Your SlideShare is downloading. ×
  • Like
  • Save
SharePoint 2010 public facing sites
Upcoming SlideShare
Loading in...5

Thanks for flagging this SlideShare!

Oops! An error has occurred.


Now you can save presentations on your phone or tablet

Available for both IPhone and Android

Text the download link to your phone

Standard text messaging rates apply

SharePoint 2010 public facing sites



Published in Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads


Total Views
On SlideShare
From Embeds
Number of Embeds



Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

    No notes for slide
  • PAUL WILL START 10 MINUTE TIMER Blended SharePoint 2010 & .NET Solutions
  • PAUL
  • PAULBullet Points from the email blastDeveloping a Strategy for Leveraging SharePoint Inside-OutNew Internet Friendly Licensing in SharePoint 2010Branding for SuccessAuthentication and Anonymous AccessSelecting the Right Extranet TopologyForefront Threat Management and Unified Access GatewaysBest Practices & Avoiding Pitfalls
  • PAUL
  • MICHAELLimited to ONE Internet domain. (Not AD domain) Example: NOT:*** Fast Search/Enterprise SharePointYou cannot deploy both on the same license. The license only covers SharePoint Enterprise Internet OR Fast Search Server. Not both concurrently.*** SharePoint Foundation if you expose it externally you need to purchase a Windows external connector or your server.
  • MICHAELMicrosoft Licensing check with a Licensing Representative BEFORE you deploy your site!
  • MICHAELChoose a SharePoint Expert:Branding in needs expert proficiency due to it’s complexity.Start from close to scratch: Start from a minimal.master and only include needed controls (moderate)(icon)Performance is Key: use Fiddler to assist you with what the page is sending to the browserReduce Javascript Payloads: some of the following scripts may not be needed depending on your site. Remove the .js file if it’s functionality is not needed.
  • MICHAELWindows Auth Remote UsersExtranet Remote Partners/Clients/etcAnonymous Read-only users ***Although you can allow users to post to lists (blogs, comments, etc) but you cannot set them up to contribute to libraries.
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAUL
  • PAULIf they need help, we’ve had access to SharePoint 2010 for over a year – we can guide them thru the processMention Downloads, Recording & Email invite to ECM in SharePoint 2010 WebinarExplain SharePoint GamePLAN Q & A - EVERYONE
  • PAUL
  • PAULIf they need help, we’ve had access to SharePoint 2010 for over a year – we can guide them thru the processMention Downloads, Recording & Email invite to ECM in SharePoint 2010 WebinarExplain SharePoint GamePLAN WEBINAR: Tuesday October 26th 11:00 AM PSTCOMPOSER Site: About to get a makeover as a branded 2010 site, build using Composer & MaestroPRICING / LICENSING: Free SharePoint Foundation Version – Composer Only~$299 for Foundation BuildComposer Standard and Enterprise is sold per-UserMaestro Standard and Enterprise is sold per-serverSee the site for pricing details & info in a follow-up email w/ the Q & A contentQ & A – EVERYONEExtranet Topologies for SharePoint 2010 Security Hardening Permissions and Security Settings


