Академический Документы
Профессиональный Документы
Культура Документы
Version History
REVISION CHART Version
0.75 1.00 2.0
Author(s)
Scott Ellis Scott Ellis Pankaj Mathur
Description of Version
First Version Design Review Version Updates and changes for training use
Date Completed
8/28/2008 9/4/2009 3/5/2010
Table of Contents
1 1.1 CENTRAL ADMINISTRATION: OPERATIONS ............................................................................................ 9 TOPOLOGY AND SERVICES.................................................................................................................... 9 1.1.1 Servers in farm ............................................................................................................................. 9 1.1.2 Services on server .......................................................................................................................10 1.1.2.1 Services Configuration ............................................................................................................... 11 1.1.2.1.1 Configure the Document Conversion Load Balancer Service .................................................. 11 1.1.2.1.2 Office SharePoint Server Search Service ................................................................................. 11 1.1.2.1.3 Windows SharePoint Services Help Search .............................................................................13 1.1.3 Outgoing e-mail settings ............................................................................................................14 1.1.4 Incoming e-mail settings ............................................................................................................14 1.1.5 Approve/reject distribution groups ............................................................................................15 1.2 SECURITY CONFIGURATION .................................................................................................................15 Service accounts .........................................................................................................................15 Information Rights Management ...............................................................................................16 Antivirus ......................................................................................................................................16 Blocked file types ........................................................................................................................16 Update farm administrators group............................................................................................17 Information Management Policy Configuration .........................................................................17 Manage settings for single sign-on ............................................................................................17
LOGGING AND REPORTING .................................................................................................................18 Diagnostic logging ......................................................................................................................18 Usage analysis processing ..........................................................................................................19 Information management policy usage reports .........................................................................19
UPGRADING AND MIGRATION ............................................................................................................20 Microsoft Content Management Server Migration ....................................................................20 Enable Enterprise Features .........................................................................................................20 Enable Enterprise Features .........................................................................................................20 Convert License Type ..................................................................................................................21
GLOBAL CONFIGURATION ...................................................................................................................21 Timer job status ..........................................................................................................................21 Timer job definitions ...................................................................................................................21 Master site directory settings .....................................................................................................22 Site directory links scan ..............................................................................................................22 Alternate access mappings .........................................................................................................22 Manage farm features................................................................................................................23 Quiesce farm ...............................................................................................................................23 Solutions management ...............................................................................................................23
BACKUP AND RESTORE ........................................................................................................................23 Perform a backup .......................................................................................................................23 Backup and restore history .........................................................................................................24 Restore from backup ...................................................................................................................24 Backup and restore job status ....................................................................................................24
1.7
DATA CONFIGURATION ........................................................................................................................25 Default database server .............................................................................................................25 Data Retrieval Service .................................................................................................................25
1.8.1 Content deployment paths and jobs ...........................................................................................26 1.8.1.1 New Path ...................................................................................................................................26 1.8.2 Content deployment settings ......................................................................................................27 1.8.3 Content deployment object status ..............................................................................................28 2 2.1 CENTRAL ADMINISTRATION: APPLICATION MANAGEMENT ................................................................29 SHAREPOINT WEB APPLICATION MANAGEMENT ..............................................................................29 Create or extend Web application ..............................................................................................29 Create Web application .............................................................................................................29 Extending Web Application .......................................................................................................31 Remove SharePoint from IIS Web site .........................................................................................32 Delete Web application ..............................................................................................................32 Define managed paths ...............................................................................................................33 Web application outgoing e-mail settings ..................................................................................33 Web application general settings ...............................................................................................33 Content databases ......................................................................................................................35 Add Content Database...............................................................................................................36 Manage Web application features .............................................................................................36 Web application list ....................................................................................................................36
2.1.1 2.1.1.1 2.1.1.2 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.7.1 2.1.8 2.1.9 2.2
SHAREPOINT SITE MANAGEMENT ......................................................................................................37 Create site collection ..................................................................................................................37 Delete site collection ...................................................................................................................38 Site use confirmation and deletion .............................................................................................38 Quota templates .........................................................................................................................39 Site collection quotas and locks ..................................................................................................39 Site collection administrators .....................................................................................................40 Site collection list ........................................................................................................................40
EXTERNAL SERVICE CONNECTIONS .....................................................................................................40 Records Center ............................................................................................................................40 HTML viewer ...............................................................................................................................40 Document conversions ................................................................................................................41
INFOPATH FORMS SERVICES ................................................................................................................41 Manage form templates .............................................................................................................42 Configure InfoPath Forms Services .............................................................................................42 Upload form template ................................................................................................................43 Manage data connection files ....................................................................................................44 Manage the Web services proxy .................................................................................................44
2.5.1 Create or configure this farms shared services ..........................................................................44 2.5.1.1 New SSP .....................................................................................................................................45 2.5.2 Grant or configure shared services between farms ....................................................................47 Aivea Proprietary Information
Check services enabled in this farm ............................................................................................47 Configure session state ...............................................................................................................47
APPLICATION SECURITY .......................................................................................................................48 Security for Web Part pages .......................................................................................................48 Self-service site management .....................................................................................................48 User permissions for Web application ........................................................................................50 Policy for Web application ..........................................................................................................51 Add Users ..................................................................................................................................51 Creation Unique Permission Levels ............................................................................................52 Authentication providers ............................................................................................................52 Changing Web application authentication ................................................................................52
