Sharepoint permissions for the User Identity

SharePoint 2007 (WSS 3 and MOSS 2007) To extract the content of a SharePoint 2007 server, the user account must have Full Read permission on each SharePoint Web application to index. This permission is required because the SharePoint connector uses SharePoint web services to access SharePoint content. Note that the SharePoint built-in indexing service also has this requirement.

For more information, refer to the Windows SharePoint Services Search accounts sections on the following web pages:

• http://technet.microsoft.com/en-us/library/cc288210.aspx (WSS 3)

• http://technet.microsoft.com/en-us/library/cc179348.aspx (MOSS 2007)

Furthermore, to index content on SharePoint user profiles and from personal sites ( MOSS 2007), the user account must also have the Read permission on the source starting address’ site collection and have the Manage User Profiles Shared Service right.

Web Applications

Perform the following procedure in order to manually add the Full Read permission to the user account for all web applications:

• Access SharePoint 3.0 Central Administration.
• Click Application Management.
• Click Policy for Web application.

For each web application to crawl:

• Click Add Users
• Select (All Zones) and click Next >
• Add the user account, select the Full Read permission and click Finish.

To manually add the Manage User Profiles Shared Service right (MOSS 2007 only), perform the following procedure:

• Access SharePoint 3.0 Central Administration.
• Click Shared Services Administration.
• Click the shared service link hosting the user profiles and personal sites data.
• Click Personalization service permissions.
• Click Add Users/Groups.
• Add the user account, select the Manage user profiles permission and click Save .