As the name suggests, Anonymous access allows anonymous users to view pages in SharePoint. Setting up anonymous access in SharePoint sites is a common task for most us, Often we do it to enable anonymous access for SharePoint 2013 for public facing sites. Lets see the steps needed to configure anonymous access in SharePoint 2013.
Enable anonymous access for SharePoint 2013 web application:
To enable anonymous access to an existing SharePoint 2013 site, we’ve to enable anonymous access at the web application level first. Navigate to:
- Central Administration >> Application Management >> Manage web applications
- On the Web Application Management page, select your target web application. Now, from the ribbon click on the “Authentication providers” button
- Click on the relevant zone from the authentication providers. In my case, it’s “Default”.
- Check the “Enable anonymous access” option on the authentication providers page. Scroll down and press the “Save” button to commit the changes.
- If you want allow read-only access, set the anonymous policy accordingly:
But wait, we are not yet done! still users may get access denied even though we enabled it at web application level!!
Enable anonymous access SharePoint 2013 site
We’ve just allowed anonymous access to the web application, which doesn’t mean all sites under the web application automatically gets anonymous access. Proceed with the next step.
- Log in to your SharePoint site as a site collection administrator. Navigate to Site settings, Under the “Users and permissions” section, click the “site permissions”.
- Click on the Anonymous Access icon. (If you don’t see the Anonymous Access icon – Which means, anonymous access has not been enabled at the web application level!)
- Now, select what part of the Web site anonymous users can access.
Here, your choices are an Entire Website, Lists, And Libraries, or Nothing.
- If you select Entire Website, anonymous users will have read access to all content in this website and sub-sites that inherit permissions.
- If you select Lists and Libraries, anonymous users have no access to the website and can only directly access lists or libraries where inheritance is broken and anonymous permissions have been granted.
- If you select Nothing, anonymous users have no access to any content in this website.
This turns on anonymous access in SharePoint 2013 with read-only access to all lists and libraries. Now, you can click on
SharePoint 2013 anonymous access to lists and libraries
There may be cases, where you want to enable anonymous access only to specific lists and libraries but not the entire site. E.g. You may want to configure anonymous access to SharePoint 2013 survey. Here is now to Grant anonymous access to a specific list/library:
- Go back to Site settings >> Site Permissions page under site settings >> Users and Permissions tab.
- Choose “Lists and Libraries” in site permission.
It doesn’t mean that lists and libraries in the web application are accessible to Anonymous users. You must grant anonymous access to each list and library. Here is how:
- Navigate to any List / Library to which you want to grant Anonymous access.
- Go to Library settings >> Permissions for this document library >> Click on “Stop inheriting Permissions” under the permissions tab. Now, you’ll get the “Anonymous Access” button in the ribbon.
- Click the relevant rights such as View items (These rights are enabled/disabled based on web application’s anonymous policy!)
This allows anonymous access SharePoint 2013 list or library.
To enable anonymous access for SharePoint using PowerShell, refer: How to Enable Anonymous Access in SharePoint using PowerShell
Disable anonymous access SharePoint 2013
Simple! If you want to disable anonymous access at the web application level, or site or list level, Just revert to the steps discussed above. On Sites, Go to the Site permissions page and set anonymous access to “Nothing”!
Last but not least: Enable anonymous access ONLY when it’s really required. It’s recommended to avoid anonymous access in order to maintain SharePoint security (It could open Dos service attacks!)