How to limit or block the external sharing in SharePoint online for SPO sites level and global SPO settings for each individual users level?

Vinod Survase 4,756 Reputation points
2024-01-10T07:39:35.4733333+00:00

How to limit or block the external sharing in SharePoint online for SPO sites level and global SPO settings for each individual users level?

Also wanted to do all the security best practices for SharePoint online tenant.

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,771 questions
SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
11,233 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Yanli Jiang - MSFT 29,126 Reputation points Microsoft Vendor
    2024-01-11T08:37:21.1166667+00:00

    Hi @Vinod Survase ,

    To limit or block external sharing in SharePoint Online for SPO sites level and global SPO settings for each individual user level, you can adjust the sharing settings in the SharePoint Admin Center. To access the Sharing settings (tenant level), navigate to the SharePoint Admin Center, under Policies, select Sharing. From there, you can specify the level of sharing you want to allow. Based on your needs, if you still want to share externally, it is recommended that you select "New and existing guests" so that the shared guests need to be verified before they can see the file. Moreover, in the More external sharing settings section below, you can impose stricter restrictions, such as restricting domain and restricting sharing persons. You can complete tenant-level sharing settings here.

    User's image

    To access the Sharing settings (site level), still in the SharePoint Admin Center, under Sites, select Active sites. Then select the site you want to set, and then click sharing above to enter the Sharing settings interface. It is recommended to keep the same settings as the tenant level.

    And, to limit SharePoint site sharing to site owners only, you can enter the site, click the gear in the upper right corner, select Site permissions, and enter the following interface:

    User's image

    Click Change how members can share, then enter the following interface:

    User's image

    select "Site owners and members, and people with Edit permissions can share files and folders, but only site owners can share the site" under Sharing settings in the Site Permissions section. Additionally, you can prevent users who aren't members of the site from requesting access by turning off access requests.

    To implement all the security best practices for SharePoint Online tenant, you should also consider adjusting the default sharing settings to better protect your business, as well as breaking permission inheritance to share only specific libraries or documents with users. It is also recommended to use SharePoint groups and Active Directory groups to assign permissions to sites, as well as to store confidential information in a site that has external sharing turned off.

    For more information, please refer to:

    Managing SharePoint Online Security: A Team Effort - Tenant settings

    Overview of external sharing in SharePoint and OneDrive in Microsoft 365 - How the external sharing settings work

    Protect against malware and other cyberthreats - 3. Adjust sharing settings for SharePoint and OneDrive files and folders

    Limit sharing in Microsoft 365 - SharePoint site
    Manage access to files and sites

    Share SharePoint files or folders


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.