One user's profile is not created when trying to login
We have one user who receives an error logging into SharePoint. She can log into other systems using Azure SSO. She was receiving a permission error but she is a member of a group that had access. Initially she had a duplicate profile in SharePoint. Microsoft support had us delete the profiles and now a new profile is not created. The user continues to get a permission error and no new profile is created. We opened a ticket with Microsoft back in September. Below are the steps support had us go through. Since when is this issue occurring with the user and was it working fine in the past. Please reproduce the issue step by step from the beginning and capture your steps using the screen record feature in PowerPoint and share the file with us. (Ref: Record your screen in PowerPoint - Microsoft Support) Please test the behavior in different browsers and also in private mode and let us know the outcome. If user is getting any error message, please share a full-page screenshot of that. Please share the affected user's UPN/Email. We sent the information to support. We were then asked to perform the steps below. I ran an internal diagnostic test for the affected user account and got the following outcome: "We found a duplicate user account". Request you to please perform the below steps and then check if the issue is resolved. Go to the Microsoft 365 admin center. Log in as a user with either the Global admin or SharePoint admin role assigned. Copy and paste the following URL https://aka.ms/PillarDuplicateUser into the address bar of the logged in browser window. Follow the prompts to run the diagnostic. Once completed, ask the affected user to check the behavior in a private/incognito browser window. This did not fix the issue. The user then received an error that the account could not be found in the SharePoint directory. These were the next steps requested by support. We need HAR logs to investigate the issue further. Please follow the below to collect the logs: Open the DevTools by selecting F12. Select Ctrl + Shift + I (Windows/Linux) or Command + Option + I (macOS). Select Settings and more and then More Tools > Developer Tools. Select the Network Tab. Refresh the page (if needed) and reproduce the problem. Select the Export HAR... in the toolbar to export the trace as a "HAR" file. Browse to the URL where you are seeing the issue. Navigate to Developer tools (use F12 as a shortcut) and select the “Network” tab. Refresh the page to start capturing the traffic between the browser to the server or click on a link with which you are seeing the issue. Click on “Export as HAR” followed by Save As… to save the HAR file. We did the requested steps. Then support wanted me to run a Get-SPOUser on that user. It failed. I could run the Get-SPOUser on other people, just not the user having the issue. The support person told me it was failing because I was not a SharePoint admin even though I could run it against other users. In early December we had 2 calls with support where they asked us to do very simply troubleshooting like try another browser, use incognito mode, etc. We still do not have a resolution.
Hide the +Add Column from SharePoint Library view
Does anyone know if there's a way to completely hide the +Add Column button from a Library view? My users have Contribute access (cannot go any lower as they need to work with the library, adding and editing) and I can see if takes away their ability to create new columns - which is great. However, to avoid confusion (and them changing the view and then losing it when navigating away) I really want to just take it away altogether. Is there a way to do this? With JSON on view formatting perhaps?
Permissions / Folder Restriction
Hi, Hope someone can guide me here. We have a team site, that has 29 members. In that site library, I would like to restrict a owner/member seeing a 1 folder, but still can see all other folders. I have read about folder restrictions, but in that, I can only choose "members" not individual members. Can someone point me in the right direction? This may be a question more about the Owners Group and how do I pull that apart so I select individual "owners/members"? Do I delete the members from Groups, but add them as "people" for everyone that can access this folder?
