Enterprise MultiUser Setup

Vote:
 

We are attempting to set up an Enterprise EPiServer setup with multiple sites and multiple access levels using SQL Authentication.

 

The following is the structure of EPiServer Enterprise:

-------------------------------------

- Content Store

- Site 1

-- Pages within Site 1

- Site 2 

-- Pages within Site 2

- Site 3

-- Pages within Site 3

--------------------------------------

 

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

There should be the following users and permissions set up:

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

 

Global Administrator - Full access to admin functionality and all content

Global Content Administrator - Full access to content across all sites

 

Site 1 Content Admin - Can read and copy content from the Content Store and view and edit Pages within site 1, cannot view or edit Site 2 or 3

Site 2 Content Admin - Can read and copy content from the Content Store and view and edit Pages within site 2, cannot view or edit Site 1 or 3

Site 3 Content Admin - Can read and copy content from the Content Store and view and edit Pages within site 3, cannot view or edit Site 1 or 2

 

Having a few issues though:

It appears that regardless of permissions, if someone is granted access to the admin section of the site, they are able to view other sites.

 

Any ideas on how to configure users / permissions to achieve the desired outcome, or if it is even possible?

 

Any help would be greatly appreciated.

#52214
Jul 12, 2011 16:24
Vote:
 

You can limit the administrator group by removing it from the edit mode location path in web.config. That way they can't access edit mode at all. So if anybody needs to be administrator and needs to have access to the edit mode, they need to be in two groups: WebAdmins and WebEditors.

Then you can create three more groups Site1Editor, Site2Editor and Site3Editor that only has read/write access to each corresponding site. However, AFAIK people will always be able to see the site structure of the other sites. No matter what permissions they have or don't have.

Maybe this is something you want to look more closely into: http://marekmusielak.blogspot.com/2009/04/episerver-filter-page-tree-view.html 

#52223
Jul 12, 2011 19:06
This thread is locked and should be used for reference only. Please use the Episerver CMS 7 and earlier versions forum to open new discussions.
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.