SEARCH ................................................................................................................................................53
2.7.1 Manage search service ...............................................................................................................53 2.7.1.1 Farm-Level Search Service .........................................................................................................53 2.7.1.1.1 Farm-level search settings ......................................................................................................53 2.7.1.1.2 Crawler impact rules ..............................................................................................................54 2.7.1.1.2.1 Add Rule ..............................................................................................................................54 2.7.1.2 Query and Index Servers ............................................................................................................55 2.7.1.3 Shared Service Providers with Search Enabled ..........................................................................55 2.8 WORKFLOW MANAGEMENT ...............................................................................................................56 Workflow Settings ......................................................................................................................56
2.8.1 3
SHARED SERVICES ADMINISTRATION ....................................................................................................57 3.1.1 3.1.2 3.1.3 3.1.4 3.1.5 Managing Farms Share Services ................................................................................................57 Creating a New SSP ....................................................................................................................57 Change Default SSP ....................................................................................................................60 Change Associations ...................................................................................................................60 Restore SSP .................................................................................................................................60
3.2
3.2.1 User Profiles and My Sites ..........................................................................................................62 3.2.1.1 User profiles and properties ......................................................................................................63 3.2.1.1.1 Refresh ....................................................................................................................................63 3.2.1.1.2 Add user profile ......................................................................................................................63 3.2.1.1.3 View user profiles ...................................................................................................................63 3.2.1.1.4 Configure profile import .........................................................................................................64 3.2.1.1.5 Start full import ......................................................................................................................64 3.2.1.1.6 Start incremental import ........................................................................................................65 3.2.1.1.7 View import connections ........................................................................................................65 3.2.1.1.8 View import log ......................................................................................................................65 3.2.1.2 User Profile Properties ...............................................................................................................65 3.2.1.2.1 Add profile property ...............................................................................................................66 3.2.1.2.2 View profile properties ...........................................................................................................67 3.2.2 Profile services policies ...............................................................................................................68 3.2.2.1 Edit Policy ..................................................................................................................................68 3.2.3 My Site Settings ..........................................................................................................................68 3.2.4 Trusted My Site Host Locations ...................................................................................................70 3.2.5 Published links to Office client applications ................................................................................70
SEARCH ................................................................................................................................................72
3.3.1 Search settings............................................................................................................................72 3.3.1.1 Crawl Settings ............................................................................................................................72 3.3.1.1.1 Content sources and crawl schedules .....................................................................................72 3.3.1.1.2 New Content Source ...............................................................................................................73 3.3.1.1.3 Manage Crawl Rules ...............................................................................................................76 3.3.1.1.3.1 Add Crawl Rule ....................................................................................................................77 3.3.1.1.4 File Types - Managing .............................................................................................................78 3.3.1.1.5 Crawl Log ................................................................................................................................79 3.3.1.1.6 Default Content Access Account .............................................................................................79 3.3.1.1.7 Metadata Property Mappings ................................................................................................79 3.3.1.1.7.1 New Managed Property ......................................................................................................80 3.3.1.1.8 Metadata Property Mappings ................................................................................................82 3.3.1.1.9 Search-based Alerts ................................................................................................................82 3.3.1.1.10 Search Result Removal .........................................................................................................82 3.3.1.1.11 Reset Crawled Content .........................................................................................................82 3.3.1.2 Scopes ........................................................................................................................................83 3.3.1.2.1 View/ Create Scopes ...............................................................................................................83 3.3.1.2.1.1 Create Scope ........................................................................................................................83 3.3.1.2.2 Update Scopes/Updating .......................................................................................................84 3.3.1.3 Authoritative Pages ...................................................................................................................84 3.3.1.3.1 Specify a new Authoritative Pages .........................................................................................85 3.3.2 Search usage reports ..................................................................................................................85 3.3.2.1 Search Queries ...........................................................................................................................86 3.3.2.2 Search Results............................................................................................................................87 3.4 EXCEL SERVICES SETTINGS ...................................................................................................................88 Edit Excel Services Settings .........................................................................................................88 Excel Services Trusted File Locations ...........................................................................................90 Adding Trusted File Location .....................................................................................................90 Excel Services Trusted Data Connection Libraries .......................................................................92 Excel Services Trusted Data Providers .........................................................................................92 Excel Services User-Defined Functions ........................................................................................93
AUDIENCES ..........................................................................................................................................94
3.5.1 Create Audience..........................................................................................................................94 3.5.1.1 Add Audience Rule .....................................................................................................................95 3.5.2 View Audiences ...........................................................................................................................96 3.5.2.1 View Audience Properties ..........................................................................................................96 3.5.3 Start Compilation........................................................................................................................97 3.6 OFFICE SHAREPOINT USAGE REPORTING ...........................................................................................97 Usage Reporting .........................................................................................................................97
3.6.1 3.7
BUSINESS DATA CATALOG ....................................................................................................................98 Import application definition ......................................................................................................98 View applications......................................................................................................................100 View Entities .............................................................................................................................100
3.7.3.1 Entity Information ...................................................................................................................101 3.7.3.2 Actions to Add or Edit Entity ....................................................................................................102 3.7.4 Business Data Catalog permissions ..........................................................................................102 3.7.5 Add Users/Groups.....................................................................................................................102 3.7.6 Copy all permissions to descendants ........................................................................................103 3.8 Edit Profile page template .............................................................................................................103 3.8.1 Customize _BusinessDataProfileTemplate.aspx before importing the application definition ..104 3.8.2 Customize _BusinessDataProfileTemplate.aspx after importing the application definition .....104
The Operations are of the Central Administration windows is designed to provide a location for the Farm Administrator to manage the server or server farm, such as changing the server farm topology, specifying which services are running on each server, and changing settings that affect multiple servers or applications. This section will cover the recommended settings for the Operations Area.
In addition is provides a list of each server on the farm, along with Services Running, versions on the server, and the option to Remove Server from the farm at any time.
