In order for you to control who gets added to the WSS site as a user and
with what permissions, you have to understand what permissions in PWA Admin
control this. If you look at the 8 out of the box security roles for WSS,
you will see that the bottom 4 are controlled from Project Server PWA
permissions:
- Project Managers (Microsoft Office Project Server) - Users who have
published this project or who have Save Project permission in Microsoft
Office Project Server.
- Readers (Microsoft Office Project Server) - Users who have View Project
Documents, Issues and Risks permission in Microsoft Office Project Server.
- Team members (Microsoft Office Project Server) - Users who have
assignments in this project in Microsoft Office Project Server.
- Web Administrators (Microsoft Office Project Server) - Users who have
Manage Windows SharePoint Team Services permission in Microsoft Office
Project Server.
You CANNOT get rid of Web Administrators if you need administrators to be
able to access the "Manage Windows SharePoint Team Services.
You CAN get rid of non-desired Project Manager showing up on all new sites
if you only give them the Save Project permission on their own projects (My
Projects) and NOT on all projects (My Organization)
Team Members who have ASSIGNMENTS will always show up as users on the
particular WSS site which is probably what you want.
So my guess is you do not want as many "Reader" users as you are seeing
showing up on all WSS sites. That is probably because you Team Member
security group in PWA has the "View Project Documents, Issues and Risks"
permission enabled.
If you remove that, the next time you create a WSS site it will not add
those "Readers" to your site.
