• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Governance - how does information & security drive your architecture
 

Governance - how does information & security drive your architecture

on

  • 1,398 views

 

Statistics

Views

Total Views
1,398
Views on SlideShare
1,396
Embed Views
2

Actions

Likes
0
Downloads
29
Comments
0

1 Embed 2

http://paper.li 2

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • Animation of the settings complexity of SharePoint

Governance - how does information & security drive your architecture Governance - how does information & security drive your architecture Presentation Transcript

  • Governance – how does information & security drive your architecture
    Randy Williams
    Enterprise Trainer & Evangelist
    randy.williams@avepoint.com
    Twitter: @tweetraw
    © 2011 AvePoint, Inc. All rights reserved. No part of this may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written consent of AvePoint, Inc.
  • Randy Williams
    Enterprise Trainer & Evangelist – AvePoint
    20 years in IT
    developer, consultant, trainer, author
    Three-time SharePoint MVP
    Speaker at many global conferences
    randy.williams@avepoint.com
    http://linkd.in/plEEb1
    @tweetraw
  • Objectives & Agenda
    Defining Governance
    Management Controls and Scopes
    Information Architecture vs. Management
    Four-Step Architecting Governance Process
  • Defining Governance
  • GOVERNANCE
    Sites
    Communities
    Composites
    Content
    Insights
    Search
  • Governance is the set of policies, roles, responsibilities, and processes that guides, directs, and controls how an organization's business divisions and IT teams cooperate to achieve business goals.
    Microsoft - http://bit.ly/nmNSbj
    What is governance?
  • Governance defines the people, processes, policies and technologiesthat deliver a service
    Alternate definition
  • GOVERNANCE
    People
    Process
    Policy
    SERVICE
    Technology
  • Architecting Governance
  • SharePoint
    http://intranet
    PRODUCTION FARM
    HR
    Finance
    http://teams
    http://intranet
    http://apps
    Expense Reports
    Vacation & Sick Day Tracking
    Financial Performance
    Benefits
    Site Collection
    HR
    Site Collection
    Engineering
    Site Collection
    Finance
    Site Collection
    /
    Search
    Metadata
    My Sites
    HR
    Engineering
    Finance
    LoB App
    Remote
    Site Collection
    Expense Reports
    CRM
    Research & Development
    Public
    Extranet
    WWW
    Extranet
  • Management Controlsand Scopes
    Fundamentals
  • Management controls and scopes
    SharePoint Service Isolation
    Service Application Configuration and Data
    Blocked File Types
    SSL
    Farm
    Web Application
    Service Application
    Zone
    Data Storage SLAs
    Content DB
    Quotas
    Ownership(Full Control)
    Site collection
    Features
    Security Permissions
    Top-level site
    Sub site
    List/Library
    Sub site
    Security Permissions
    [Folder]
    Item / Document
  • Management controls and scopes
    It’s about containers (scopes)
    Security (permissions)? We understand that…
    Scope unique permissions = site, list/library, folder, item
    Administrative overhead of multiple containers
    But…
    Governance and management
    is more than just security!
  • Information Architecturevs. Management
    Fundamentals
  • Info Architecture vs. Info Management
    Information Architecture
    Organize and describe content
    Metadata
    Structure
    Relationships
    Inputs
    Knowledge Management team
    Librarians
    Content owners
    Subject matter experts (SMEs)
    Outcomes
    Site map (navigation)
    Taxonomy
    Search
    Targeting (audiences)
  • Information Architecture
    SharePoint
    http://intranet
    HR
    Finance
    Expense Reports
    Vacation & Sick Day Tracking
    Financial Performance
    Benefits
  • Info Architecture vs. Info Management
    Information Architecture
    Info Management
    Organize and describe content
    Metadata
    Structure
    Relationships
    Inputs
    Knowledge Management team
    Librarians
    Content owners
    Subject matter experts (SMEs)
    Outcomes
    Site map (navigation)
    Taxonomy
    Search
    Targeting (audiences)
    Manage the content & service
    Access levels (permissions)
    Lifecycle
    Storage
    Inputs
    Information management policies
    IT usage policies
    Regulatory environment
    SLAs
    Outcomes
    Access levels
    Records management
    Compliance
    Performance
