Migrating from SharePoint to Nextcloud: structure, permissions, versions

What typically causes problems during migration

Moving from SharePoint to Nextcloud usually breaks not the files themselves but the familiar routes people use. For years people opened documents from bookmarks, emails, known libraries and relied on inherited permissions. In the new environment those same actions suddenly lead elsewhere or require extra steps. So before you start, honestly answer: which work scenarios must not be lost?

When documents are moved, the context around them often “falls apart.” Even if the files are present, users feel like “everything is gone” because the following change:

• permissions and access groups (who can read, edit, share)
• versions and change history (what changed, by whom and when)
• links and entry points (emails, chats, bookmarks, embedded URLs)
• structure and metadata (libraries, views, tags, sorting)

A typical case: the contracts team opened templates from old email links and often checked who edited a file yesterday. After migration the link is broken, and version history looks different or is unavailable. Formally documents are there, but work stalls.

Another source of problems is when IT runs the project alone and content owners are involved too late. Better to assign responsibilities from the start: a business data owner, SharePoint and Nextcloud admins, security/compliance and a small pilot group. Decisions then happen timely, not retroactively.

Define success criteria before starting and make them measurable. For example: what percentage of documents must keep versions, which folders should inherit permissions without manual fixes, how to handle old links, and how many common tasks (search, co-edit, approvals) must work without training.

Preparation: what to collect and measure before migration

To avoid surprises, first describe exactly what you will move and how it’s actually used. A mistake here often costs weeks of rework: teams copy “everything,” then discover some data isn’t needed, some cannot be visible to the same people, and some is tied to processes.

Start with an inventory. In SharePoint documents rarely live “in one place”: there are dozens of sites and libraries, plus team workspaces and project stores. Record not only names but owners, purpose and criticality. “Contracts library” and “marketing archive” usually need different rules and transfer speed.

Then estimate volumes and growth: total size, monthly increase and share of “cold” archives. Data rarely accessed can be migrated later, stored separately or cleaned by retention rules. This affects timelines, disk requirements and whether you can meet a downtime window.

Sketch a content-type map in advance. Office files and PDFs usually migrate smoothly; images, CAD, large videos and files with unusual names should be checked separately for path length limits, characters and sync speed.

Before you start, fix a minimum: list of sites/libraries with owners, size and growth, “complex” formats, external access (guests and contractors) and time constraints (reporting, procurement, audits).

External users deserve special attention. Guest access in SharePoint often grows uncontrolled: some were invited by email, some accessed via links, others are outdated. Decide beforehand who to keep, who to disable and what the Nextcloud scenario will be (guest accounts, shared folders, passworded/expiring links).

If an integrator handles migration, ask them for an inventory and measurement template. Teams like GSE.kz often start with a description of stores and usage so the plan is based on facts, not assumptions.

How to design Nextcloud structure without chaos

The main mistake is trying to copy SharePoint “one-to-one” without agreeing on a new storage map. In Nextcloud it’s easier to think in clear spaces: departments, projects and shared folders.

A good starting point is a top-level mapping: each major SharePoint Site or area becomes a root folder (or team space), with a clear internal logic such as “department/project/documents.” Avoid deep nesting: if a user needs five clicks to reach a file, they’ll start saving everything on their desktop.

Keep 2–3 levels where possible. For example: “Finance -> Budgets 2026 -> Reports” rather than a chain of seven nested folders.

To prevent structure sprawl, agree on simple naming rules: uniform date format (for example, 2026-01), short names without “New Folder (2)”, stable project codes (PRJ-024), a clear place for drafts and for “approved.” Also ban trailing spaces and overly long names.

For sprawling SharePoint libraries, be strict: assign a single owner, remove obvious duplicates and define the “source of truth.” If the same file exists in three places, in Nextcloud that usually becomes three independent versions with no clear history.

Separate archives from working documents. It’s often better to move archives to a “Archive (read-only)” folder or even a separate space so search and collaboration aren’t cluttered. Simple rule: items not changed for 12–18 months qualify for archive.

