Category Archives: powershell

security group in active directory creation

Posted on by
Reply

security group in active directory, you can create when you plan to manage permission in sharepoint from AD end. This provides additional security, tracking, control and manage permission for the secure contents present in sharpeoint sites. You need to create AD groups of type security in domain controller in windows server 2019. Then add security group to sharepoint site by following the option “Grant Permissions” from ribbon.

Advertisements

Types of group scopes

There are three group scopes like Domain local, Global, Universal.

Types of active directory groups

There are two types of AD groups like Security Groups, Distribution Groups.

Real world situation, there are dedicated organizational unit or we call as OU unit where groups are created. Here i am focusing on creating AD group. Follow the step by step process described in this post and understand how to create security group in AD with global group scope.

Advertisements
  • Open “Active Directory Users and Computers” from start menu or following dsa.msc snap in windows server 2019.
  • Right click on “OU”, navigate to “New” and select “Group” to create AD group.
Create new group active directory users and computers
Advertisements
  • Enter AD group name, select group scope as “Global”, select group type as “Security” and click on “OK” to apply changes.
security group type global group scope
Advertisements
  • Active directory group is created. Right click on the group, select “Properties”.
security group type global group scope properties
Advertisements
  • Clcik on global security group properties general to see details in it.
global security group properties general
Advertisements
  • Global security group properties Memebrs to add users to the group created.Click on “Add” to add users.
global security group properties members
Advertisements
  • “Members Of” properties to see this group is part of any other group.
global security group properties member of
Advertisements
  • global security group properties security to check oermission of this group. You can check in , check out box to edit or modify changes.
global security group properties security
Advertisements
  • managed by group property can find details as below.
global security group properties managed by
Advertisements
  • global security group properties object will display details as below.
global security group properties object
Advertisements

Powershell to create security group in active directory

We can create security group in active directory using powershell command New-ADGroup as well so as to make it quick.

New-ADGroup -DisplayName "SPMCSE-Owners" -GroupScope DomainLocal -Name "SPMCSE-Owners"
New-ADGroup -DisplayName "SPMCSE-Contributor" -GroupScope DomainLocal -Name "SPMCSE-Contributor"
New-ADGroup -DisplayName "SPMCSE-Reader" -GroupScope DomainLocal -Name "SPMCSE-Reader"
New-ADGroup -DisplayName "SPMCSE-ViewOnly" -GroupScope DomainLocal -Name "SPMCSE-ViewOnly"
Advertisements
Powershell to create security group in active directory
Advertisements
Advertisements
Advertisements

unattached content database recover contents list library

Posted on by
Reply

unattached content database – recover contents list library from is required while moving list or library as content migration. You can recover files from content database that is not attached to any web application in sharepoint 2019. Recovering data from content database unattached will restore only specific list library in sharepoint site. Follow the step by step procedure to recover list library from sharepoint content database not attached.

Advertisements
  • Navigate to central admin in sharepoint 2019.
  • Select “Backup and Restore” from left navigation and click on “Recover data from an unattached content database” present under “Granular backup”.
recover contents list library from unattached content database
Advertisements
  • Select “Database Server”.
  • Select “Database Name” which is unattached to any web application.
  • select the radio button “Export site or list”, if you want to export list or library from unattached content database.
  • Choose radio button “Backup site collection” to export site collection from content database unattached.
recover files from content database that is not attached
Advertisements
  • Select site collection present in the unattached content database.
  • choose site from the site collection selected above.
  • Select list or library that you want to recover or restore.
select site list library in sharepoint from contact database unattached
Advertisements

After that, follow the same procedure described in previous post “export import list library sites in sharepoint” to import list or library described once export is completed.

Import-SpWeb -Identity "site url in which you want to import list" -Path "exported item saved location" -IncludeUserSecurity -UpdateVersions Overwrite -verbose

Import-SpWeb -Identity "site url in which you want to import library" -Path "exported item saved location" -IncludeUserSecurity -UpdateVersions Overwrite -verbose
Advertisements

watch the video to get in detail step by step

Advertisements
Advertisements

access denied content type policy templates

Posted on by
Reply

I was getting access denied error while creating content type policy template in sharepont online. i tried the solution as below to resoleve the issue. let’s disucss how to resolve access denied content type policy templates error. the solution is applicable for the error Access denied uploading template to content type.

  • Navigate to site settings in sharepoint and click on “content type policy template” to create a custom policy template.
Advertisements
site settings option in sharepoint online for the error access denied content type policy templates
site settings in sharepoint
Advertisements

Error “access denied content type policy templates” screenshot as below

access denied content type policy templates
access denied error while creating content type policy templates
Advertisements

Solution

Enable below settings in sharepoint admin center.

  • Allow users to run custom script on personal sites
  • Allow users to run custom script on self-service created sites
enable custom script sharepoint online
enable custom script sharepoint online
Advertisements

Enable Custom script in site

next step to enable cutom script in site using powershell 

Connect-SPOService -Url <sharepoint admin center url>
Set-SPOSite -Identity <site url> -DenyAddAndCustomizePages 0
Advertisements

watch the video below to see all steps for your reference

Advertisements