Permissions
The information below provides an overview of how permissions in Scholantis and SharePoint work in relation to Active Directory. Permissions are a complex concept and different systems may be configured with their unique customisations.
Scholantis Permissions
Access to the Scholantis tools (Class sites including Assignments, Group sites, Portfolios, Public sites, Blogs) are controlled by role, and there are typically three roles defined in your staff portal; staff, student and teacher, each of which are defined by a user being a member of a specific AD group.
The following table shows which Scholantis tools each role can use and the AD group used to define the users in that role:
|
Class |
Group |
Portfolio |
Public |
Blog |
AD group* |
Student |
|
|
X |
|
X |
domain\Students |
Teacher |
X |
X |
(on behalf of students) |
X |
|
domain\Teachers |
Staff |
|
X |
X |
|
|
domain\Office Users |
* Please note that these AD groups don’t contain all of the individual users, but aggregate or “wrap” the AD groups of each type that exist for each school or location.
SharePoint Permissions
SharePoint permissions control what a user can do within a given site, and for the main staff portal site, staff rooms and department sites there are three permission levels in use: Publisher, Contribute and Read.
- Publisher gives control over the features and appearance of the site, adding/editing/deleting of content and setting permissions for other users
- Contribute allows for adding/editing/deleting of content
- Read give the ability to browse the site’s content.
Users are assigned permissions by adding an AD group to a SharePoint group – this concept is very important to keep permissions under control and maintainable. The AD group defines the users and the SharePoint group defines the permission level.
Permissions are currently configured for each site using the following combinations of SharePoint group and AD group (in brackets):
|
Publisher |
Contribute |
Read |
Main Staff Portal |
Publishers (domain\District Publishers) |
None |
Staff (domain\Office Users, domain\Teachers) |
Department sites |
Publishers (domain\*dept* Publishers, domain\District Publishers) |
Staff (domain\*dept* Office Users) |
Visitors (domain\Office Users, domain\Teachers) |
Staff Rooms |
Publishers (domain\*school* Office Users) |
Teachers (domain\*school* Teachers) |
None |