Expand my Community achievements bar.

SharePoint integration - managing the need to reauthorize folders after the user who originally linked them gets offboarded

Avatar

Level 4
Level 4
8/2/23 11:35:48 AM

I'd love to hear others' experiences with integrating SharePoint at the folder level, and how to address the necessity to re-authorize those folders once the user who originally linked them are deactivated. We can't find an easy way to report on which folders are needing to be re-authorized and it's frankly slammed the brakes on our integration dreams! How can we proactively address this instead of finding out retroactively that authorization has broken for some folders?

 

The only half-baked solution I've found is to pull a Document report, pull all documents using the SharePoint integration type that are owned by the team member who was offboarded, include the project name and folder name, and then export that report to Excel. From there I remove duplicates so that I have a list of project names where there is at least one Document in a folder using the SharePoint integration, and that document was owned by an offboarded user.

Hopefully this braindump makes sense and would love to know if anyone's found a more viable solution.

Views

757

Replies

7
Sign in to like this content

Total Likes

Translate
Translate
7 Replies

Avatar

Community Advisor
Community Advisor
8/2/23 4:16:42 PM

This is interesting and definitely not ideal!

Docs in WF uploaded via an integration like Sharepoint inherit the access/perms the doc has in Sharepoint. So if a doc is linked, in a folder or not, has doc access to multiple people who are also in the WF project the doc is linked in, even if someone leaves wouldn’t the other users who have SP still be able to access those files in SP or in WF?

If this helped you, please mark correct to help others : )

Views

739

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
8/3/23 11:52:13 AM
In response to Madalyn_Destafney

I'm not sure about the doc itself, but right now we can't even open up the folders! I forgot to mention in my initial post that I believe the thing really messing us up is that we have SSO enabled. So, when the user is deactivated or they leave the company, it breaks their connection that way. 

 

Here's an example of what we see:

Jaye_0-1691088624748.png

 

I've worked through this with Support and we determined there's no option other than to have another user re-authorize the folder by re-linking the folder(s). I guess my ask out of the Community is for any suggestions on being able to catch these broken links proactively! IE, user Jaye C is going to be deactivated, so pull a list of all folders that need to be re-authorized by someone else. I don't think it's possible, but I'm hoping someone has some ideas.

Views

718

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 8
Level 8
8/3/23 12:57:06 PM

Here's the big question: Do these SharePoint spaces have more than one owner? If there is only one owner (and that's the person who offboarded), would more than one owner solve the problem?

Views

717

Replies

4
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
8/9/23 7:04:10 AM
In response to Lyndsy-Denk

Hey @Lyndsy-Denk, I'm not positive I understand the question (SharePoint newbie here). I don't believe our coordinators who set up the integrated folders are owners of the SharePoint space. They just have access to it and use the Graph API connector in Workfront to link in the associated folders from SharePoint. Does that change your perspective? I believe our issue has arisen due to implementing SSO. 

Views

704

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
8/9/23 7:49:02 AM
In response to Lyndsy-Denk

Oops @Lyndsy-Denk, I take that back. It looks like all of our coordinators are owners of the SharePoint, but none of them can simply "re-authorize" the integration on a broken folder in Workfront. They have to completely remove the linked broken folders and then re-link them all over again. 

Views

696

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 8
Level 8
8/9/23 7:51:41 AM
In response to -Jaye

What a bummer. It sounds like the recent SSO conversion broke the links? It might be worth reaching out to support to ask if they have any recommendations to more efficiently reconnect things. At minimum your ticket sends a message that this is something Workfront can coach system admins on when converting to SSO.

Views

694

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
8/9/23 8:06:46 AM
In response to Lyndsy-Denk

Right? Very frustrating. I did have a ticket already (sorry, didn't include this info in original post, only in a follow-up comment above). It looks like we have no easier way of reconnecting things. I was hopeful we could potentially get a report to help us flag where changes need to be made following a coordinator being offboarded, but no such luck so far! Thanks for trying to help - appreciate it!

Views

684

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
@Adobe community: You have reached the limit for number of private messages that you can send for now. Please try again later.

Views

84

Likes

0

Replies

0
users can't request new projects

Views

293

Likes

0

Replies

2
TextMode: way to filter a Report by Last Note Owners Home Group

Views

422

Likes

0

Replies

4
How to convert currentStatusDuration to days in calculated column in textmode?

Views

594

Likes

0

Replies

5
Calculated Field for Original Requester on an Issue to the Project Form

Views

162

Likes

0

Replies

1