This option gives the administrator the option to review the services running on each server in the farm. Recommended that you configure your Web Servers and Index Servers at this step to retain the roles they are planned to be supporting. Roles available by default are: o o o o o Single Server or Web Server for small server farms All services run on this server Web Server for medium server farms Web application and Search Query services run on this server Search Indexing Search Indexing service runs on this server Excel Calculation Excel Calculation service runs on this server Custom Services you choose run on this server
We recommend the following configurations for your servers. For each Web Server the following services should be enabled. These services will support optimal load balancing: o o o o o o o Document Conversions Launcher Service Document Conversions Load Balancer Service Excel Calculation Services Office SharePoint Server Search Windows SharePoint Services Help Search Windows SharePoint Services Incoming E-Mail Windows SharePoint Services Web Application
The implementation of an Index Server as a stand alone server is recommended to be implemented. A stand along Index server should only run one service to ensure optimal performance: o Office SharePoint Server Search
1.1.2.1 Services Configuration 1.1.2.1.1 Configure the Document Conversion Load Balancer Service
You can configure the Document Conversions Load Balancer Service on a stand-alone server or on one server in a farm. When you configure the load balancer service, it points to a load balancer server that distributes the work.
Selecting Server This option allows you to select the specific server you want to target. Communication Scheme Specify the scheme that the Load Balancer will use for communication. This should match the scheme in the configuration xml file for the load balancer service. It is recommended that you use the default HTTP. If you are planning to apply certificates, then the HTTPS option should be applied here. Port Number Specify the port number the Load Balancer will use for communication. It is recommended you use a port such as: 8091, 8092, or 8093
The farm search service account must not be a built-in account for security reasons and for it to access the database and content index. Examples of built-in accounts are Local Service and Network Service. This should be a unique account created specifically to support the Search Configuration and not an administrative account created to manage the farm. Username: Example: SearchAdmin Index Server Default File Location The search index will be located at this path by default on this server. For index servers, you can specify a different path when you create a Shared Services Provider. To change this index file location for an existing Shared Services Provider, use the command stsadm.exe -o editssp. Default index file location: Example: C:\Program Files\Microsoft Office Servers\12.0\Data\Office Server\Applications Indexer Performance Indexing information can place a large load on the local SQL Server database and might slow down the responsiveness of the local SharePoint sites. However, reducing the maximum allowed indexing activity will slow down the speed at which items are indexed, and therefore might cause search results to be outdated. Use information about the local server load to select the appropriate indexer performance level. The three options provided are: Reduced, Partly reduced, and Maximum. It is recommended to use the Partly Reduced option. Web Front End And Crawling Use this option to specify a dedicated web front end for crawling. Crawling through a dedicated web front end will reduce the impact of crawling on the other web front ends in the farm. If your index server is not running other shared services, it is recommended to enable the web front end role on this computer and use it as the dedicated web front end for crawling. If your index server is also running the Excel Calculation service or other shared services, select no dedicated web front end for crawling. Otherwise, these services may not work as expected. Use all web front end computers for crawling Use a dedicated web front end computer for crawling
It is recommended that you start with a Every 15 Minutes schedule, then based on both performance and need change this schedule to optimize based on availability of new content and impact of performance on the Index servers.
As we are not recommending SharePoint Management Service create distribution groups we suggest turning this option to NO. To use the Directory Management Service you need to provide the SharePoint Central Administration application pool account with write access to the container you specify in the Active Directory. Alternatively you can configure this server farm to use a remote SharePoint Directory Management Web Service. Incoming E-Mail Server Display Address Specify the e-mail server address that will be displayed in Web pages when users create an incoming e-mail address for a site, list, or group. This setting is often used in conjunction with the Microsoft SharePoint Directory Management Web Service to provide a more friendly e-mail server address for users to type. Safe E-Mail Servers Specify whether to restrict the set of e-mail servers that can route mail directly to this server farm. This setting can help ensure the authenticity of e-mail stored in SharePoint sites. Recommend leaving default.
1.2.3 Antivirus
Use this page to configure settings for virus scanning. You must install virus scanning software on all Web servers that are hosting documents before these settings can take effect. This is recommended to defend and protect your servers from viruses. Antivirus Settings Specify when you want documents stored in document libraries and lists to be virus scanned, and whether you want your virus scanner to attempt to clean infected documents. Antivirus Time Out We recommend using a Time out duration of 300 by default, if the server response time is slow while scanning, you may want to decrease the number of seconds. Antivirus Threads You can specify the number of execution threads on the server that the virus scanner may use. If server response time is slow while scanning, you may want to decrease the number of threads allowed for virus scanning.
Filenames that include braces (for example, filename.{doc}) are blocked automatically. Aivea Proprietary Information
Update farm administrator's group Information management policy configuration Manage settings for single sign-on
Path It is recommended that you define a path location that has adequate storage space for large logs as needed, and a location with strong security. As these logs can contain mission crital and sensitive information. Path Example: C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\12\LOGS Number of log files Number of log files to use must be between 1 and 1024. It is recommended to use 96 log files. Number of minutes to use a log file Number of minutes specified must be between 1 and 1440. Recommended to have the initial setting to 30 minutes, and change this based on criticality of the reporting needs.
To schedule an immediate one-time reporting job, click "Create Reports Now". Report File Location Specify where you want to store reports. The report for each site collection will be stored as a separate file. Path Example: http://.gov/IMPReports/Forms/AllItems.aspx Report Template Specify the template you want to use for creating reports. It is recommended that you use the default report format initially. If you wish to develop your own template you will need to store it in a location and link in through the use a custom report template option.
This operation may take a long time to complete depending on the number of sites in your SharePoint installation. So it is recommended to either activate this option after initial installation, or early in the site creation process.
