MOSS 2007: Advanced Administrative Architecture, Deployment, and Operations Joel Oleson, Principal Consultant, Nintex/TPG Shane Young, President, SharePoint911 Mike Watson, Technology Architect, MS Session Code:

Session Code:

Who Am I? Joel Oleson Co-Founder of IdeaMango Consulting Sr. Product Manager for Nintex Ex-Microsoft Sr Tech Product Manager for SharePoint Consultant, Trainer, Writer, & Speaker [email_address] Blog http://www.sharepointjoel.com Nintex Reporting http:// www.nintex.com/reporting SharePoint Training http://www.tedpattison.net

Joel Oleson

Co-Founder of IdeaMango

Consulting Sr. Product Manager for Nintex

Ex-Microsoft Sr Tech Product Manager for SharePoint

Consultant, Trainer, Writer, & Speaker

[email_address]

Blog

http://www.sharepointjoel.com

Nintex Reporting

http:// www.nintex.com/reporting

SharePoint Training

http://www.tedpattison.net

Who Am I? Shane Young Owner of SharePoint911.com Microsoft Office SharePoint Server MVP Consultant, Trainer, Writer, & Speaker [email_address] Blog http://msmvps.com/shane SharePoint Consulting http://www.sharepoint911.com SharePoint Training http://www.tedpattison.net

Shane Young

Owner of SharePoint911.com

Microsoft Office SharePoint Server MVP

Consultant, Trainer, Writer, & Speaker

[email_address]

Blog

http://msmvps.com/shane

SharePoint Consulting

http://www.sharepoint911.com

SharePoint Training

http://www.tedpattison.net

2 Part Session Objectives Part 1 - Basic Deployment Catch up – MOSS 2007 the New World Farm Topologies and SSP Part 2 - Advanced Deployment Planning and Deploying… Intranet Solutions Extranet Solutions Internet Solutions

Part 1 - Basic Deployment

Catch up – MOSS 2007 the New World

Farm Topologies and SSP

Part 2 - Advanced Deployment

Planning and Deploying…

Intranet Solutions

Extranet Solutions

Internet Solutions

Topics Intranet Global Deployments Optimization & Troubleshooting Extranet Auth, Security & Firewall Rules Internet Multi Farm Topologies Content & Solution Deployment Caching Solution Accelerators

Intranet

Global Deployments

Optimization & Troubleshooting

Extranet

Auth, Security & Firewall Rules

Internet

Multi Farm Topologies

Content & Solution Deployment

Caching

Solution Accelerators

Solutions Intranet Portal/Publishing/Enterprise Search Collaboration Records Repository BI / BPM Extranet Partner Collaboration Publishing Portal Internet Publishing Community: Discussions & Blogs

Intranet

Portal/Publishing/Enterprise Search

Collaboration

Records Repository

BI / BPM

Extranet

Partner Collaboration

Publishing Portal

Internet

Publishing

Community: Discussions & Blogs

Intranet

Setup & Deployments Hints and Watch-outs Setup Basic versus Advanced (farm = advanced) WFE versus “Complete” Scripting setup Setup.exe – put binaries on computer (requires config.xml) PSConfig.exe – enable SharePoint services STSAdm.exe – configure SharePoint services and create shared services and sites Role: Dedicated front-end Web server for indexing adds Host file entries Central Admin will push IIS config and can hammer IIS settings

Setup

Basic versus Advanced (farm = advanced)

WFE versus “Complete”

Scripting setup

Setup.exe – put binaries on computer

(requires config.xml)

PSConfig.exe – enable SharePoint services

STSAdm.exe – configure SharePoint services and create shared services and sites

Role: Dedicated front-end Web server for indexing adds Host file entries

Central Admin will push IIS config and can hammer IIS settings

Backup & Disaster Recovery Options Summary 2 Stage Recycle Bin Versioning Web Delete Event Snapshots Third Party Tools Content Recovery Disaster Recovery STSADM backup/restore SQL backups 3 rd party tools Log-Shipping Remote Snapshots High Availability SQL Clustering Database Mirroring Third Party Replication Which combination of tools is right for you?

