Plan for zone policies in an EPM/Office SharePoint Server 2007 extranet environment
Updated: February 25, 2010
This article describes how to plan for zone policies in an Enterprise Project Management (EPM)/ Microsoft Office SharePoint Server 2007 extranet environment. For an overview of this chapter about how to plan for EPM extranets, see Plan an EPM/Office SharePoint Server 2007 extranet environment.
You can create a policy for a Web application to enforce permissions at the Web application level. A policy can be defined for the Web application generally or only for a specific zone. A policy enforces permissions on all content within the Web application or the zone. Policy permissions override all other security settings that are configured for sites and content. You can configure policy based on users, or user groups, but not SharePoint groups.
The model provides examples of several policies to achieve the following:
Allow administrators access to all content.
Deny write access to published content.
Ensure authors and testers have appropriate access to published content.