Backup Content Specify content to include in the backup. This will identify the selected component: Farm\WSS_Administration\Web Application\SharePoint_AdminContent_52ad6098d231-4edc-bd6d-d341f139505d Type of Backup Specify which type of backup to start: Full - backs up the selected content with all history. Differential - backs up all changes to the selected content since the last full backup. Backup File Location Specify where to store the backup files. Each backup job is stored in a separate subdirectory at the location you specify, and each object is backed up to an individual file in that subdirectory.
Limit Response Size The size of the SOAP response that the data source returns to the data retrieval service can be limited with this setting. Specify the size limit in kilobytes (KB). This setting applies to the following data retrieval services: OLEDB
Update Support Support for update queries can be controlled with this setting. This setting applies to the following data retrieval services: OLEDB
Data Source Time-out The data retrieval service will time out if the data source does not respond within the duration you specify. Specify the timeout in seconds. This setting applies to the following data retrieval services: OLEDB SOAP Passthrough XML-URL SoapDataSource XmlUrlDataSource
Enable Data Source Controls The set of data source controls on this server can be disabled so that no query requests will be processed. This setting applies to the following data source controls: SPXmlDataSource XmlUrlDataSource SoapDataSource AggregateDataSource
Source Web Application and Site Collection Specify the Web application and site collection on the source server. Destination Central Administration Web Application Specify the URL for the Destination Central Administration Server. Authentication Information Specify the authentication method and credentials you want to use for the destination server. The specified account must have SharePoint Central Administration credentials on the destination server. It is recommended to use the default settings for your credentials. Click Connect to connect to the destination server and specify settings for this path. Destination Web application and site collection Specify the URL for the destination Web application and site collection. These will be activated once you connect in the Authentication step above. User Names Specify whether or not to deploy the user names associated with content. Security Information Specify whether you want to deploy security information (such as ACLs, roles, and membership).
Export Server Specify the server to which you want to send outgoing content deployment jobs. This server must have enough available disk space to store the outgoing jobs, and it must be running an administration Web application for the farm. This server will experience additional load when a content deployment job runs. Connection Security By default, content deployment can only occur if the connection between source and destination farms is encrypted by using the HTTPS protocol. If you deploy content over a connection that is not encrypted, the user name and password you use to authenticate with the destination farm could be intercepted by malicious users, as could the content you are deploying. Temporary Files Specify where you want to store temporary files for content deployment jobs. These files are automatically deleted when the deployment job is finished. This folder must have enough available disk space to store all the content that is deployed at one time. Example Path: C:\WINDOWS\TEMP\ContentDeployment Reporting Specify the number of reports you want to keep for each content deployment job that originates from this farm. The oldest reports will automatically be deleted to make room for new ones.
Host Header must be the complete header name which you want to be present in your final site. It is recommended that you leave the path default as it will follow a best practices naming. If for any reason this is changed, it needs to be fully documented. Security Configuration Kerberos is the recommended security configuration to use with Integrated Windows authentication. Kerberos requires the application pool account to be Network Service or special configuration by the domain administrator. NTLM authentication will work with any application pool account and the default domain configuration. Allow Anonymous is not recommended to be deployed at this level. It at a later time the need to open to an external anonymous audience arises; it can be reactivated in the Permissions of the Collaboration Site. As no Secure Sockets Layer (SSL) usage will be deployed at this time this should remain NO. If at a later time SSL is deployed, you must add the certificate on each server using the IIS administration tools. Until this is done, the web application will be inaccessible from this IIS Web Site. Load Balanced URL The load balanced URL is the domain name for all sites users will access in this SharePoint Web application. This URL domain will be used in all links shown on pages within the web application. By default, it is set to the current server name and port.
Application Pool Choose the application pool to use for the new web application. This defines the account and credentials that will be used by this service. It is recommended to re-use existing common application pools. Create new application pools for top level collaboration sites, or sites that require added levels of security or administration. Use a uniform naming convention for all application pools, this will make future administration easier, and organize in the management queue less challenging. Authentication: It is not recommended to use the Predefined Network Service account, you should associate the appropriate Administration account to the Site Collection and application pool. Reset Internet Information Services It is recommended to use the automatic restart for your IIS, use this section to allow SharePoint to restart IIS on other farm servers. The local server must be restarted manually for the process to complete. If this option is not selected and you have more than one server in the farm, you must wait until the IIS web site is created on all servers, and then run "iisreset /noforce" on each Web server. The new IIS site will not be usable until that is completed. If you are creating multiple sites, a manual reset after all site creations will be a better process. Aivea Proprietary Information
Database Name and Authentication Use of the default database server and database name is recommended for most cases. Refer to the administrator's guide for advanced scenarios where specifying database information is required. Database naming convention should also be maintained at this level. Example: WSS_yoursitename_Content Use of Windows authentication is strongly recommended. To use SQL authentication, specify the credentials which will be used to connect to the database.
Load Balanced URL The load balanced URL is the domain name for all sites users will access in this SharePoint Web application. This URL domain will be used in all links shown on pages within the web application. By default, it is set to the current server name and port.
Select the quota template used by default for all site collections. If you have not defined a quota for your sites by this step, you can click Quota Templates to define new quota templates. This is listed under the SharePoint Site Management section of this guide. Person Name Smart Tag and Presence Settings With Person Name smart tag and Online Status enabled, online presence information is displayed next to member names and the Person Name smart tag appears when users hover over a member name anywhere on this site. This is recommended to be YES by default. This works in conjuction with your Microsoft Office Communication System. Maximum Upload Size Specify the maximum size to allow for a single upload to any site. No single file, group of files, or content, can be uploaded if the combined size is greater than this setting. A good max size is 100mb, however you will need to adjust this depending on the size needs of the site and departments working within the site. NOTE: Maximum size allowed is 2047mb or 2gb in size. This is a hard limit in SharePoint and SQL and cannot be changed. Alerts Specify the default settings for e-mail alerts on this Web application. It is recommended to allow Alerts, in addition limiting the amount of alerts is critical. The default of 500 is considered acceptable for medium to large companies, and will usually support all departments and sites. This may need to be increased for teams such as Finance or HR who depend heavily on automated alerting. RSS Settings Specify the server-wide settings for RSS feeds. The RSS functionality is a recommended tool or function that can be used in conjuction with Alerting and notifications. Blog API Settings Choose whether or not to enable the MetaWeblog API for this Web application. The default of YES is recommended. It is recommended to that the option to accept user name and password remain off, this will ensure the currently configured authentication method will be used. Web Page Security Validation Security validations expire after a configurable amount of time, requiring the user to retry his operation. It is recommended to have this On and set a expiration of 30 minutes for sites.
