Sitecore recommended practices for security (users and roles): Break inheritance rather than explicitly deny access rights. Apply security to roles rather than users. Limit access to the parts of the content tree that are relevant to the user that is logged into the system. Limit access to the ribbon items by disabling features that are... Continue Reading →