What you can do with an object in SharePoint is determined by the rights you have on that object.
There are 33 different permission possible. A permission level is a collection of permission and permission levels are used to set the rights. Due to the chosen security setup, an account can have multiple permission levels assigned on an object. The rights are then the sum of all permissions.
There are 5 default permission levels:
- Full Control
- Design
- Edit
- Contribute
- Read
In the business solutions I create, only the first, the fourth and the fifth one are used combined with custom permission levels.
It is possible to create your own permission level called a custom permission level. The custom permission levels I use are:
- Add
- This custom permission level is based on the default permission level “Read” with the following additional permission:
- Add items
- This custom permission level is based on the default permission level “Read” with the following additional permission:
- Update
- This custom permission level is based on the default permission level “Read” with the following additional permission:
- Edit items
- This custom permission level is based on the default permission level “Read” with the following additional permission:
- Contribute minus Delete
- This custom permission level is based on the default permission level “Read” with the following additional permission:
- Add items
- Edit items
- This custom permission level is based on the default permission level “Read” with the following additional permission:
In the content page Security, I explain how I use the default/custom permission levels to assign permissions.
You need to be a site owner to add a custom permission level.
As a best practice, do not change default permission levels.
Video
This video demonstrates the location of the default permission levels in SharePoint and how to create a custom permission level:
- https://www.youtube.com/watch?v=ReQMYP3ngtc (🎥 2023-10-15)