DU
Uploaded byDan Usher
PPTX, PDF579 views

SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blunders

This document discusses common administrator mistakes and blunders when managing SharePoint, such as creating orphaned sites, improper permissions management, deleting the wrong items, not configuring service accounts correctly, and improperly trimming audit logs. It provides guidance on best practices for avoiding such issues by following rules for permissions, using the right accounts, and properly configuring and maintaining the farm.

Embed presentation

Download to read offline
Avoiding Administrator Blunders Scott Hoag and Dan Usher #FEDSPUG #Blunders
who am I? #FEDSPUG #Blunders
who’s that other guy? Dan Usher usher #FEDSPUG #Blunders
#FEDSPUG #Blunders
about you #FEDSPUG #Blunders
rules of the road #FEDSPUG #Blunders
#FEDSPUG #Blunders
creating orphans #FEDSPUG #Blunders
permissions management Permissions… Permissions! Permissions! Permissions! Permissions! #FEDSPUG #Blunders
publish #FEDSPUG #Blunders
the recycle bin #FEDSPUG #Blunders Manage the Recycle Bin of a site
testing workflows as a deity > stsadm –o setproperty –pn declarativeworkflowautostartonemailenabled –pv true #FEDSPUG #Blunders declarativeworkflowautostartonemailenabled (Property
deleting the wrong item #FEDSPUG #Blunders
#FEDSPUG #Blunders
tune your analytics Dataset Characteristics Value SharePoint components 30k Unique users 117k Unique queries 68k Unique assets 500k Reporting DB data size? 511TB per years 73TB per 7day 200GB for year #FEDSPUG #Blunders Capacity requirements for the Web Analytics Shared Service in SharePoint
permissive file handling > $webApp = Get-SPWebApplication("http://intranet.contoso.com") > $webApp.AllowedInlineDownloadMimeTypes.Add("application/pdf") > $webApp.Update() #FEDSPUG #Blunders
running in circles KB896861 #FEDSPUG #Blunders DisableLoopbackCheck & SharePoint: What every admin and developer should
pausing IIS #FEDSPUG #Blunders
lost passphrases > $passphrase = ConvertTo-SecureString -asPlainText -Force > Set-SPPassPhrase -PassPhrase $passphrase -Confirm TechNet CodePlex #FEDSPUG #Blunders
certificate revocation list <psuedocode> if (!server.HasInternetConnectivity()) { server.DisableCRLCheck(); } </psuedocode> SOFTWAREMicrosoftWindowsCurrentVersionWinTrustTrust ProvidersSoftware Publishing #FEDSPUG #Blunders Certificate Revocation List Check and SharePoint 2010 without an Internet
#FEDSPUG #Blunders
not enough service accounts #FEDSPUG #Blunders
primary service accounts Account Purpose Requirements SQL Server Runs SQL Server • Domain user account • No rights in SharePoint Setup Account Installs the bits and performs initial • Domain user account configuration • Member of Local Admins on each server in the farm • securityadmin and dbcreator on SQL instance Farm Account Used for configuring and managing • Domain account the farm and runs primary services • Additional rights are automatically (e.g. SPTimerV4) granted as part of installation (both server and SQL) #FEDSPUG #Blunders
other service accounts Account Purpose Requirements MySites Application Worker process identity for MySites • Domain user account Pool • Managed account Content Application Worker process identity for Content • Domain user account Pool web applications • Managed account Services Worker process identity for Service • Domain account Application Pool Application Pools • Managed account Search Service Process identity for SharePoint • Domain account Process Foundation (Help) search service • Managed account and SharePoint Search service Search Service Used to crawl content specified in • Domain account Default Content content sources Access User Profile Import Account used to import (and • Domain account Account optionally export) user data from an • Replicate Directory Changes in AD identity store #FEDSPUG #Blunders
still more service accounts Account Purpose Requirements Object Cache Processes items in the object cache • Domain user account Super User of a web application • Managed account • Full Control User Policy on target web application(s) Object Cache Processes items in the object cache • Domain user account Super Reader of a web application • Managed account • Full Read User Policy on target web application(s) #FEDSPUG #Blunders
running the farm configuration wizard #FEDSPUG #Blunders
#FEDSPUG #Blunders
sandboxed solutions… HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows NTRPC HKEY_USERSAccountSIDSOFTWAREMicrosoftWindowsCurrentVersionWinTrustTrust ProvidersSoftwarePublishing #FEDSPUG #Blunders
managing managed paths #FEDSPUG #Blunders
trim your (audit) logs > stsadm -o trimauditlog –date 20120502 –databasename SP2010_Content_FEDSPUG #FEDSPUG #Blunders
#FEDSPUG #Blunders
questions #FEDSPUG #Blunders
find us @ciphertxt @usher dan@spdan.com scott.hoag@appliedis.com http://www.spdan.com http://www.psconfig.com #FEDSPUG #Blunders

