Grant Permissions Service

Configure Grant Permissions services to define the Grant Permissions service request template for the business users. You can specify users in a specified site or a library to whom you wish to grant permissions.

To create or manage services, click Service in the Request Management group within Settings.

On the interface for creating or editing a Grant Permissions service, configure the following settings.

NOTE

For information about common service settings that exist in all types of services, refer to Common Service Settings.

Scope – Expand the tree to select your desired nodes by selecting the corresponding checkboxes.

You can also enable the following options:
- Use SharePoint Online context to automatically populate the service request scope – Select this checkbox to retrieve and use the SharePoint Online context in the service request scope. In the request triggered from the Site Information Card app part, the URL of the site where the Site Information Card resides will be retrieved. The site URL will be automatically used as the request scope. Choose one of the following options:
  - Allow Business User to Edit the URL – The site URL will be automatically filled into the text box, and the requester can edit it.
  - Show as Read-Only to Business User – The site URL will be displayed as read-only, and the requester cannot edit it.
  - Hide from Business User – The site URL will be hidden from the requester.
- Allow business users to break permission inheritance for objects – With this checkbox selected, business users can choose to stop inheriting permissions from the parent when the request scope is inheriting permissions from its parent.
Select Users – Specify the users to which you want to grant permissions. Choose from the following:
- Allow any user/group – Select this option to allow the business user to grant permissions to any SharePoint Online users and security groups of the selected scope.
- Allow peers and direct or indirect reports (only supports SharePoint Online standard instance user) – Select this option to allow the business user to grant permissions to the users managed by the requester and the users of the same title as the requester.
- Allow direct or indirect reports (only supports SharePoint Online standard instance user) – Select this option to allow the business user to grant permissions to the users managed by the requester.
Optionally, select the Set requester as the default user checkbox to add the requester as the default user when starting a Grant Permissions request.

NOTE
Granting permissions to users outside your company depends on the corresponding site collection’s sharing settings in the site collection policy or SharePoint Online.
Permission Duration – Choose the permission duration for the selected users/groups.
- Permanent permissions – The permissions will be granted to the selected users/groups permanently.
- Temporary permissions – The permissions will be granted to the selected users/groups temporarily.
Choose whether to assign the Permission Duration option to this service, or allow the business user to choose the Permission Duration option when submitting a service request for this service. Choose from the following:
- Assign by IT Admin – The Permission Duration option configured here will be applied on the Grant Permission service request.
- Assign by Business User – Allows the business user to configure the Permission Duration option.
If Temporary permissions is selected, you can further configure the Temporary permissions settings:
- When Permission Duration is assigned by IT Admin, you must define the permission duration by entering a number in the text box and selecting Day(s), Month(s), or Year(s) from the drop-down list. Then, choose from the following options:
  - Allow business users to specify the duration – When submitting a request for this service, business users can enter the desired permission duration, regardless of the default duration. You must define the maximum permission duration that the business user can request for. Enter a number in the text box and select Day(s), Month(s), or Year(s) from the drop-down list.
  - Business users can only request with the default duration – When submitting a request for this service, the default duration is mandatory and business users cannot change the permission duration.
- When Permission Duration is assigned by Business User, you can configure the following options:
  - Specify the default duration – Define a default permission duration by entering a number in the text box and selecting Day(s), Month(s), or Year(s) from the drop-down list.
  - The permission cannot be granted longer than – Define the maximum permission duration that the business user can request. Select this checkbox, then enter a number in the text box and select Day(s), Month(s), or Year(s) from the drop-down list.
Optionally, choose whether to Notify the person who was granted the permissions about permission expiration. Select the checkbox and define the time that the person will be notified in advance. Enter a number and select Day(s) or Month(s) from the drop-down list.
Grant Permissions – Specify the permissions to the selected users/groups.
- Add users to a SharePoint group – Grants the group permission to a user by adding the user into this group.
- Grant users permission directly – Assigns the explicit permission to a user.
Choose whether to assign the Grant Permissions option by this service, or allow the business user to choose the Grant Permissions option when submitting a service request for this service. Choose from the following:
- Assign by IT Admin – The Grant Permissions option configured here will be applied on the Grant Permission service request.
- Assign by Business User – Allows the business user to configure the Grant Permissions option.
Optionally, select Exclude specified permission levels from the request page and then select your desired permission levels by selecting the corresponding checkboxes. The selected permission levels will be excluded from the permission level list if the requester grants the user permission. If the requester adds users to a SharePoint group, the group that contains the selected permission levels will not be displayed.

NOTE
The displayed permission levels are retrieved from AvePoint Cloud Governance Settings > SharePoint Permission Level Management.
Send Email – Choose whether to send an email to the new users for notifying their new permission. Select the Send welcomeemail to the new users checkbox, and then enter the subject and the body of the email to be a template.

Choose whether to assign the Send Email option by this service, or allow the business user to choose the Send Email option when submitting a service request for this service. Choose from the following:
- Assign by IT Admin – The Send Email option configured here will be applied on the Grant Permission service request. Select either Show as Read-Only to Business User or Hide from Business User.
- Assign by Business User – Allows the business user to configure the Send Email option.
When you have finished configuring settings for this service, choose one of the following options:
- Click the arrow on the left-hand side to go to the previous steps to review and modify your configurations.
- Click Save to save all of the configurations and return to the Service Management interface.
- Click Save and Activate to save all of the configurations and activate this service, which allows users to submit requests for this service.
- Click Cancel to return to the Service Management interface without saving any configurations.

Configure Services

Best Practices for Managing Groups/Teams

Additional Configurations for Managing Groups/Teams

Best Practices for Managing Communities

Best Practices for Managing Site Collections

Additional Configurations for Managing Site Collections

Additional Configurations for Managing Sites

Reports and Dashboard

All Tasks

Grant Permissions Service

All Tasks

#Grant Permissions Service

Grant Permissions Service