Send User Name and Password in E-Mail Specify whether to send users their user name and password by e-mail. If this option is turned off, a new user can't access the site until an Aivea Proprietary Information
administrator changes the user's password and notifies him or her of the new password. Backward-Compatible Event Handlers Turn on or off backward-compatible event handlers for this Web application. If this is turned off, users cannot bind document libraries to backward-compatible event handlers. Change Log Specify how long entries are kept in the change log. Log storage of 15 days is recommended. Recycle Bin Specify whether the Recycle Bins of all of the sites in this Web application are turned on. Turning off the Recycle Bins will empty all the Recycle Bins in the Web application. Defining the retention of the Recycle Bin will be based on your Retention plan and governance. 30 days is considered standard and recommended to offer the function, but limit its overall impact on storage and performance of the supporting servers. The second stage Recycle Bin stores items that end users have deleted from their Recycle Bin for easier restore if needed. Administrators find that 50% of the overall live site quota offers sufficient recovery time for users.
It is recommended to ensure optimal storage capacity. New Content Databases should be added as needed or prior to limits being reached. Ensure to use correct naming conventions.
By selecting to either Activate or Deactivate the feature it will be enabled for your Web Application.
Critical warning: Deletion at this level cannot be recovered, except for recovery from a backup. Please ensure you performa backup prior to deleting any Site Collection.
Turn on HTML Viewer Select this checkbox to turn on the HTML Viewer service for the document libraries on Windows SharePoint Services. Server Location This path specifies where you have installed the HTML Viewer application. You can use a remote server or the server running Windows SharePoint Services. Maximum Cache Size Enter the maximum size for the HTML Viewer cache in megabytes (MB). This cache counts against the size of the content database. Maximum File Size The integer size in kilobytes (KB) of the largest file the service will view in HTML. Timeout Length The integer number of seconds the service will wait for HTML Viewing to complete.
Functions will include the ability to Activate, Deactivate, Quiesce, and Remove the forms as needed.
Data connection files can contain authentication information, such as an explicit username and password or a Microsoft Office Single Sign-On Application ID. Check this box to allow user form templates to use this authentication information. Cross-Domain Access for User Form Templates Form templates can contain data connections that access data from other domains. Select this check box to allow user form templates to access data from another domain. Thresholds Specify the thresholds at which to end user sessions and log error messages. Form Session State Form session state stores data necessary to maintain a user session. File attachment data in the form will receive an additional 50 percent of session state space.
SSP Database Each SSP requires a database for service specific data. Use of the default database server and database name is recommended for most cases. Refer to the Office SharePoint Server TechCenter on TechNet for advanced scenarios where specifying database information is required. Use of Windows authentication is strongly recommended. To use SQL authentication, specify the credentials that will be used to connect to the SSP Database Search Database In addition to the SSP database, a separate database is required for frequently changing search related data. Use of the default database server and database name is recommended for most cases. Refer to the Office SharePoint Server TechCenter on TechNet for advanced scenarios where specifying database information is required. Use of Windows authentication is strongly recommended. To use SQL authentication, specify the credentials that will be used to connect to the SSP Database. Index Server Select the index server which will crawl content in all Web applications associated with this SSP. Specify the path on the index server where the indexes will be located. NOTE: Changing the index server will reset the index. To move the index without a reset STSAdm must be used. SSL for Web Services Use Secure Sockets Layer (SSL) to protect communications to and from Web services. NOTE: If you choose to use SSL, you must add the certificate on each server using the IIS administration tool. Until this is done, the Web services will not be available.
"Use Self-Service Site Creation" permission to create sites in defined URL namespaces. NOTE When you enable Self-Service Site Creation, an announcement will be added to the Announcements list on the home page of the top-level Web site in the root site collection for the Web application. The announcement provides a link to the site creation page (scsignup.aspx in the _layouts directory; Example: http://server_name/_layouts/scsignup.aspx). To require users of Self-Service Site Creation to supply a secondary contact name on the signup page, select Require secondary contact.
Client Integration It is recommended to leave Client Integration on for all Web applications. Disabling client integration will remove features which launch client applications. Some authentication mechanisms (such as Forms) don't work well with client applications. In this configuration, users will have to work on documents locally and upload their changes.
2.7 Search
2.7.1 Manage search service
The Manage Search Service area of Search allows for the configuration of three main functions; Farm-Level Search Settings, Query and Index Servers, and Shared Service Providers with Search Enabled.
Proxy Server Settings It is recommended not use a Proxy server. So this option should not be adjusted per our recommendation.
Timeout Settings Type the amount of time that the search server will wait while connecting to other services. It is recommended for best performance to use a 60 second timeout and acknowledgement time.
To access the Search service to change configuration, select the Office SharePoint Server Search Indexing and Query, next to the Search service. This will take you back to the Service configuration window.
