Skip to main content
Nintex Community Menu Bar

When attempting to provide everyone in my tenant permissions to very public content, I ran into trouble understanding the various options I have. Traditionally when on premise, We would grant the All Authenticated Users access to home pages to make sure all users can have access. In O365 and SharePoint Online there are new groups available but each has a slight differentiating attribute. Here they are and what defines them.

 

Account

Description

Identifier

Everyone

All authenticated and guest users c:0(.s|true
Everyone Except External Users All users except shared users c:0-.f|rolemanager|spo-grid-all-users/{GUID}
All Authenticated Users All user accounts which can be recognized by SharePoint Online, both for internal and external. (Some tenants didn't show this option in the picker)  
All Users (Windows) User accounts from Federated domains c:0!.s|windows
All Users (Membership) All user accounts from Office 365 Online Services c:0!.s|forms:membership

Thanks Andrew for explaining. What about providing everyone within your domain access to the homepage of an Intranet but excluding those users registered from a non company domain ? (the users registered on invite with for example a gmail account etc or other company account) ? On Prem, that was de domain users group.


You can still create domain groups to be synced up in Azure as well as create your own Azure groups that do not sync to anything in AD on prem. You would use an Azure group if the extra domains were federated. Or use the Everyone Except External if they are shared user accounts.


Reply