Revoke Permissions
The Revoke Permissions action allows you to remove specific permissions from a user or group without fully removing all access. Unlike the Delete Permissions action, which removes all permissions for a user, Revoke Permissions gives you the flexibility to remove only certain permission levels, leaving others intact. Similar to Grant Permissions, when revoking permissions, you can remove specific roles or revoke access through group memberships. To revoke permissions from a user via roles, simply select the roles you want to remove from the Roles field. To revoke permissions through groups, select the appropriate group in the Groups field.
To initiate this action, go to a Discover Site Permissions report. Select the account from which you want to revoke permissions. Then, navigate to Actions → Account Management → Revoke Permissions to access this functionality and adjust the settings as needed.
Important Note: While Revoke Permissions can be triggered from within a Discover Permissions report, it can also be used independently, provided you define the scope beforehand. If no scope is specified, DeliverPoint will apply the action to the current site/location of the operation.
Tip: To remove specific permissions across multiple levels, check options like Process Subsites, Process Lists, and Process List/Folder Items. If needed, enable Support Rollback to reverse the action if necessary. This allows you to maintain the integrity of user access while removing specific permission levels.
Where and When to Use Revoke Permissions
The Revoke Permissions action is most useful in the following scenarios:
Reducing Permissions for a User: When a user no longer needs certain access (for example, Full Control or Design permissions), Revoke Permissions allows you to remove just those levels while maintaining other necessary permissions, such as Edit.
Removing Excessive Permissions: If a user has been granted broader permissions than necessary, Revoke Permissions enables you to tighten their access without affecting their overall ability to work.
Managing Role Changes: If a user’s role within the organization changes and their access needs to be adjusted (for example, from a site administrator to a content editor), you can use Revoke Permissions to remove higher-level permissions while retaining lower-level ones.