2 Stage Recycle Bin

Versioning

Web Delete Event

Snapshots

Third Party Tools

STSADM backup/restore

SQL backups

3 rd party tools

Log-Shipping

Remote Snapshots

SQL Clustering

Database Mirroring

Third Party Replication

Log-Shipping Mirror Farm

App Pool Defaults only ok for small environments Consolidate app pools for like applications Memory issues could be: Poorly written dispose SQL delays Network delays 32bit vs. 64 bit Warm up and cold access

Defaults only ok for small environments

Consolidate app pools for like applications

Memory issues could be:

Poorly written dispose

SQL delays

Network delays

32bit vs. 64 bit

Warm up and cold access

What Matters!

Database Splits or Consolidation Put like sites together (sizes & user #s) Dedicate large site collections to database Portal/Internet vs Collab Database Strategies Portal dedicated database Put Mysites separate from portal Portal database can grow

Put like sites together (sizes & user #s)

Dedicate large site collections to database

Portal/Internet vs Collab Database Strategies

Portal dedicated database

Put Mysites separate from portal

Portal database can grow

Database Maintenance Orphaned/Twinned (dupe) Site removal Content - Stsadm –help repair Config - Prepare to move then detatch reattach Maintenance Plans Defrag (growth plans) DBCC Monitor for blocking/long running! Troubleshooting What Can Cause Blocking spids Site Deletes, Backups

Orphaned/Twinned (dupe) Site removal

Content - Stsadm –help repair

Config - Prepare to move then detatch reattach

Maintenance Plans

Defrag (growth plans)

DBCC

Monitor for blocking/long running!

Troubleshooting

What Can Cause Blocking spids

Site Deletes, Backups

Customization and Development You have to have a customization and Development Policy! Customization – what you can do with Designer and the browser What’s cool or not with Designer? Development – what should be in solutions/features Dev Env, Test, CAS, Perf Test for Memory, Disposal Test adding and removal including page!

You have to have a customization and Development Policy!

Customization – what you can do with Designer and the browser

What’s cool or not with Designer?

Development – what should be in solutions/features

Dev Env, Test,

CAS, Perf Test for Memory, Disposal

Test adding and removal including page!

Defaults have Faults

Additional Common Mistakes Misconfigured AAMs (more later) Forget to configure backup You think you are running SQL (even installed) but it is SQL Express Site Use Confirmation Delete: Deletes Used Sites All data goes into one database Turning off Recycle bin...

Misconfigured AAMs (more later)

Forget to configure backup

You think you are running SQL (even installed) but it is SQL Express

Site Use Confirmation Delete: Deletes Used Sites

All data goes into one database

Turning off Recycle bin...

Extranet and Security

Flexible Authentication

SharePoint Web App Security Policies Centrally enforced and overwrites permissions for all sites in the web application GRANT and DENY Bound to web application/zone Permissions Level Full read – search crawling accounts, auditors, legal compliance Deny all – security control, regulatory compliance Deny write – extranet lockdown

Centrally enforced and overwrites permissions for all sites in the web application

GRANT and DENY

Bound to web application/zone

Permissions Level

Full read – search crawling accounts, auditors, legal compliance

Deny all – security control, regulatory compliance

Deny write – extranet lockdown

Architecture Considerations Why more than 1 Farm? Application/Customization SLAs, Licensing (Internet vs. Intranet CAL), Isolation (No Scale) Why more than 1 SSP? Isolation and Service Needs Why more than 1 App Pool? Security Isolation, Memory and CPU isolation, Auth requirements Why more than 1 Site Collection? Separation/delegation of ownership, quotas, ability to split across databases Why one site collection? Global Navigation, Inheritance of style/Master page, Security inheritance, Query web parts, Site Collection policy and content types enforcements

Why more than 1 Farm?

Application/Customization SLAs, Licensing (Internet vs. Intranet CAL), Isolation (No Scale)

Why more than 1 SSP?

Isolation and Service Needs

Why more than 1 App Pool?

