Before you set security on any item in your site, you should have a strong understanding of the Extranet security model. For more information, see Secure your site.
After you understand the security model, you're ready to begin setting security on items throughout your site. You can set permissions on:
Pages
To protect information, you can restrict access to any page or set of pages on your site. People with access will see a link to the page. People without access will not see the link. When a page is created, its initial security settings (both Read and Edit permissions) come from the page where it was created. However, you can define custom security settings for a page after you create it.
Components
On a page, you can restrict access even further at the component level. Even though people can access a page, they will not see that component or any of its resources. By default, components adopt Read permissions from the page where they're added. Other permissions available on a component, such as Contribute and Content Manager permissions must be set individually on each component.
Resources
Within a component, you can also control Read permissions on an individual resource, such as a document or Web page link. By default, all resources are assigned the same Read permissions as the component where they're displayed. Although it is possible to set custom Read permissions on an individual resource, the site will perform better if you use this feature sparingly. As an alternative, you should create pages or components with the appropriate Read permissions and store resources within them.
Tip
To help you manage security, you can quickly view a list of all users who have access to a page using My Page Inspector. For more information, see View a list of users with access to your page.