  • Service Architecture
    PRODUCTION FARM
    http://teams
    http://intranet
    http://apps
    http://teams
    http://intranet
    http://apps
    Site Collection
    /
    Site Collection
    HR
    Site Collection
    Engineering
    Site Collection
    Finance
    Site Collection
    /
    HR
    Engineering
    Finance
    Site Collection
    HR
    Site Collection
    Engineering
    Site Collection
    Finance
    Site Collection
    Custom App
    Search
    Metadata
    My Sites
    HR
    Engineering
    Finance
    LoB App
    Remote
    Site Collection
    Custom App
    CRM
    Research & Development
    Test Farm
    Public
    Extranet
    WWW
    Extranet
  • SharePoint
    http://intranet
    PRODUCTION FARM
    HR
    Finance
    http://teams
    http://intranet
    http://apps
    Expense Reports
    Vacation & Sick Day Tracking
    Financial Performance
    Benefits
    Site Collection
    HR
    Site Collection
    Engineering
    Site Collection
    Finance
    Site Collection
    /
    Search
    Metadata
    My Sites
    HR
    Engineering
    Finance
    LoB App
    Remote
    Site Collection
    Custom App
    CRM
    Research & Development
    Public
    Extranet
    WWW
    Extranet
  • Architecting Governance
    Four-Step Process to
  • Architecting Governance
  • Classifying requirements
    Business
    Business purpose of the solution
    Technical
    Project
    Budget, deadlines, etc.
    Information architecture
    How content is described, organized and discovered
    Information management
    How content is created, secured, maintained, and disposed
    Service management
    IT assurance: performance, availability, recovery
    SLAs
  • Requirements to Architecture
    Solicited
    Derived
  • Architecting Governance
  • FARM
    Management controls and scopes
    WEB APPLICATION
    Zone
    Service Application
    CONTENT DATABASE
    User & Group Management
    Ownership(Full Control)
    SITE COLLECTION
    Top-Level Site
    List or Library
    [Folder]
    Subsite
    Subsite
    Item or Document
  • Requirements  multiple web apps
    Blocked file types
    DNS namespace (URL)
    Web site service isolation
    Web server: server isolation
    Application pool: process isolation
    Classic Mode or Claims Based Authentication
    Self-service site creation, automatic deletion of unused sites
  • More requirements  multiple web apps
    SharePoint Designer controls
    Impact of upgrade
    Functional web applications (http://apps) not upgraded immediately
    Business applications in this SharePoint web app have specific functionality
    They meet business requirements without upgrade
    Features that are installed to support these applications take time to upgrade
    Collaborative web sites, intranet, and services upgraded immediately
    Take advantage of new features of SharePoint vNext
    Service application connections and configuration
    Multiple scopes
  • Requirements  multiple zones
    Anonymous access
    Anonymous policy
    SSL
    Authentication providers
    User policy
  • Guidance: Web apps and zones
    INTRANET: published intranet content
    http://intranet
    COLLABORATION: business unit, department, team, project
    http://teams
    EXTRANET: collaboration with customers, vendors & partners
    http://extranet
    Zone: https://clients
    SOCIAL: enterprise social networking and personal content
    http://people
    PUBLIC WEB SITE
    http://www
    SIGNIFICANT LINE OF BUSINESS APPLICATION
    http://<LOB> e.g. http://CRM
  • Requirements  Multi-farm architectures
    Code isolation
    Dev / Test / Staging / Production
    Access
    Public-facing web site
    Extranet in Cloud: Partners & Customers
    Geo-performance
    Collaboration farm(s) with team sites
    Feature and process isolation
    Enterprise SharePoint farm with intranet and enterprise services
    Enterprise services: search, metadata, social (User Profiles, My Sites)
    Premium farm(s) for custom applications
    Consider the implications
    SLAs
    Chargebacks
    Upgrade to vNext
  • Requirements  multiple site collections
    Ownership
    Primary & secondary site collection administrators (Central Admin)
    The owner and secondary owner attributes of a site collection
    Full control of site collection + receive site collection email notifications
    Administration
    Site collection administrators as defined in the site collection
    Full control of site collection
    Quotas
    Locks
    SharePoint Designer restrictions
    Features
    Sandbox Solutions
    Search settings
