Plan for zone policies in an EPM/Office SharePoint Server 2007 extranet environment

Project 2007

Updated: February 25, 2010

This Office product will reach end of support on October 10, 2017. To stay supported, you will need to upgrade. For more information, see , Resources to help you upgrade your Office 2007 servers and clients.


Topic Last Modified: 2010-02-24

This article describes how to plan for zone policies in an Enterprise Project Management (EPM)/ Microsoft Office SharePoint Server 2007 extranet environment. For an overview of this chapter about how to plan for EPM extranets, see Plan an EPM/Office SharePoint Server 2007 extranet environment.

You can create a policy for a Web application to enforce permissions at the Web application level. A policy can be defined for the Web application generally or only for a specific zone. A policy enforces permissions on all content within the Web application or the zone. Policy permissions override all other security settings that are configured for sites and content. You can configure policy based on users, or user groups, but not SharePoint groups.

The model provides examples of several policies to achieve the following:

  • Allow administrators access to all content.

  • Deny write access to published content.

  • Ensure authors and testers have appropriate access to published content.