Access rights: how to transfer permission logic

The most frequent complaint after migration is about access. In SharePoint people get used to inheritance top-down, but in reality it’s often broken at a folder or even file level. Describe not an ideal model but how permissions actually work: how many levels, where exceptions are and who maintains them.

SharePoint commonly has three models: site-level access, library-level access and unique permissions on folders/items. In Nextcloud similar logic is usually implemented via groups and shared folders with ACLs; isolated exceptions are handled by separate shares. It’s easier to maintain rules when they’re set on a folder rather than on each file.

Confusion starts with groups and roles. SharePoint roles like Owners/Members/Visitors are actually groups with permission sets. In Nextcloud, agree on standard roles up front and map them to groups (AD/LDAP or local) rather than granting individual access.

A minimal role set is: reader (view and download), editor (edit and upload without sharing rights), folder owner (manages access in their area), external user (access to a specific folder for a limited time).

Check sensitive areas (HR, finance, legal) separately. A simple test: a person in the correct group sees what they need, while someone nearby in the org structure sees nothing, including folder names.

Be strict with unique file permissions. Many exceptions usually indicate chaos that’s hard to maintain. Practical approach: elevate exceptions to a dedicated “Only for X” folder, and for single important files use a separate share with minimal rights and a designated owner.

Document versions and change history: what to keep

SharePoint history is rarely a single entity. There can be major and minor versions, publish comments, authors and dates, approval statuses and rules where changes without check-in aren’t published. Understand which parts of history users need and which are for auditors.

Split requirements into two layers. Working layer: people need to quickly roll back, see who and when edited a file and keep the habit of “version 3 final.” Compliance layer: retention periods, audit logs and immutability requirements for certain documents (contracts, medical records).

Usually it makes sense to define a practical minimum: the current effective version and folder structure; a few key milestones (pre-approval and post-approval); authors and change dates where relevant; comments if they inform decisions; and an activity log for folders with higher needs.

Migrating versions is a trade-off between fidelity and timeline. Full migration of all versions maximizes similarity with SharePoint but increases size, time and verification complexity. Migrating only the latest version is faster but removes the “time machine” and some user trust.

A common compromise: migrate only the latest version for most work folders, but keep extended history and auditing for critical sections (finance, legal, regulated records). This reduces risk without stretching the project for months.

Document the rules: which folders keep history, how many versions to keep, retention periods, who can delete and how to validate results.

Step-by-step migration plan: from pilot to cutover

A good migration is not a single file copy but a chain of validations. Plan a pilot, reconciliations and a clear cutover moment so users don’t lose trust in documents.

A commonly working scheme:

1. Pilot in one unit. Pick a team with both active editors and readers (for example, accounting or HR). Agree rules: folder names, where templates live, how access is granted and who approves final versions.

2. Prepare Nextcloud for target structure. Create top-level folders/spaces, user groups and basic sharing policies (external links, lifetime, guest access) before migration.

3. Test transfer and reconciliation. Migrate a small but varied sample: folders with different permissions, some large files and key documents with history. Check structure, access and versions where critical.

4. Migrate main bulk and quality control. Move in batches (by department or section). Produce reports: what was migrated, what was skipped and why.

5. Cutover and freeze changes. Schedule a window when SharePoint is read-only and explain in advance how late edits are handled.

6. Post-checks and support for 2–3 weeks. Collect frequent questions and provide short guides for daily scenarios (co-editing, sharing, restoring versions). If IT or an integrator handles migration, assign owners for incoming tickets in the first days.

For acceptance, use a short checklist: file counts match in control folders; key documents open correctly; permissions for 5–10 typical roles behave as expected; versions are created without confusion; search finds by name and keywords.

Collaboration: how to preserve familiar workflows

Users worry less about the move itself and more that familiar actions will stop working: opening a shared doc, approving edits, sending a link to a contractor or seeing a comment. You can preserve these if you agree on rules and enforce them with settings.

Co-editing office files

To avoid version conflicts, choose one scenario: what is edited in the browser and what stays local. Rule of thumb: collaborative documents (minutes, plans, spreadsheets) are edited in the online editor; heavy files and templates are edited one at a time; disputes are discussed in comments; final documents get a clear status in their name ("On review", "Approved").

