As a SharePoint admin, the Web-Only Limited Access permission level is one you may have noticed while going through user permissions in your environment.
It is a form of a certain permission level called “Limited Access”, which allows a user or group to access a specific item in a site or a library without giving the user or group direct access to everything else in the site or library. For the Web-Only Limited Access permission level itself, it allows the user or group access to the web object only.
The Web-Only Limited Access permission level is unique because you cannot directly assign it to a user or group. Suppose a user is granted permissions to a list within a site but has not expressly been given permissions to the site itself. In that case, they will automatically receive Limited Access to the site from SharePoint. This means that the user will only use the site to access the list they have permissions on.
Assigning this permission level is default SharePoint behaviour and cannot be removed unless the user’s permissions are removed from the list in question.
With DeliverPoint, you can generate a report showing all users’ permissions within your sites or libraries. You can also use DeliverPoint to copy, grant, revoke, delete and transfer permissions for your users.