I have a requirement to create a private folder inside of a Library in SharePoint, where the operations team can place sensitive information. In order to test out this requirement, I created a Sandbox SharePoint site, with a Document Center and Library containing the same hierarchy of folder.
Working inside of the Sandbox Site, I was able to lock down permissions to the Private folder to just a handful of users, successfully locking out the Sandbox Owners as well. However, on the Production site, I am unable to lock out the Production Owners.
Permissions at the Sandbox Site Level:
Sandbox owners and the user who created the site have full control. All other groups have varying, more restrictive permissions.
Permissions at the Production Site Level:
Production Site Owners and the user who created the site have full control. All other groups have varying, more restrictive permissions.
Private Folder Sandbox Permissions:
Sandbox owners and the user who created the site have full control, as well as the users who need access. All other users and groups have been removed.
Private Folder Production Permissions
Production owners and the user who created the site have full control, as well as the users who need access. All other users and groups have been removed.
In the Sandbox site, I am able to lock out all users except the site creator. I tested this by having another Sandbox Owner user log in, and verified he could not see the folder and contents. We even gave him permissions to create his own file, then were successful in locking him out from the file.
In the Production site, performing the same tests with the same users failed... he could still see everything in the folder.
I need some direction as to what to look at next. Any help would be greatly appreciated.
Thanks!