Only allow the creator of the item and the user direct manager to view the submitted item
I am facing this challenge , where we want to create a custom list, with the following logic;- 1) User submit a request asking for example for for salary increase. mentioning the amount. 2) The request need to be approved by the user direct manager 3) then the manager of the user's direct manager, need to do a second approval. Now we need to force those permissions:- 1) once the form is submitted others users should not view this item, even for 1 minute, 2) so the item once submitted should only be viewed by the creator, without the ability to edit it 3) only the direct manager and later the manager of the direct manager can view it. Here what i tried and what i faced:- 1) i created a custom list, define all the columns 2) create a power apps form to submit the form. 3) create a custom permission level, to allow the user to create but without edit/delete, which is mainly a copy of the contribute, without those check-boxes:- 4) then i define a power automate flow so once the item is submitted ,to send approval email to the direct manager + grant the approval manager & submitter read on the item. where i am storing the approval status inside another list that can only be edited by the service account. this worked partially, as the item will still be visible to all users until the workflow runs. also incase the workflow fails to run the item will stay visible forever. so i tried this second approach, benefiting from Item-Level Permissions:- this will always force the item to be visible to the creator only, without the need to have a workflow. but we faced an issue , when we want the submitter's direct manager to view this item, to be able to approve or reject it. where even if we grant the direct manager full control on the item, the item will not be visible to the direct manager, since we define the above Item-Level permission. the only way to to fix this is to grant the direct manager's full control on the list, but in this case the direct manager will be able to view all items, not just the ones submitted by his team ! can we do this for example:- 1) create a custom permission level to only allow the user to submit without the ability to edit, delete, view? 2) then using a workflow to force the item permissions as we go. 3) in this case the item from the beginning will not be visible to anyone, then the workflow will do the permission modification. so if the workflow fails atleast the item will not be exposed to any one, so not sure what u need to do, and if SharePoint support a way to create a custom permission level that allow the user to create without the ability to edit,delete and even view? any advice?
Uploading, playing and Sharing MP3's
Hi, Was wondering if any can assist. A team want to upload MP3's from OneDrive accounts. They seem to be having issues with syncing The files are received via Email in MP4 format and saved in a SP folder It is converted to an MP3 and saved in the same folder. Another case handler may then try to access the MP3 for typing (importing it in to Speech Exec) and it does not appear in the SharePoint folder. This person then has to access the original email, save the MP4 and convert to MP3 themselves in order to access it. This has to be done by each employee who needs to type. This can be up to 4 different people. The users who need to play these have the permission of Edit and Is there a simpler way to make these accessible?? Regards Chris
Limit-Access to all external users, how we can do this
Inside SharePoint Admin center >> Access Control, we can define limit-access to unmnaged devices:- but for a tenant i am working on, we want to do it in another way, instead of relying on the device if it is managed or unmanaged, to control this based if the user is internal or external. so can we do this? now inside this documentation, IT Admins - SharePoint and OneDrive unmanaged device access controls - SharePoint in Microsoft 365 | Microsoft Learn , they mentioned that we can restrict this based on user group:- so this means if we automatically add any external users to a group , then we can define this group to only have limited-access will this work? so internal users even if they access from unmnaged devices will have full access since they are not inside the group?? i am not an administrator but rather a SharePoint developer. so if any one can help me achieving this inside AD if it is not possible inside SharePoint? first how we can automatically add any external users to a group , then how we can define this group to have limited-access?? ThanksSet Unique value based on the (CreatedDate & CreatedBy)
We want to create a SharePoint online custom list with these business logic:- Users enter an entry each day to specify their location (which site they are working in).. No one can see other entries, except for an admin group of users. No one can submit twice per day, in other words, the list should enforce a uniqueness based on the CreatedDate + CreatedBy. So I am planning to follow this approach:- First step, is to create a custom list, then check these checkboxes:- Second Step:- then create a SharePoint group , named "View/Edit all items", and create a custom permission level which is a copy of the built-in contribute, with this checkbox checked:- so based on my knowledge, this should cover part of the requirements, for allowing users to only see and edit their own items + allow a group of users who are assigned the new custom permission level to view/edit all items. But what abut preventing the same user from adding 2 entries inside the custom list twice on the same day? i know that using remote event receivers which runs on pre-add and pre-update events are no longer valid and no longer a future proof approach.. so the only option i can think of, is to have a power automate flow that runs when an item is created >> where the flow will get any item which was created on the same day and by the same user (of course excluding the current item), if so to send an email to the user that he added duplicate items + to force deleting the item.. but this will not be a 100% enforce uniqueness but rather a way to inform the user about a duplicate.. so is there a better approach to enforce uniqueness in our case, using calculated columns in a way or another? Also using power automate, i am not sure if this will cover a scenario such as where the flow detect a duplicate >> delete the item >> but then the user restore the item from the recycle bin? Thanks
