.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
david stephan
Gaurav Pal
Post New Web Links

SP installed in DomainA, how to grant permission for users in DomainB ?

Posted By:      Posted Date: October 21, 2010    Points: 0   Category :SharePoint


SP Foundation 2010 installed in Win2008R2 as Single Server Farm. It is located in DomainA. Users logged on into DomainB are denied access. I would like to add these DomainB users into the page permission. But the GUI seems not to be able to resolve anything outside of its DomainA. Outside of Sharepoint, the DomainA trust DomainB. I can log into a DomainA computer using my DomainB account.

Question : is it possible for Sharepoint to accept users from multiple domains? If yes, can you please hint me the solution or documentation?

Thanks in advance


View Complete Post

More Related Resource Links

limitate user permission to edit other users documents

i have a list where everybody uploads documents, but i want that only the user that uploaded the document can edit it or delete it, is there a simple way without workflows or code? thanks!

Permission Errors for Users on Home Page only of SQL Server Reporting Services Report Manager

I have spent days now investigating this problem, so any help very much appreciated! I have a remote web server 2003 running SQL Server R2 Express Edition with Reporting Services installed. I use Report Builder 3.0 locally to build report. If I login via Internet to Report Manager Web Page as an administrator I can perform all the expected and required actions, creating new folders and assigning permissions for users etc. I have added a new user "ReportUser" as a Browser of a child folder. If ReportUser longs on to home page, he receives the all too familiar error: User 'XXXXXXXX\reportuser' does not have required permissions. Verify that sufficient permissions have been granted and Windows User Account Control (UAC) restrictions have been addressed. However, if the user starts at the child folder of home page, and then logs in, he sees the expected page, and can run the report!  This is not very satisfactory. How can I allow user to see home page, without an error message, but not be allowed to click on any folders to which he is not entitled? I am now aware that SQL Server R2 Express Edition has many limitations compared with full Editions (fixed roles, cannot manage Report Service from Management Studio etc) , and many of the "solutions" offered on the web just do not apply.   John Walton

Webpart and AddPSSnapin - grant permission

Hello, I'm developing webpart, that will give some users option to create mailboxes in Exchange 2007. I have two machines in use (third - DC): 1) Windows 2003 R2 x86, MOSS 2007 SP1, Windows Powershell 1.0, Exchange 2007 Management Tools 1) Windows 2003 R2 x86, Exchange 2007, Windows Powershell 1.0 On my MOSS machine I maded two applications - webpart and console application. MOSS (app pool) is working on domain admin account. Console application I'm running on the same account. Both are using the same code with modified parameters: public static void CreateUserMailbox(string domain, string ou, string database, string alias, string name, string displayName, SecureString password) { string upn = string.Format("{0}@{1}", alias, domain); ICollection<PSObject> results; // Create a runspace. We can't use the RunspaceInvoke class this time // because we need to get at the underlying runspace to explicitly // add the commands. RunspaceConfiguration rc = RunspaceConfiguration.Create(); PSSnapInException snapEx = null; PSSnapInInfo info = rc.AddPSSnapIn("Microsoft.Exchange.Management.PowerShell.Admin", out snapEx); Runspace myRunSpace = RunspaceFactory.CreateRunspace(rc); myRunSpace.Open(); // Create a pipeline... Pipeline pipeLine = myRunSpace.CreatePipeline(); using (pipeLine) { /

error: "The application-specific permission settings do not grant Local Activation "

Log Name:      System Source:        Microsoft-Windows-DistributedCOM Date:          9/14/2010 11:55:35 AM Event ID:      10016 Task Category: None Level:         Error Keywords:      Classic User:         XXXXX\spadm Computer:      XXXX.XXXXX.com Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {61738644-F196-11D0-9953-00C04FD919C1}  and APPID {61738644-F196-11D0-9953-00C04FD919C1}  to the user XXXXX\spadm SID (S-1-5-21-6236335-3733969977-3477648964-5701) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool. Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">   <System>     <Provider Name="Microsoft-Windows-DistributedCOM" Guid="{1B562E86-B7AA-4131-BADC-B6F3A001407E}" EventSourceName="DCOM" />     <EventID Qualifiers="49152">10016</EventID>     <Version>0</Version>  &nb