  • 1. Best Practices for SharePoint 2010 Public Facing Sites
  • 2. Speakers
    Michael Van Cleave
    Sr. Architect & Practice Lead
    Paul Papanek Stork
    SharePoint MVP & Author
    Chief Architect & Practice Lead
  • 3. Agenda
    Discuss the Business Case
    New Internet Friendly Licensing
    Branding Tips for Success
    Authentication and Anonymous Access
    Extranet Topologies
    Security Gateways
    Best Practices/Avoiding Common Pitfalls
    Resources and Q & A
  • 4. Audience Survey
    What is your primary role in implementing SharePoint initiatives?
    Decision Maker, Influencer or Sponsor
    Admin, Architect or Developer
    Analyst or End User
  • 5. The Business Case
    Market Trends
    Collaborate with business partners/clients
    Connect your virtual offices or telecommuting employees
    Create a more compelling internet presence (e.g. including dynamic content, workflow, etc.)
    Why SharePoint?
    Leverage content contributors / SME’s throughout your organization
    Provide more timely, pointed content with ease
    Build on your existing SharePoint investment
    Don’t start from scratch!
    SharePoint is specifically built for these scenarios
  • 6. New Licensing Models
    Internet Server licensing
    No CALs required for external users
    SP Server 2010 for Internet Sites, Standard
    Same functionality as Standard CAL
    Limited to one Internet domain (i.e. not AD domain)
    SP Server 2010 for Internet Sites, Enterprise
    Same functionality as with Enterprise CAL
    Includes FAST Search Server
    SharePoint Foundation
    Free, essentially
  • 7. New Licensing Models – Cont’d
    Determine upfront what functionality you need for your public site
    Licensing costs differ significantly
    Development costs can differ significantly
    Microsoft Licensing is complex!
    Contact us if you need help:
  • 8. Branding for Success
    Start from “close to” scratch
    Performance is Key
    Consider image format and size
    Use Fiddler or other page analyzers
    Reduce JavaScript payloads (Cui.js, Sp.ui.js, Core.js)
    Turn off Naming ActiveX control
    Web app general settings page
    Organize your content
    Utilize SharePoint lists, calendars, web parts etc.
    Leverage content expiration, versioning, alerts, auditing, etc.
    Choose a creative design firm that understands your brand, your content and SharePoint!
    Use a SharePoint Expert for implementation
  • 9. Authentication Choices
    Windows Authentication
    Native windows authentication methods do not work well over internet
    Basic Authentication over HTTPS
    Alternative to native windows authentication
    Forms Based Authentication
    Alternative user store (SQL, LDAP, etc.)
    Full support for client application integration.
    Anonymous Access
    Read-only users
  • 10. Configuring FBA & Anonymous Access
  • 11. Audience Survey
    Where are you on the SharePoint 2010 adoption curve?
    Already using SharePoint 2010
    Will implement/upgrade in 0-3 Months
    Will implement/upgrade in 4-12 Months
    No near-term plans to upgrade/use
    Unsure – need more information
  • 12. Selecting the Right Topology
    Questions to Ask
    Who are the potential users?
    How will the site be used?
    What is in the existing environment?
    Internet Facing Topologies
    Edge Firewall
    Back to Back Perimeter Network
    Split Back to Back Perimeter Network
  • 13. Edge Firewall
    Good for light duty/low security installations
    Best for telecommuting employees
  • 14. Edge Firewall Pros/Cons
    Least amount of hardware & configuration
    All Data stored within the trusted network
    Only one set of servers to maintain
    A single farm to build and maintain
    May not need Internet license
    Lowest Security
    Only one firewall protecting Internal network
  • 15. Perimeter Network
    Good for an Internet only web site.
    Good for public hosting environment
  • 16. Perimeter Network Pros/Cons
    Single farm simplifies sharing and maintenance
    No external user access to internal network
    Content Deployment between internal and external farm possible
    Additional infrastructure and configuration required
    Internal users have two user accounts
    Content Deployment requires external sites to be Read Only
  • 17. Split Perimeter
    Best for an Extranet Collaboration scenario
    One way AD Trust
  • 18. Split Perimeter Pros/Cons
    SQL servers not in Perimeter network
    Internal users don’t need two accounts
    External users can use Windows (Basic) authentication
    Requires the most hardware
    Most Complex solution
  • 19. Gateway Servers
    ISA Server 2006
    Forefront TMG Server 2010
    Forefront UAG Server 2010
  • 20. Threat Management Gateway
    Designed for Outbound Access Control
    SharePoint publishing
    Network load balancing
    Array support
    Mobile access
    Rich authentication
    Unified portal
    Direct Access
  • 21. Unified Access Gateway
    Designed for Inbound Access Control
    SharePoint publishing
    Network load balancing
    Array support
    Mobile access
    Rich authentication
    Endpoint health detection
    Granular access policies
    Information leakage mitigation
    Direct Access
  • 22. Publishing a SharePoint Site using TMG
  • 23. Audience Survey
    What do you see as next steps?
    Learn more about Public Facing Sites in SharePoint 2010
    Plan& Design a Public Facing SharePoint Site
    Implement a Public Facing SharePoint Site in SharePoint 2010
    Get some help!
  • 24. Avoiding Pitfalls
    Anonymous access users still need licenses
    People Picker issues with Read Only Domain Controllers
    Admin and Service Accounts should be from Trusted Domain
    Deactivate/Block features and services that won’t be used (e.g. MySites)
    Don’t use Themes for SharePoint Foundation 2010
    Don’t just move to SharePoint – use it’s features!
  • 25. Best Practices
    Start with a “Least Privileges” Security Account approach
    Set Anonymous Policy for the External Web Application Zone
    Use Content Deployment for Read Only WCM systems
    Service accounts should all be Managed Accounts with automated password
    Leverage multiple zones
    Analyze content & put it into the proper SharePoint structures
  • 26. SharePoint GamePLAN®
    Jumpstart your SharePoint deployment
    Conducted by an MCM, MVP or Sr. Architect
    Education on SharePoint 2010
    Brainstorming & Conceptual Design
    Assessment – Hardware, AD, Skills, etc.
    Planning & Implementation Roadmap
    $4,500 + travel for a 3-day engagement
    Utilize Microsoft Vouchers (as applicable)
    Email or
    Call 800-445-1279
    Several handouts are available for download from LiveMeeting:
    SharePoint 2010 GamePLAN
    SharePoint Composer/Maestro
    Company Profile
    FREE Trial Version of SharePoint Composer:
  • 28. Resources and Q & A
    Assessment & Planning
    Schedule a SharePoint GamePLAN engagement
    Learn more about SharePoint 2010
    Next Webinar: “Tour de SharePoint 2010 with our SharePoint MVP's & Certified Master Candidates” on 5/3/2011
    Online resources
    Extranet Topologies for SharePoint 2010
    Plan Security Hardening
    Account Permissions and Security Settings
    Contact Us: or 800-445-1279