NOTE: For server farm installations, the selected Web application cannot have an application pool that uses Network Service as its process account. Users will be able to navigate to the SSP administration site by typing this Web site address (URL) that you see on the screen into their browsers, this is a secure page, and will only be visible by Farm Administrators. My Site Location A Web application is required for My Sites. This Web application will be used to host personal sites and profile pages. It is recommended that a new Web application is created for My Sites. This is a multiple reasons for this. First is that this allows for a higher level of security, allowing the SSP to administrated independently of the My Sites. Second is to limit impact of performance. As My Sites will be more active, a dedicated Web application will not impact general performance of your Site Collections. In addition this allows for the backup and restore My Sites independently. To host My Sites at a location other than the root, change the Relative URL. SSP Service Credentials Specify the credentials for the SSP Web services to use for inter-server communication and for running SSP-scoped timer jobs. It is recommended to have an independent account for SSP administration. This account is only used for SSP administration. Example: SSPAdmin or SSPAdministrator SSP Database Each SSP requires a database for service specific data. Use of the default database server and database name is recommended for most cases. If alternate servers are needed to be implemented for this ensure the SSPAdmin account has the appropriate privileges for administration. Database name should be easily identifiable in comparision to other SharePoint databases. Example: _Shared_Services Use of Windows authentication is strongly recommended. For higher level of security the use of the SQL authentication can be utilized, specify the credentials that will be used to connect to the SSP Database. Example of the credential naming convention: SQLAdmin or DBAdmin Search Database In addition to the SSP database, a separate database is required for frequently changing search related data.
Use of the default database server and database name is recommended for most cases. If alternate servers are needed to be implemented for this ensure the SSPAdmin account has the appropriate privileges for administration. Database name should be easily identifiable in comparision to other SharePoint databases. Example: _Shared_Services_Search Use of Windows authentication is strongly recommended. For higher level of security the use of the SQL authentication can be utilized, specify the credentials that will be used to connect to the SSP Database. Example of the credential naming convention: SQLAdmin or DBAdmin Index Server Select the index server which will crawl content in all Web applications associated with this SSP. If only one server is running the Index Service this option will be greyed out. If additional servers are running the Index Service, then the drop down will allow the selection of a specific resource. Specify the path on the index server where the indexes will be located. This should be accessible by SharePoint, and have adequate space for future growth of the index logs. NOTE: Changing the index server will reset the index. To move the index without a reset STSAdm must be used. SSL for Web Services Use Secure Sockets Layer (SSL) to protect communications to and from Web services. As this is not being utilized in this deployment this option should remain No. NOTE: If you choose to use SSL, you must add the certificate on each server using the IIS administration tool. Until this is done, the Web services will not be available. WARNING:
This warning is an advisory that prior association to another SSP has been configured. You should only get this warning if the associated has been established during the intial configuration, or subsiquent configuration changes. If OK is selected you will need to ensure to fully configure your new SSP, and ensure all other Central Administration configurations comply with the new association. If this is the first SSP you have created you will not get this warning.
Your new SSP should now be listed in the Manage this Farms Shared Services window.
My Site Location A Web Application is required for My Sites. This Web application will be used to host personal sites and profile pages. By default, the restored SSP will continue to use the existing location, which may be located on the original farm. You can also select an existing Web application on this farm where you have already restored personal sites. Alternatively, you can create a new Web application for hosting personal sites. Until you restore personal sites to the selected Web application, new personal sites will be created when users try to access them.
SSP Service Credentials Specify the credentials for the SSP Web services to use for inter-server communication and for running SSP-scoped timer jobs.
SSP Database Each SSP requires a database for service specific data. Specify the server and name of the database this SSP is to connect to. This database must already exist. To use SQL authentication, specify the credentials that will be used to connect to the SSP Database. Search Database In addition to the SSP database, a separate database is required for frequently changing search related data. Use of the default database server and database name is recommended for most cases. Refer to the Office SharePoint Server TechCenter on TechNet for advanced scenarios where specifying database information is required. Use of Windows authentication is strongly recommended. To use SQL authentication, specify the credentials that will be used to connect to the SSP Database.
Index Server Select the index server which will crawl content in all Web applications associated with this SSP. If only one server is running the Index Service this option will be greyed out. If additional servers are running the Index Service, then the drop down will allow the selection of a specific resource. Specify the path on the index server where the indexes will be located. This should be accessible by SharePoint, and have adequate space for future growth of the index logs. NOTE: Changing the index server will reset the index. To move the index without a reset STSAdm must be used. SSL for Web Services Use Secure Sockets Layer (SSL) to protect communications to and from Web services. As this is not being utilized in this deployment this option should remain No. NOTE: If you choose to use SSL, you must add the certificate on each server using the IIS administration tool. Until this is done, the Web services will not be available.
3.2.1.1.1 Refresh
This option is used to refresh the Settings menu.
Incremental Import Schedule Specify when and how often to import information about users whose records have changed since the last update. It is recommended to do a incremental update daily during normal updates and backup times.
Search Settings It is recommended to have all properties Indexed by default. Aliased properties are treated as equivalent to the user name and account name when searching for items authored by a user, targeting items to a user, or displaying items in the Documents Web Part of the personal site for a user. Alias properties must be public. Indexed properties are crawled by the search engine and become part of the People search scope schema. Only index a property if it will contain relevant information for people finding or if you want the data displayed in people search results. Property Import Mapping Specify the field to map to this property when importing user profile data. When importing from a Business Data Catalog source you can import data from associated entity fields by selecting the association. Mapping a multi-valued field to a single value property is allowed, importing will attempt to get only the first value. Mapped properties cannot be modified by users. If you are using a high privilege account for profile import, you will be able to read and import directory attributes that are not normally viewable by all users, make sure the appropriate default privacy setting is selected.
