All,
I've several sites that I need to exclude an OU from being about to access/see. By default
NT
AUTHORITY\authenticated users get added to a new site This group contains at least one OU that I don't want accessing a certain site.
I can easily audience target lists, web parts etc. But what about a whole site?
I've seen that you can block entire OUs from a complete web applications using a policy.
http://social.technet.microsoft.com/forums/en-US/sharepointadminprevious/thread/cc6949e4-3a87-48d0-9b90-b8c998576596/
However that seems an all or nothing approach. If you 've sites within that web application you can't use that approach.
i.e. top level - Cars
then sub sites Cars/Make A Cars/MakeB
I don't want a certain OU to access the MakeB site.
Or do I have to exclude
NT AUTHORITY\authenticated users manually from a site, and then add only those OUs that I want in the first place?
I can't believe it's so convoluted to exclude groups from a site.
Thanks
W