More Related Content

PPTX
SPSPhilly - SharePoint 2010 Tips & Tricks of the Trade - Avoiding Administrat...
byScott Hoag
 
PPTX
Tips and Tricks for SharePoint 2010 - Avoiding IT Pro Blunders
byDan Usher
 
PPTX
Building the Perfect SharePoint 2010 Farm - Sharing the Point South America
byMichael Noel
 
KEY
BEAR Architecture
byAkihito Koriyama
 
PDF
2014 02-26 - Princeton SUG presents - Getting Started with Office 365
byDan Usher
 
PPTX
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
byDan Usher
 
PPT
Bullying
byArnavJain410
 
PPTX
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
byDan Usher
 
SPSPhilly - SharePoint 2010 Tips & Tricks of the Trade - Avoiding Administrat...
byScott Hoag
 
Tips and Tricks for SharePoint 2010 - Avoiding IT Pro Blunders
byDan Usher
 
Building the Perfect SharePoint 2010 Farm - Sharing the Point South America
byMichael Noel
 
BEAR Architecture
byAkihito Koriyama
 
2014 02-26 - Princeton SUG presents - Getting Started with Office 365
byDan Usher
 
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
byDan Usher
 
Bullying
byArnavJain410
 
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
byDan Usher
 

Similar to SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blunders

PPTX
SharePoint Saturday Philly - SharePoint 2010 Administrative Blunders
byDan Usher
 
PPTX
Baltimore SharePoint Users Group - Worst Practices and Administrative Blunders
byDan Usher
 
PPTX
Baltimore SPUG - Worst Practices and Blunders
byScott Hoag
 
PPTX
SharePoint 2010 - Installation from the Ground Up
byDan Usher
 
PDF
SharePoint 2010 best practices for infrastructure deployments SharePoint Sat...
byKnowledge Cue
 
PPTX
SPSNYC SharePoint Worst Practices
byScott Hoag
 
PPTX
Avoiding Blunders of SharePoint Administration
byDan Usher
 
KEY
Sharepoint
byYanal Mahameed
 
PPTX
Pitfalls of Migrating to SharePoint 2010
byDan Usher
 
PDF
2014-05-17 SPS Baltimore - Worst Practices of SharePoint
byDan Usher
 
PDF
Samuel Zürcher service applications in sp2013
byDigicomp Academy AG
 
PPTX
KMWorld SharePoint 2010-Admin 101
byChris McNulty
 
PPTX
SharePoint Administration: Tips from the Field
bywahidsaleemi
 
PDF
SharePoint Saturday The Conference 2011 - Extranets & Claims Authentication
byBrian Culver
 
PDF
Sharepoint 2010 Training
byDeccansoft
 
PDF
Putting the "Share" and "Point" back in SharePoint 2013
byC/D/H Technology Consultants
 
PDF
Getting SharePoint 2010 Deployment Right final
byvmaximiuk
 
PPTX
SharePoint Speedmetal for Admins by Chris McNulty - SPTechCon
bySPTechCon
 
PPTX
SharePoint 2010 Online for Developer
byK.Mohamed Faizal
 
PPSX
SharePoint Careers and Introduction to SharePoint 2013 Services and Topology
byEli Robillard
 