NOTE: The selection of directory service properties may be disabled if the shared service provider is in an untrusted domain or if profile import is not configured. NOTE: The selection of directory service properties is disabled because the portal is in an untrusted domain or no directory service import is configured yet. SECURITY NOTE: If you are using a high privilege account to import, you will be able to read and import directory attributes that are not normally accessible by users.
For adding a new property see the previous section and Adding a New Property.
Personal Site Location Select the location at which to create personal sites. Recommended Example: personal_site Existing personal sites will not be affected. Site Naming Format Select the format to use to name new personal sites. Recommended that you use the first option User name (do not resolve conflicts). Existing personal sites will not be affected. Language Options This option will allow you the option to select whether users are allowed to choose the language of their personal site. It is not recommended that this is selected unless the staff is fully versed in the languages, this will eliminate confusion or possible future issues.
The list of languages offered to users will correspond with the installed language packs on the hosting server. Multiple Deployments It is recommended that this option be used. However, it is recommended that you implement a profile replication solution before enabling My Site to support global deployments. Without a profile replication solution in place users that have their My Site hosted on a different Shared Service Provider will have a disconnected user experience. Multiple My Site deployments can exist in the same environment allowing for specific users to have their My Site hosted by a different Shared Service Provider, this is common with global deployments. When a user's My Site is hosted by a Shared Service Provider other than this one, that user will be blocked from using My Site related personalization features provided by this Shared Service Provider. The loss of functionality includes the ability to add users to their Colleagues list, the use of My Links and viewing people search results grouped by social distance. Enabling My Site to support global deployments, will allow a users who's My Site is hosted by a different Shared Service Provider to perform actions such as adding colleagues and links to their default My Site and viewing people search results grouped by social distance. To associate specific users with different Shared Service Providers use the Trusted My Site hosts list.
Default Reader Site Group Enter the accounts that will be added as Readers in the personal site when it is created. Verify that the accounts have the correct Personalization services permissions to use personal features and create personal sites. Also, verify that the public page has the correct permissions by browsing to the permissions page on the My Site Host. NOTE: Changes to the default reader site group will only affect personal sites created after the change.
This used when Multiple Deployments has not been enabled or configured. If that option is being utilized this option does not need to be configured.
It is recommended to use this to lessen the impact of navigation, also can be utilized for specific groups to allow for team, group, or project specific publishing locations.
3.3 Search
This section is utilized in the configuration and reporting of your Search for SharePoint. It is broken into two functional areas; Search settings, and Search usage reports.
Web Sites Type the URLs from which the search system should start crawling. It is recommended that you group like web sites, or higher availability sites. This allows for schedules to be tailored around the content sources. This includes any content, from a single web page to an entire web site. Crawl Settings Specify the behavior for crawling this type of content. It is recommended to crawl only within the server of each starting address, unless you can validate where the hops to other servers will be directed. Page depth specifies how far to follow each series of links, starting from each link in the content source . Server hops occur when a link from on Web site leads to a site/page on another server. File Shares Type the URLs from which the search system should start crawling. This includes contents of a file share, such as documents and other files. Security that is applied to file shares should be taken into consideration prior to performing this action. Crawl Settings Specify the behavior for crawling this type of content. It is recommended to crawl the subfolders only if you know the content of the folders. As this can expand the volume of miss hits, or miss categorized files. Choose which folders to include in the crawl.
Exchange Public Folders Type the URLs from which the search system should start crawling. Multiple folders can be defined in one schedule, this allows for independent schedules for multiple users or folders. This adds to the ability to provide higher availability to key exchange data. This includes messages, discussions and collaborative content. Crawl Settings Specify the behavior for crawling this type of content. It is recommended to crawl the subfolders only if you know the content of the folders. As this can expand the volume of miss hits, or miss categorized files. Choose which folders to include in the crawl. Business Data Catalog
Select whether to crawl all applications in the Business Data Catalog, or include only selected applications in this content source. It is critical to understand the content that is stored in your Business Data Catalog; as the option to crawl entire, can impact your performance of your Index Server depending on load. If you can break out each application or structure your schedules to limit impact this is recommended. An application may be included in only one Business Data content source. Applications Select whether to crawl all applications in the Business Data Catalog, or include only selected applications in this content source. Before selecting to crawl an entire BDC, ensure the total volume of the data is appropriate for your requirements. It is the recommended setting. An application may be included in only one Business Data content source.
Crawl Schedules Select the crawl schedules for this content source. It is recommended to define a Full and Incremental crawls for all sources. Create Schedule This option can be chosen for either the Full or Incremental Crawls. Common schedules include a daily, and routine every 15 and 30 increments. It is recommended you create unique schedules to best approach your data sources. Overlap or heavy indexing during operational hours is not recommended and full or multiple indexes should not be ran at the same time to lessen the overall burden on the Index Servers.
Start Full Crawl Select "Start full crawl of this content source" and click "OK" to start a full crawl of this content source. It is not recommended to force a full crawl during operational hours, or during a period when the impact could burden operational readiness. It is recommended only to force a full crawl if a major change has been applied to an existing schedule, or the need for the search data mandates its immediate need.
Path Type the path affected by this rule. If your choosing to use the * in your path, ensure you are aware the application of this wildcard states all items within and sub of this location will be effected. Crawl Configuration Select whether items in the path are excluded from or included in the content index. Exclude: This option allows the exclusion of content under a site or structure that could be currently indexed. This allows for specific targeted exclusions of sensitive data or information. Include: This option is used to allow the expansion or handling of common indexing exceptions. This includes the ability to search links without including the content. This is commonly used for outside websites, or SharePoint sites that employ the use of links lists as a method of navigation.