Security Isolation, Memory and CPU isolation, Auth requirements

Why more than 1 Site Collection?

Separation/delegation of ownership, quotas, ability to split across databases

Why one site collection?

Global Navigation, Inheritance of style/Master page, Security inheritance, Query web parts, Site Collection policy and content types enforcements

Database Considerations Config contains list of all site collections, web apps, web parts, solutions (Most critical db in farm from availability view) Content database contains all blobs, sites webs, etc… Most content (consider RAID 5) Search & SSP dbs Optimize… High Disk I/O contains configuration & search property store (index/query contain index on disk) Don’t forget Database Maintenance!!! DBCC Check Database, Shrink Database, Reorganize Index, Clean up History, Defrag… Disk IO

Config

contains list of all site collections, web apps, web parts, solutions (Most critical db in farm from availability view)

Content database

contains all blobs, sites webs, etc… Most content (consider RAID 5)

Search & SSP dbs

Optimize… High Disk I/O contains configuration & search property store (index/query contain index on disk)

Don’t forget Database Maintenance!!!

DBCC Check Database, Shrink Database, Reorganize Index, Clean up History, Defrag… Disk IO

Extranet Architecture Example

Protocols All protocols are HTTP-based HTTP/S: Browser sessions SOAP: Editing from Office Applications, Web Services & Indexing RSS: All lists can be viewed this way FP-RPC: SharePoint Designer, Usage Web-DAV: Explorer View, Web Client Access XMLHTTP - Forms

All protocols are HTTP-based

HTTP/S: Browser sessions

SOAP: Editing from Office Applications, Web Services & Indexing

RSS: All lists can be viewed this way

FP-RPC: SharePoint Designer, Usage

Web-DAV: Explorer View, Web Client Access

XMLHTTP - Forms

Firewall Ports

Extranet Terms Alternate Access Mappings - “Zones” Namespaces used to access a single set of content, e.g. http://office https://office.microsoft.com Default Zone for Alerts URLs and Search results Authorization == what can you do Authentication == confirm who you are ASP.Net model for pluggable Authentication Understand - “Enable Client Integration” Matches Office client’s behavior for some FBA providers

Alternate Access Mappings - “Zones”

Namespaces used to access a single set of content, e.g.

http://office

https://office.microsoft.com

Default Zone for Alerts URLs and Search results

Authorization == what can you do

Authentication == confirm who you are

ASP.Net model for pluggable Authentication

Understand - “Enable Client Integration”

Matches Office client’s behavior for some FBA providers

Internet

Content Deployment

Authoring -> Production

Solution Deployment Deploy the Solution package to the farm Retract the Solutions package When a new web server is added, automatically deploy the solution to it Deploy new versions of the Solution Solution - A CAB file containing Manifest.xml file All the files for the Features, Web Parts, Site or list def changes, etc... that make up your solution

Deploy the Solution package to the farm

Retract the Solutions package

When a new web server is added, automatically deploy the solution to it

Deploy new versions of the Solution

Solution - A CAB file containing

Manifest.xml file

All the files for the Features, Web Parts, Site or list def changes, etc... that make up your solution

What Do SharePoint Server and Donald Trump Have in Common? Courtesy Si.com

Cache! TechNet: (Cache Settings) Additional performance and capacity factors

Cache

Cache Config Levels Web App – Disk based caching in web.config Site collection – configure output cache and object cache settings Site – output cache settings Page layout – output cache Web Part – settings in dwp code Query – i.e. RSS Feed cache is 5 min by default, cross list query

Web App – Disk based caching in web.config

Site collection – configure output cache and object cache settings

Site – output cache settings

Page layout – output cache

Web Part – settings in dwp code

Query – i.e. RSS Feed cache is 5 min by default, cross list query

Cache Recommendations Cache is but…. Setting memory based caching can waste valuable memory (ASP.NET may flush cache to make room!) Never cache search results – disable search results layout page cache Never cache personalized web parts

Cache is but….

Setting memory based caching can waste valuable memory (ASP.NET may flush cache to make room!)

Never cache search results – disable search results layout page cache

Never cache personalized web parts