Configuring Anonymous Access in SharePoint 2010
Written By: Hesham Saad -- 1/11/2011 --
(808) comments --
Categories: Configurations, SharePoint 2010, SharePoint Foundation 2010
Many public SharePoint internet portals require having access for anonymous
users. This article explores the configurations for anonymous access in
When you enable anonymous access to a Web site, you allow anonymous
users to browse the entire Web site, including any list, library, folder
within a list or library, list item, or document that inherits its
permissions from the Web site. If anonymous access has been enabled by the
server administrator, members of the Site name Owners SharePoint
group can do the following:
- Grant anonymous access on a site.
- Grant anonymous access only on lists and libraries.
- Block anonymous access on a site.
Note: enabling anonymous access makes a Web server inherently less secure,
because anonymous users and authenticated users that have not been granted
access to your site can potentially change settings or content on your site.
A malicious user could also launch a denial of service attack against your server, and their actions
cannot be traced to an authenticated user account. An alternative to granting anonymous access is to
add the Authenticated Users Windows security group to the
(Site name) Visitors SharePoint group. This grants all authenticated
members of your Windows domain read access to your Web site. Unlike actions
of anonymous users, actions of authenticated users can be traced back to
users. For more information about adding users to SharePoint groups, see
Manage SharePoint groups.
As is the case with other permissions settings, when you grant anonymous
access on a site, you also grant anonymous access on sub sites that inherit
permissions from the site.
Configuring & enabling anonymous access on SharePoint 2010
portals is easy and it is somewhat similar to SharePoint 2007
anonymous access configurations, but there are some changes in the UI (User
Interface). So let's follow the below steps :
1. Start > Microsoft SharePoint 2010 Products > "SharePoint 2010
Central Administration" :
2. Central Administration > Application Management > "Manage Web
3. Select "Highlight" your web application > click "Authentication Providers" :
4. Click on "Default" link :
5. Check "Enable Anonymous Access" under Anonymous Access Section >
click "OK" :
6. Click on "Anonymous Policy" to check the Anonymous Access Restrictions :
7. Go to your SharePoint Site > Site Actions > Site Settings :
8. Click "Site Permissions" link under Users and Permissions Section :
9. Click "Anonymous Access" :
10. Select "Entire Web Site" at Anonymous Access Section :
11. Check now that Anonymous users can access your site :
- Read these additional articles
- Return to MSSharepointTips
to read about other topics and ideas.
- Check out MSSQLTips.com for great
information about Microsoft SQL Server.