Specify Authentication Type an account name and password for an account that can access the content specified. These options will be grayed out if the configuration options is and exclusion, the authentication option will only be active if defining an inclusion option. Use the default authentication. This is the SharePoint server administrator credentials, this should be only used if the content rule is focusing on content on the SharePoint server itself. Specify a different content access account. This options should be content specific such as a Content Admin, or account created in AD specifically for this and other similar crawl rules. Specify client certificate. This option is a server specific credential. It is recommended this only be used if the content resides on that server.
Additional logs are available by selecting the Hostname of interest. Additional filtering and sorting conditions can be applied to locate target specific information.
In addition review of the site can be done by selecting the URL of the item. Reporting cannot be exported out from this screen, however content can be printed or saved via the browser being utilized.
Use in scopes Indicates whether this property will be available for use in defining search scopes. This will be property specific, however the recommendation is to include the field if you believe it will be a property used in the Advanced Search feature of SharePoint Search.
3.3.1.2 Scopes
This section is utilized in the configuration of Scopes for your Search for SharePoint. It is broken into two functional areas; View and Create Scopes, and Scope reports.
NOTE: No data is available for some reports as Usage analysis might have been enabled only recently, or there might have been insufficient usage to result in any values for the report.
Load Balancing Load balancing of Excel Services sessions across Excel Calculation Services processes. It is recommended that you do not adjust this setting during the initial configuration. This is premature optimization, and could be counterproductive or cause issues. Revisit this option if needed after performance has been validated. Session Management Behavior of Excel Calculation Services sessions. It is recommended that you do not adjust this setting during the initial configuration. This is premature optimization, and could be counterproductive or cause issues. Revisit this option if needed after performance has been validated. Memory Utilization Allocation of memory on Excel Calculation Services. It is recommended that you do not adjust this setting during the initial configuration. This is premature optimization, and could be counterproductive or cause issues. Revisit this option if needed after performance has been validated.
Workbook Cache Settings related to caching workbook files on disk and in memory.
It is recommended that you do not adjust this setting during the initial configuration. This is premature optimization, and could be counterproductive or cause issues. Revisit this option if needed after performance has been validated.
External Data Handling external data connections in Excel Calculation Services. It is not recommended to assign a Unattended Service Account to your Excel Services. We recommend the usage of configured Data Connections, and Data Connection Libraries.
Workbook Properties Behavior of workbooks from this location in Excel Calculation Services sessions. It is recommended that you do not adjust this setting during the initial configuration. This is premature optimization, and could be counterproductive or cause issues. Revisit this option if needed after performance has been validated Calculation Behavior Calculation modes in Excel Calculation Services for workbooks from this location. It is recommended that you do not adjust this setting during the initial configuration. This is premature optimization, and could be counterproductive or cause issues. Revisit this option if needed after performance has been validated External Data Handling external data connections in Excel Calculation Services for workbooks from this location. This option is only adjusted if utilizing External Data locations on this trusted location. Allow External Data: It is recommended that this option be selected to Trusted data connection libraries only. Warn on Refresh: It is recommended that you have this notification warning enabled, as a notification advising of accessing a external data source. Stop When Refresh on Open Fails: It is recommended that this be enabled to advise that the refresh will not be available on this data. It is recommended that you do not adjust External Data Cache Lifetime setting during the initial configuration. This is premature optimization, and could be counterproductive or cause issues. Revisit this option if needed after performance has been validated. User-Defined Functions Calling user-defined functions in Excel Calculation Services for workbooks from this location. It is recommended that this option not be selected by default, a validation of the data itself be performed to
ensure that any User-Defined functions will not cause harm, or perform an action that could be detrimental to the SharePoint servers.
3.5 Audiences
Use this page to manage and compile audiences. Audiences allow the ability to target content to users based on their job or task, as defined by their membership in a Windows security group, distribution list, organizational reporting structure, or the public properties in their user profiles. Users in an audience will see audience-specific content on the site that is not available to other users.
Specify whether you want users to be included in the audience that satisfy all the rules of this audience or any of the rules of this audience.
Select Property and select a property name to create a rule based on a user profile property The Operator will change dynamically based on your selection. There is no default, as it will be dependent on the Property requested.
Value Specify a single value to compare. This value will be dynamic based on the Operand and Operator.
This area allows the review, filtering, creation, edit, and deleting of audiences.
It is key to be aware the Usage Reporting creates log files that supporting the reporting methods. These logs can be significant in size and as such space availability for them should be considered before usage. Processing Settings Advanced usage analysis processing allows content owners of site collections and sites to understand how their site is being used, and provides information to help them improve the effectiveness of their site. When advanced usage analysis processing is enabled a daily schedule will process usage logs and provide the results to reports available from the site settings page of every site. WARNING: Detailed usage analysis processing requires usage logging to be enabled, but Windows SharePoint Services usage logging is disabled for this farm. Configuration of the Usage Analysis Processing is covered in section 1.3.2 of this document.
Search Query Logging When you enable search query logging, records of queries will be stored in the Shared Services Provider database. You can view search query data in usage reports available from the top-level site in a site collection or from the Shared Services Administration page. See section 3.3.2 of this document for more on Search Reporting.
On a successful import you will be directed to the Application Information. This page allows review of the Application attributes, and further configuration of the Application. Manage Permissions Export Application Definition Delete Application Along with identifying the Entities affiliated to the Application.
Options include the Management of Permissions, Performing or Adding Actions, adjusting Relationships, and reviewing Filters. It is recommended that any changes to the Entity be fully documented and tested prior to addition or changing of settings.
Multiple users or groups can be added at one time, separate them with semi-colons. Choose Permissions Choose permissions to assign to these users/groups. There are four types of rights, it is critical that permissions are applied as needed and should be done by groups as a best practice. Edit Execute Select in Clients Set Permissions
NOTE: If you add a user that already exists, that user's rights will be overwritten.