SharePoint Saturday Philly - SharePoint 2010 Administrative Blunders
byDan Usher
 
Baltimore SharePoint Users Group - Worst Practices and Administrative Blunders
byDan Usher
 
Baltimore SPUG - Worst Practices and Blunders
byScott Hoag
 
SharePoint 2010 - Installation from the Ground Up
byDan Usher
 
SharePoint 2010 best practices for infrastructure deployments SharePoint Sat...
byKnowledge Cue
 
SPSNYC SharePoint Worst Practices
byScott Hoag
 
Avoiding Blunders of SharePoint Administration
byDan Usher
 
Sharepoint
byYanal Mahameed
 
Pitfalls of Migrating to SharePoint 2010
byDan Usher
 
2014-05-17 SPS Baltimore - Worst Practices of SharePoint
byDan Usher
 
Samuel Zürcher service applications in sp2013
byDigicomp Academy AG
 
KMWorld SharePoint 2010-Admin 101
byChris McNulty
 
SharePoint Administration: Tips from the Field
bywahidsaleemi
 
SharePoint Saturday The Conference 2011 - Extranets & Claims Authentication
byBrian Culver
 
Sharepoint 2010 Training
byDeccansoft
 
Putting the "Share" and "Point" back in SharePoint 2013
byC/D/H Technology Consultants
 
Getting SharePoint 2010 Deployment Right final
byvmaximiuk
 
SharePoint Speedmetal for Admins by Chris McNulty - SPTechCon
bySPTechCon
 
SharePoint 2010 Online for Developer
byK.Mohamed Faizal
 
SharePoint Careers and Introduction to SharePoint 2013 Services and Topology
byEli Robillard
 

More from Dan Usher

PDF
SPS Pittsburgh - Getting Started with Office 365
byDan Usher
 
PDF
SPS NYC - Getting started with Office 365 for IT Pros
byDan Usher
 
PDF
2014 09-20 - SPSNJ - Worst Practices of SharePoint
byDan Usher
 
PDF
2014 09-20 - SPSNJ - Getting Started with Office 365
byDan Usher
 
PDF
SPTechCon 2014 - Boston - Worst practices of SharePoint
byDan Usher
 
PDF
SPTechCon - Boston 2014 - Getting started with Office 365
byDan Usher
 
PPTX
2014 08-15 - Getting Started with Office 365 - Office 365 Ramp Up
byDan Usher
 
PPTX
SPSNYC 2014 - Authentication and Authorization
byDan Usher
 
PPTX
2014 05-19 - getting started with office 365.release
byDan Usher
 
PDF
2014-005-17 SPS Baltimore - Getting Started with Office 365
byDan Usher
 
PPTX
SharePoint Intersections - SP11 - SharePoint and IaaS - The OnPrem in the Cloud
byDan Usher
 
PPTX
SharePoint Intersections - SP10 - Getting Started with Office 365 - Identity,...
byDan Usher
 
PPTX
SharePoint Intersections - SP09 - Introduction to SharePoint 2013 for IT Pros
byDan Usher
 
PDF
2014-04-05 - SPSPhilly - Authentication and Authorization
byDan Usher
 
PDF
2014-04-05 - SPSPhilly - Getting Started with Office 365
byDan Usher
 
PDF
2014-03-20 - Baltimore SharePoint Users Group - Getting Started with Office 365
byDan Usher
 
PDF
2014 03-19 - CapArea.net SSIG - Getting Started with Office 365
byDan Usher
 
PDF
2014-03-13 - Getting Started with Office 365 at SUGDC
byDan Usher
 
PDF
2013-09-12 - SUGDC - Office 365 and Hybrid Solutions
byDan Usher
 
PDF
2013-07-24 - CapArea.NET SSIG - SharePoint 2013, A Brief Capability Overview ...
byDan Usher
 