Limited Access Option in Adding Users Permission Disappeared

Hello, I am using SharePoint 2007 and used to assign users to document libraries or to the whole Site - I add the user and select the Permission from the list (Full Access or Limited Access which are the build-in permissions. But now i only have the Full Access option and I cannot add a user with Limited Access- the Limited Access option simply does not appear in the list when assign permission to user.Ali Hamdar (alihamdar.com)

GRANT permission on schema to user in SQL 2000

Hi,I am using following statement to grant specified permissions on schema to a user in SQL Server 2005. GRANT SELECT, INSERT, UPDATE, DELETE, EXECUTE on ::[Schema Name] to [My DB User]I need to perform the same in SQL 2000. However, this does not work in SQL Server 2000. Is there any equivalent syntax which can be used in both (SQL 2000 & 2005).Thanks in advance...

Users can delete the parent folder even when they don't have delete permission on subfolders

I'm trying to use a document library to manage project documents. I created a folder for each project, and under the project folder, there are two subfolders with special permissions for confidential documents. I give normal users the Contribute permission of the project folders so they can add/remove new subfolders under the projecct folder. However, with this configuration the normal users can delete the whole project folder in the web interface, even they don't have delete permission for the two subfolders. Is there a way to prevent this? Regards, James Liang

"Failed to grant minimum permission requests" when building release mode dll

Hi there,I have started to receive a  release mode build failure for which I  would appreciate some advice. The build works fine in debug but sgen fails in release when a dll that contains a web-reference is linking to a c++\cli dll on the network. The debug build links to the same (release mode) c++\cli dll without this problem.I believe this has started since adding the web-reference. Any idea what the work around is?Many thanks.Duncan4>C:\Program Files\Microsoft Visual Studio 8\SDK\v2.0\bin\sgen.exe /assembly:"C:\Projects\Forecaster\Source 2.0\GH.Forecaster.IO\obj\Release\GH.Forecaster.IO.dll" /proxytypes /reference:S:\SoftwareUtils\Release\GH.Common\Release\Latest\GH.Common.Unmanaged.dll /reference:S:\SoftwareUtils\Release\GH.Common\Release\Latest\GH.Common.Util.dll /reference:"C:\Projects\Forecaster\Source 2.0\Release\GH.Forecaster.Data.dll" /reference:"C:\Projects\Forecaster\Source 2.0\Release\GH.Forecaster.Util.dll" /reference:S:\External\log4net-1.2.10\bin\net\2.0\release\log4net.dll /reference:"C:\Program Files\NUnit-Net-2.0 2.2.8\bin\nunit.framework.dll" /reference:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.dll /reference:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.dll /reference:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll /reference:C:\WINDOWS\Microsoft.NET\Framework\v2

MOSS 2007 can only grant permissions to users in the local domain...


Greetings all,

Where ever I go and attempt to add a user to a group or to grant permissions to a user I am never able to select users from other domains.  The only users I can select are users in the domain where MOSS 2007 was installed.  Is there a setting in MOSS that I need to change to be able to add users from other domains to groups in SharePoint?

Thanks for any and all insights.


Permission issue - users not seeing correct master page and css


I have started playing with permission and created a whole that I can not climb out of! Any help will be great!!! Here are my issues:

1. (this one started it all) I added an approval workflow to a library with the thought that a doc would not show to the public until it is approved. Ain't happening...what do I have to do for this process to work?

2. In trying to solve the above I restricted nt auth to the visitors group and then made that group read only. Now members of the visitor group only sees the old master page and css. The only way to fix it so far is to add nt auth to the owners group. that won't fly.


