 members.
When a ControlPoint group reaches its maximum number of users, ControlPoint automatically creates a new group with the same permissions as the "base" group.
If you want all users who are members of site Owners groups to be added to the ControlPoint Business Administrators group, and more than 1000 users meet that criterion:
·when Business Administrators group membership reaches 1000, a new group named Business Administrators_1 will be created and the next 1000 users will be added to that group.
·when Business Administrators_1 group membership reaches 1000, a group named Business Administrators_2 will be created, and so on.
ControlPoint Application Administrators can change this limit by updating the Value of the ControlPoint Configuration Setting
Auto Add Users To ControlPoint Group Maximum Group Size.
NOTE: This limit is enforced only when the Auto Add Users to ControlPoint Group action is used.
By default, the following ControlPoint analyses show list items, even those to which a ControlPoint user does not have permissions:
·Activity by User and
·Activity by Document
·Site Lists and Libraries Storage
The ControlPoint Application Administrator can, however, tighten security trimming so that only ControlPoint users who are site collection administrators can see list items in these analyses by changing the Value of the ControlPoint Configuration Setting Permissions Needed to See List Items in Reports from SITE to COLLECTION.
© 2021 Quest Software Inc. ALL RIGHTS RESERVED. Feedback 이용 약관 개인정보 보호정책