SPS Pittsburgh - Getting Started with Office 365
byDan Usher
 
SPS NYC - Getting started with Office 365 for IT Pros
byDan Usher
 
2014 09-20 - SPSNJ - Worst Practices of SharePoint
byDan Usher
 
2014 09-20 - SPSNJ - Getting Started with Office 365
byDan Usher
 
SPTechCon 2014 - Boston - Worst practices of SharePoint
byDan Usher
 
SPTechCon - Boston 2014 - Getting started with Office 365
byDan Usher
 
2014 08-15 - Getting Started with Office 365 - Office 365 Ramp Up
byDan Usher
 
SPSNYC 2014 - Authentication and Authorization
byDan Usher
 
2014 05-19 - getting started with office 365.release
byDan Usher
 
2014-005-17 SPS Baltimore - Getting Started with Office 365
byDan Usher
 
SharePoint Intersections - SP11 - SharePoint and IaaS - The OnPrem in the Cloud
byDan Usher
 
SharePoint Intersections - SP10 - Getting Started with Office 365 - Identity,...
byDan Usher
 
SharePoint Intersections - SP09 - Introduction to SharePoint 2013 for IT Pros
byDan Usher
 
2014-04-05 - SPSPhilly - Authentication and Authorization
byDan Usher
 
2014-04-05 - SPSPhilly - Getting Started with Office 365
byDan Usher
 
2014-03-20 - Baltimore SharePoint Users Group - Getting Started with Office 365
byDan Usher
 
2014 03-19 - CapArea.net SSIG - Getting Started with Office 365
byDan Usher
 
2014-03-13 - Getting Started with Office 365 at SUGDC
byDan Usher
 
2013-09-12 - SUGDC - Office 365 and Hybrid Solutions
byDan Usher
 
2013-07-24 - CapArea.NET SSIG - SharePoint 2013, A Brief Capability Overview ...
byDan Usher
 

Recently uploaded

PDF
Raman Bhaumik - A Junior Software Developer
byRaman Bhaumik
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PDF
Machine Learning Primer: The Complete Crash Course (From Theory to Deployment)
byAeafat Ahmed Mubin
 
PDF
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
10 Things AI-First Apps Do Differently by iProgrammer Solutions
byiProgrammer Solutions Private Limited
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
PDF
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
PDF
What Is a Private LLM and Why Enterprises Need It
byAivada
 
PPTX
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
PDF
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
PPTX
Session 2 - Solving Unstructured & Complex Documents with UiPath IXP
byDianaGray10
 
PPTX
communication-skills-with-technology tools
byJaleto Sunkemo
 
PPTX
Cloud Backup Tips for IT Professionals..
byordersoftwarekeys
 
PPTX
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PPTX
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
Raman Bhaumik - A Junior Software Developer
byRaman Bhaumik
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
Machine Learning Primer: The Complete Crash Course (From Theory to Deployment)
byAeafat Ahmed Mubin
 
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
10 Things AI-First Apps Do Differently by iProgrammer Solutions
byiProgrammer Solutions Private Limited
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
What Is a Private LLM and Why Enterprises Need It
byAivada
 
Why Most GenAI Projects Fail to Scale and How to Become One of the Success St...
byEarley Information Science
 
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
Session 2 - Solving Unstructured & Complex Documents with UiPath IXP
byDianaGray10
 