Give permission to all users of a customized sharepoint portal, where all the user controls of the w

Hello there

I have created a sharepoint portal and customized it. I have created my own master page and there are many webparts implemented. This has been hosted in a MOSS server. When a normal user is trying to access the portal first thing in the morning, he is getting a "You are not authorized to view this page" error. But when a site admin access the site, there is no issue and he is able to access the site. The site admin does nothing in the site and once he has logged in to the site,  the user is able to access the site without any trouble.

I have found what was causing the issue. But dont know whats the fix for it.

The issue is...We were trying to place all the usercontrols created as part of our application in a seperate folder under ControlTemplate folder. This is what was not allowing the users who are not site admins. But it was ok, when the admin first accesses the same.

WHat is the fix for this ... to make the new folder accessable to all users ??

Kindly help...

Allow a non SA user to grant perms to other users


I have a challenge whereby a non sa user needs to be able to GRANT and REVOKE a fixed set of perms to SQL Login accounts that exist on a server as follows

Declare @usrlogin VARCHAR(255)

-- Grant the perms

USE master
EXEC master..sp_addsrvrolemember @loginame = @usrlogin, @rolename = N'bulkadmin'

Use TestDatabase

EXEC sp_addrolemember @rolename = 'db_ddladmin', @membername = @usrlogin
EXEC sp_addrolemember @rolename = 'db_datawriter', @membername = @usrlogin

GRANT DELETE TO [@usrlogin]
GRANT EXECUTE TO [@usrlogin]
GRANT INSERT TO [@usrlogin]

-- Revoke the perms

Execute permission denied on with the grant and with grant permission enabled. HELP PLEASE. Grantin


Here is the code that Im running.  The user Tester has the both Grant and With Grant checked.

IF EXISTS (SELECT * FROM sysobjects WHERE type = 'P' AND name = 'AAAtestOW')


DROP Procedure dbo.AAAtestOW



CREATE Procedure dbo.AAAtestOW





If i add the grant execute command for me I get
"Cannot grant, deny, or revoke permissions to sa, dbo, entity owner, information_schema, sys, or yourself."

If I try

Can't find a link about Grant permission programmatically


Hi guys,


two weeks ago I read a MSDN(?) article how to grant/revoke permission for some users/roles/groups on a specific page or holder temporarily or with condion. The article shows how to do it Form_Load() in c#. But I can't find the link with googling or in MSDN library.

Please let me know if you know the url?

What I want to do is:

There is a folder called employeePDFs.

The folder will have 1000s employees' sub folder ({lastname}{firstname}{employeeID}). Each folder will have very personal indivual PDF files which are manually uploaded.

If an employee logs on, then the logon employee can view a page which has a list of PDF files in his own folder only.

Those PDF files can be assessed only by the user.

or better solution?




Grant permission to BCS External entities via PowerShell



We're using an assembly connector with BCS. When the solution is deployed, we have to manually grant permissions to the entities by going to Central Administration -> Manage Service Applications -> Business Connectivity Services -> then select our entities and grant permissions.

I'm looking for ways to automate this - can someone please give me some pointers?


Grant Unique Permission to columns


In SharePoint; How can I grant edit permission to a column to a list of people and to the same column grant veiw only to another list of people?

issue in granting permission to other users



I created one report using report designer in SSRS 2008, but I am encountering one issue when granting access to other user.

I add New Role Assignment in Report Manager, and checked 'Browser' to make the user access the report. the granted user can open the page: http://mycomputername/reports, and also he can see the data source and reports folder,after open the reports folder, when he tried to open the report, error information shows as following:

An error occurred during client rendering.

An error has occurred during report processing.Cannot create a connection to data source 'DataSource1'.

For more information about this error navigate to the report server on the local server machine, or enable remote errors.               

Can you help me? thanks!


Connie Zhu
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend