I was asked to help an IT department work with their user groups to map
their current Windows file system policies to MOSS policies, where
neither group really understands the SharePoint security model in detail
yet. Most of their SharePoint support people have only been admins, so
they only see the model from the admin perspective and don't understand
what can be delegated and what can't, what are the restrictions on
members vs. admins, and so on.
So I thought a concise picture of the MOSS side of the equation might
help them with that mapping process, or at least show them what the
options are. Actually that's not so bad, the challenging part is that
it turns out now that they need to have the initial mapping by April 1
(!), so formal training on the security model between now and then is
rather impractical. What I actually need to do is help them somehow
reassure their users that they won't be thrown into a completely
unworkable security model completely alien from the Windows security
model they are used to. That seems like a bit of a challenge.
You'd think this sort of thing would have been worked out earlier in the
planning process?