Sharing, devices, notifications

Separate internal and external sharing. For external links set defaults: expiry, password and a rule “don’t forward unless needed.” This lowers leak risk and confusion.

Control sync on PCs and mobiles: not all folders should sync to devices. Usually project work folders are synced, while archives and personal data stay web-only.

Set simple notifications so the team doesn’t miss changes: mentions in comments, access requests, events in key folders. Templates help repeatability: when a project starts create "01_Inbox", "02_Work", "03_Approval", "04_Final" plus a "Rules" file inside.

Typical mistakes and traps that delay timelines

Deadlines slip when teams try to migrate everything “as-is.” SharePoint structures, permissions and scenarios rely on many small settings and exceptions. Copying them creates the same chaos in a new system, which is harder to fix.

Common failure patterns: migrating libraries without normalization (duplicates, "Archive(2)", deep nesting, odd names); copying permissions with no clear model (exceptions like "only Ivanov"), then fixing manually forever; mass switching without a pilot and departmental owners; ignoring integrations and automations (forms, approvals, notifications); and overlooking performance (huge folders, thousands of tiny files, weak PCs, slow office links).

Another pain point is lacking a rollback plan and a clear change window. If users edit documents on both systems during cutover, version divergence happens fast. Fix the moment when the old system stops and who decides to roll back.

Quick pre-launch check: a short checklist

Before cutover focus on validating key scenarios, not a visual inspection. One to two hours can be enough if you assign department owners and a control sample.

Pick 20–30 folders and documents across departments (finance, HR, legal, sales) plus 3–5 most problematic folders with exceptions. Then check:

• content: names, file counts and last modified dates match; typical formats (docx, xlsx, pdf) open
• access: owner, a group member and a “random employee” see exactly what they should; restrictions work
• versions: policies for regs, contracts and templates have needed depth; previous versions can be restored; authors and timestamps are visible
• collaboration: two people can edit without losses; locks, comments and notifications behave correctly
• external access: links open per rules, expiry and password work (if required)

If any item fails, don’t switch everyone. Record a concrete example (file, folder, user, expected vs actual) and rerun checks after fixes.

Practical example: migrating a department to Nextcloud

Imagine procurement manages contracts, legal reviews edits and finance handles payments and closing documents. Previously everything lived in a shared SharePoint library. After migration people need to find the same sections and know what they can do.

The structure was migrated without reinventing everything and one template was adopted: "Year -> Counterparty -> Contract -> Attachments." Context is visible in the path and search isn’t a guessing game. If a counterparty changes name, avoid renaming the folder each time; use a stable name (for example, from the accounting system) and keep a friendly name in contract metadata or file name.

Permissions were agreed in advance and implemented by roles rather than by individuals: procurement creates and edits files in the current year folder; legal edits within a contract without delete rights; finance reads contracts and adds files to "Attachments/Payments"; managers read everything and mark final approval via comment and version pinning.

To preserve history, they adopted a rule: edits happen in the same file and key milestones are recorded as separate “milestones” (after legal approval and after signing). File naming stays minimal: date, counterparty, type, number, status (DRAFT/APPROVED/SIGNED).

On day one common questions are: where is favorites/quick access (show how to favorite a folder); how to restore deleted (trash and version history); who edited (version history and activity log); why can’t I edit (read-only role); how to submit for approval (comment "For approval" and pin version after response).

Next steps: how to organize migration without stress

The calmest approach starts not with file copying but with a plan that protects familiar scenarios: where a document lives, who sees it, how to get an earlier version and whom to contact if something is missing.

Create a short "data passport": which libraries and folders are actually used, who owns them, where external access exists and which integrations are critical. From this you can better agree target structure and roles in Nextcloud than by copying everything.

Decide what must be preserved and what can be simplified. Usually critical elements are accesses, owners, basic versions and history for regulated files. You can safely simplify duplicates, stale “archive-archive” folders and temporary drafts.

If internal resources are limited, hire a systems integrator. Given GSE.kz’s profile this can help not only with migration but also with selecting and supplying server infrastructure (workstations, servers, data-center solutions) and ongoing support, including 24/7 service where the business needs it.