    Audit settings
    User & group management
    Multiple scopes
  • Content lifecycleexample
    FARM
    http://intranet
    http://teams
    HR
    Finance
    HR
    Finance
    Benefits
    Benefits Page
    Benefits Page
    Archived
    Benefits
  • Requirements  content databases
    Storage Management
    Location of database
    Which SQL Server(s) host the database
    Storage platform
    Redundancy
    Clustering
    Mirroring
    Storage platform features
    Backup SLAs
    How long it takes to back up data
    Recovery SLAs
    How long it takes to restore data
    RTO and RPO
    PowerShell delegation
    Remote BLOB Storage (RBS)
  • Architecting Governance
  • FARM
    Sites, lists, libraries, and folders
    WEB APPLICATION
    Zone
    Service Application
    CONTENT DATABASE
    SITE COLLECTION
    Top-Level Site
    Security Permissions
    Features
    List or Library
    [Folder]
    Subsite
    Subsite
    Item or Document
  • Architecting Governance
  • The Great Divide
    Management requirements  more “containers”
    Web applications
    Site collections
    Content databases
    Out-of-box features scoped to a single site collection
    Navigation
    Add a subsite, navigation links created automatically
    Content management
    Site columns and content types apply to a subsite
    Administration
    Audit reports pull audit information from an entire site collection
  • “Behind the scenes”
    FARM
    http://teams
    http://intranet
    http://apps
    Site Collection
    HR
    Site Collection
    Engineering
    Site Collection
    Finance
    Site Collection
    /
    HR
    Engineering
    Finance
    Site Collection
    Custom App
  • Presentation to the user
    SharePoint
    http://intranet
    HR
    Finance
    Expense Reports
    Vacation & Sick Day Tracking
    Financial Performance
    Benefits
  • Overlay Information Architecture
    Navigation
    Manually-configured Quick Launch and top link bar (global navigation)
    Custom link lists (advantage: security trimmed)
    Custom or third-party navigation controls
    SPXmlContentMapProvider
  • Navigation
    FARM
    http://teams
    http://intranet
    http://apps
    Site Collection
    /
    HR
    Engineering
    Finance
    Site Collection
    HR
    Site Collection
    Engineering
    Site Collection
    Finance
    Site Collection
    Custom App
  • Presentation to the user
    SharePoint
    http://intranet
    HR
    Finance
    Expense Reports
    Vacation & Sick Day Tracking
    Financial Performance
    Benefits
  • Overlay Administration
    Administration “single pane of glass” across
    Site collections
    Web applications
    Farms
    For…
    Manage access, audit, manage groups
    Deploy content
    PowerShell
    Third-party administration tools
  • DocAve to the rescue…
  • Infrastructure Management
    Architect
    Manage
    Grow
  • one example
  • DocAve Administrator
    50
    PROD103
    How you position a service to customer is very important! It must be simple, reliable and CONSISTENT!!
    For Administrators looking for simplified management of SharePoint farms, DocAve Administrator is a scalable and feature rich solution that allows you to intuitively manage all your farms down to item level as opposed to other tools that do not offer true multi-farm management
  • SharePoint Administration
    Central Admin
    Too many setting pages…
    WebAppSettings
    WebAppSettings
    Site Collection Settings
    Site Collection Settings
    Site Collection Settings
    Site Collection Settings
    Site Settings
    Site Settings
    Site Settings
    Site Settings
    Site Settings
    Site Settings
    Site Settings
    Site Settings
    Site Settings
    List Settings
    Library Settings
    Site Settings
    List Settings
    Library Settings
    51
    PROD103
  • The Future
    © 2011 AvePoint, Inc. All rights reserved. No part of this may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written consent of AvePoint, Inc.
    Managing Governance
    Plans & Rules
    APIs
    Data Protection
    Admin-istration
    Reporting
    Storage Optimization
    Migration
    Compliance
    DocAve
  • To summarize…
  • Architecting Governance
  • Requirements to Architecture
    Solicited
    Derived
  • People
    GOVERNANCE
    Process
    Policy
    SERVICE
    Technology
  • GOVERNANCE
    MANAGEMENT
    SERVICE
  • Q&A
    Randy Williams
    randy.williams@avepoint.com
  • © 2011 AvePoint, Inc. All rights reserved. No part of this may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written consent of AvePoint, Inc.