communication-skills-with-technology tools
byJaleto Sunkemo
 
Cloud Backup Tips for IT Professionals..
byordersoftwarekeys
 
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 

SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blunders

  • 1.
    Avoiding Administrator Blunders Scott Hoag and Dan Usher #FEDSPUG #Blunders
  • 2.
  • 3.
    who’s that otherguy? Dan Usher usher #FEDSPUG #Blunders
  • 4.
  • 5.
  • 6.
    rules of theroad #FEDSPUG #Blunders
  • 7.
  • 8.
  • 9.
    permissions management Permissions… Permissions! Permissions! Permissions! Permissions! #FEDSPUG #Blunders
  • 10.
  • 11.
    the recycle bin #FEDSPUG#Blunders Manage the Recycle Bin of a site
  • 12.
    testing workflows asa deity > stsadm –o setproperty –pn declarativeworkflowautostartonemailenabled –pv true #FEDSPUG #Blunders declarativeworkflowautostartonemailenabled (Property
  • 13.
    deleting the wrongitem #FEDSPUG #Blunders
  • 14.
  • 15.
    tune your analytics Dataset Characteristics Value SharePoint components 30k Unique users 117k Unique queries 68k Unique assets 500k Reporting DB data size? 511TB per years 73TB per 7day 200GB for year #FEDSPUG #Blunders Capacity requirements for the Web Analytics Shared Service in SharePoint
  • 16.
    permissive file handling > $webApp = Get-SPWebApplication("http://intranet.contoso.com") > $webApp.AllowedInlineDownloadMimeTypes.Add("application/pdf") > $webApp.Update() #FEDSPUG #Blunders
  • 17.
    running in circles KB896861 #FEDSPUG #Blunders DisableLoopbackCheck & SharePoint: What every admin and developer should
  • 18.
  • 19.
    lost passphrases > $passphrase = ConvertTo-SecureString -asPlainText -Force > Set-SPPassPhrase -PassPhrase $passphrase -Confirm TechNet CodePlex #FEDSPUG #Blunders
  • 20.
    certificate revocation list <psuedocode> if (!server.HasInternetConnectivity()) { server.DisableCRLCheck(); } </psuedocode> SOFTWAREMicrosoftWindowsCurrentVersionWinTrustTrust ProvidersSoftware Publishing #FEDSPUG #Blunders Certificate Revocation List Check and SharePoint 2010 without an Internet
  • 21.
  • 22.
    not enough serviceaccounts #FEDSPUG #Blunders
  • 23.
    primary service accounts Account Purpose Requirements SQL Server Runs SQL Server • Domain user account • No rights in SharePoint Setup Account Installs the bits and performs initial • Domain user account configuration • Member of Local Admins on each server in the farm • securityadmin and dbcreator on SQL instance Farm Account Used for configuring and managing • Domain account the farm and runs primary services • Additional rights are automatically (e.g. SPTimerV4) granted as part of installation (both server and SQL) #FEDSPUG #Blunders
  • 24.
    other service accounts Account Purpose Requirements MySites Application Worker process identity for MySites • Domain user account Pool • Managed account Content Application Worker process identity for Content • Domain user account Pool web applications • Managed account Services Worker process identity for Service • Domain account Application Pool Application Pools • Managed account Search Service Process identity for SharePoint • Domain account Process Foundation (Help) search service • Managed account and SharePoint Search service Search Service Used to crawl content specified in • Domain account Default Content content sources Access User Profile Import Account used to import (and • Domain account Account optionally export) user data from an • Replicate Directory Changes in AD identity store #FEDSPUG #Blunders
  • 25.
    still more serviceaccounts Account Purpose Requirements Object Cache Processes items in the object cache • Domain user account Super User of a web application • Managed account • Full Control User Policy on target web application(s) Object Cache Processes items in the object cache • Domain user account Super Reader of a web application • Managed account • Full Read User Policy on target web application(s) #FEDSPUG #Blunders
  • 26.
    running the farmconfiguration wizard #FEDSPUG #Blunders
  • 27.
  • 28.
    sandboxed solutions… HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows NTRPC HKEY_USERSAccountSIDSOFTWAREMicrosoftWindowsCurrentVersionWinTrustTrust ProvidersSoftwarePublishing #FEDSPUG #Blunders
  • 29.
  • 30.
    trim your (audit)logs > stsadm -o trimauditlog –date 20120502 –databasename SP2010_Content_FEDSPUG #FEDSPUG #Blunders
  • 31.
  • 32.
  • 33.
    find us @ciphertxt @usher dan@spdan.com scott.hoag@appliedis.com http://www.spdan.com http://www.psconfig.com #FEDSPUG #Blunders

Editor's Notes

  • #31 The trimauditlog command was introduced in the Infrastructure Update