Avoiding Blunders of SharePoint Administration

385 views

Published on

SharePoint Saturday Baltimore with Scott Hoag

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
385
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
12
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Avoiding Blunders of SharePoint Administration

  1. 1. #spsBmore #BlundersAvoiding Administrator BlundersScott Hoag and Dan Usher
  2. 2. #spsBmore #Blunderswho am I?DanUsherdcu79
  3. 3. #spsBmore #Blunderswhat about this guy?
  4. 4. #spsBmore #Blundersabout you
  5. 5. #spsBmore #Blundersrules of the road
  6. 6. #spsBmore #Blunders
  7. 7. #spsBmore #Blunders
  8. 8. #spsBmore #Blunderscreating orphans
  9. 9. #spsBmore #Blunderspermissions managementPermissions…Permissions!Permissions!Permissions!Permissions!
  10. 10. #spsBmore #Blunderspublishpublish
  11. 11. #spsBmore #Blundersthe recycle binManage the Recycle Bin of a site
  12. 12. #spsBmore #Blunderstesting workflows as a deitydeclarativeworkflowautostartonemailenabled (Property> stsadm –o setproperty –pn declarativeworkflowautostartonemailenabled –pv true
  13. 13. #spsBmore #Blundersdeleting the wrong item
  14. 14. #spsBmore #Blundersweb part fun…
  15. 15. #spsBmore #Blunders
  16. 16. #spsBmore #Blunderstune your analyticsDataset Characteristics ValueSharePoint components 30kUnique users 117kUnique queries 68kUnique assets 500kReporting DB data size? 200GB per dayCapacity requirements for the Web Analytics Shared Service in SharePoint Server73TB per year511TB for 7 years
  17. 17. #spsBmore #Blunderspermissive file handling> $webApp = Get-SPWebApplication("http://intranet.contoso.com")> $webApp.AllowedInlineDownloadMimeTypes.Add("application/pdf")> $webApp.Update()
  18. 18. #spsBmore #Blundersrunning in circlesKB896861DisableLoopbackCheck & SharePoint: What every admin and developer should
  19. 19. #spsBmore #Blunderspausing IIS
  20. 20. #spsBmore #Blunderslost passphrasesTechNetCodePlex> $passphrase = ConvertTo-SecureString -asPlainText -Force> Set-SPPassPhrase -PassPhrase $passphrase -Confirm
  21. 21. #spsBmore #Blunderscertificate revocation list<psuedocode>if (!server.HasInternetConnectivity()) {server.DisableCRLCheck();}</psuedocode>Certificate Revocation List Check and SharePoint 2010 without an InternetSOFTWAREMicrosoftWindowsCurrentVersionWinTrustTrust ProvidersSoftware Publishing
  22. 22. #spsBmore #Blunders
  23. 23. #spsBmore #Blundershardware and software requirements
  24. 24. #spsBmore #Blundersnot enough service accounts
  25. 25. #spsBmore #Blundersprimary service accountsAccount Purpose RequirementsSQL Server Runs SQL Server • Domain user account• No rights in SharePointSetup Account Installs the bits and performs initialconfiguration• Domain user account• Member of Local Admins on eachserver in the farm• securityadmin and dbcreator on SQLinstanceFarm Account Used for configuring and managingthe farm and runs primary services(e.g. SPTimerV4)• Domain account• Additional rights are automaticallygranted as part of installation (bothserver and SQL)
  26. 26. #spsBmore #Blundersother service accountsAccount Purpose RequirementsMySitesApplication PoolWorker process identity for MySites • Domain user account• Managed accountContentApplication PoolWorker process identity for Contentweb applications• Domain user account• Managed accountServicesApplication PoolWorker process identity for ServiceApplication Pools• Domain account• Managed accountSearch ServiceProcessProcess identity for SharePointFoundation (Help) search serviceand SharePoint Search service• Domain account• Managed accountSearch ServiceDefault ContentAccessUsed to crawl content specified incontent sources• Domain accountUser Profile ImportAccountAccount used to import (andoptionally export) user data from anidentity store• Domain account• Replicate Directory Changes in AD
  27. 27. #spsBmore #Blundersstill more service accountsAccount Purpose RequirementsObject CacheSuper UserProcesses items in the object cacheof a web application• Domain user account• Managed account• Full Control User Policy on target webapplication(s)Object CacheSuper ReaderProcesses items in the object cacheof a web application• Domain user account• Managed account• Full Read User Policy on target webapplication(s)
  28. 28. #spsBmore #Blundersrunning the farm configuration wizard
  29. 29. #spsBmore #Blunderssql foibles
  30. 30. #spsBmore #Blunders
  31. 31. #spsBmore #Blunderssandboxed solutions…HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows NTRPCHKEY_USERSAccountSIDSOFTWAREMicrosoftWindowsCurrentVersionWinTrustTrustProvidersSoftwarePublishing
  32. 32. #spsBmore #Blundersmanaging managed paths
  33. 33. #spsBmore #Blunderstrim your (audit) logs> stsadm -o trimauditlog –date 20120502 –databasename SP2010_Content_FEDSPUG
  34. 34. #spsBmore #Blunderstrim your (audit) logs
  35. 35. #spsBmore #Blunderssetting up KerberosConfiguring Kerberos Authentication for Microsoft SharePoint 2010 Products
  36. 36. #spsBmore #Blunders
  37. 37. #spsBmore #Blundersquestions
  38. 38. #spsBmore #Blundersfind us@ciphertxtscott.hoag@appliedis.comhttp://psconfig.com@dcu79usher_daniel@bah.comhttp://www.spdan.com

×