spsnh geoff varosky - jornata - planning and configuring extranets in share point 2010

Prepared for

Prepared byJornata61-63 Chatham StreetFourth FloorBoston, MA 02109

Submitted on April 10, 2023

Thinking SharePoint? Think Jornata.

Planning and Configuring Extranets in SharePoint

2010Geoff Varosky

Jornata

2Thinking SharePoint? Think Jornata.

About Me• Geoff Varosky– Jornata• Director, Development & Evangelism• Blogger, Speaker• BASPUG Co-Founder• SPS Boston Co-Organizer

– Blog : www.sharepointyankee.com– Email: gvarosky@jornata.com– Twitter: @gvaro– LinkedIn & Facebook

email: gvarosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro

Agenda• Thinking– What is an extranet?– Requirements– SharePoint 2010

• Doing– Configuration

• SharePoint• Alternate Access Mappings• IIS

– Management

What is an extranet?

Controlled access from external networks

Controlled access from EXTeRnAl NETworks

Simple Extranet Example

Requirements

Requirements• What do you REALLY need?– Who needs access?– How sensitive is the data?– How sensitive is your network?– Budget?

Requirements

Requirements• Who needs access?– Internal employees only?

• Active Directory– Internal employees and external users?

• Active Directory– Additional domain with restricted access

• Active Directory & Forms Based Authentication– Claims Authentication

– External• Clients, partners, consultants

– Active Directory– Forms Based Authentication– Separate or together?

Remember this…

You are giving a key to access your

company’s data in some form or

another.

Requirements

Requirements• How sensitive is the data & internal network?

– Network & SharePoint• DMZ• Separate web application• Separate farm

Requirements• How sensitive is the data & internal network?

– Security• Secure Certificates (SSL)• Encryption• Firewall

– Both hardware and software?– Content Filtering– ACLs

• Virtual Private Network• Anti-Virus and Anti-Malware• Client-based certificates• One-time passwords (RSA tokens)• Biometrics

– Retina, fingerprint, facial structure, hair and blood samples

SharePoint 2010

SharePoint 2010• Versions?– Foundation up to Enterprise Server 2010

• Claims Based Authentication– Forms Based Authentication

– Configuration (and our Demo)• Create ASP.NET Membership Database• Configure SharePoint

– Extend Web Application– web.config settings– Alternate Access Mappings

• Configure IIS• Create and Manage Users

Managing Users• IIS

– Must change default role manager and membership providers each time = DOWNTIME.

– Separate IIS Virtual Web Application

• BCS– Great way to manage users (passwords, emails, etc.)– No ability to create users without another layer of logic

• Codeplex– SharePoint 2010 FBA Pack

• http://sharepoint2010fba.codeplex.com

• 3rd Party…– DevIt.EU

• http://www.devit.eu/email: gvarosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro

Remember this too…

• Test the configuration• Review security regularly

Resources• My blog series

– Part 1 : http://go.gvaro.net/ExtranetsP1– Part 2 : http://go.gvaro.net/ExtranetsP2– Part 3 : http://go.gvaro.net/ExtranetsP3

• My Virtual Environment via CloudShare– SharePoint 2010 Information Worker image– Configured just about the same as we did here– On the desktop

• Links to my information• Link to Extranet• 14 Day Trial• Use promo code GEOFF to get first month for $29!

– NEW VM AVAILABLE SOON – SEND ME AN EMAIL!email: gvarosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro

Resources• Visual FBA configuration by Donal Conlon (Jornata)

– http://go.gvaro.net/oPnAYx

• Extranet tested topologies for SP 2010 Model– http://go.gvaro.net/SP2010ExtTopMod

• ASP.NET 2.0 Membership Database Reference– Create, Add Users, etc.– http://go.gvaro.net/AN2Mbr

• FBA Configuration in SharePoint 2010– LDAP: http://go.gvaro.net/FBALDAP– ASP.NET Membership DB: http://go.gvaro.net/FBAANMDB

Resources• PeoplePicker Wildcard Search

– http://go.gvaro.net/FBAWildCard

• Helpful Resources for Troubleshooting Membership Providers– http://go.gvaro.net/TSMemProv

• “Sign me in automatically” in FBA– http://go.gvaro.net/pAkDQP

• Meets 2nd Wednesday/Month• 6P – 8PM• Microsoft Waltham & Cambridge• http://www.bostonsharepointug.org• Twitter: @BASPUG / #BASPUG

Where am I next?• Granite State SharePoint Users Group

– http://www.granitestatesharepoint.org– October 13th – Loved this session? See it again here!

• Baltimore SharePoint Users Group– http://www.baltimoresug.org– October 20th

About Me• Geoff Varosky– Jornata• Director, Development & Evangelism• Blogger, Speaker• BASPUG Co-Founder• SPS Boston Co-Organizer

– Blog : www.sharepointyankee.com– Email: gvarosky@jornata.com– Twitter: @gvaro– LinkedIn & Facebook

spsnh geoff varosky - jornata - planning and configuring extranets in share point 2010

Technology

leveraging sharepoint for extranets

enterprise content management + sharepoint 2013 - spsnh

#spsnh #spsnj search topology & optimization

#enterprisebrain en - #spsnh

chapter 5 electronic commerce, intranets, and extranets

internet, intranets and extranets

clb379 sharepoint 2010 extranets and authentication

sharepoint 2013 extranets webinar

extranets webinar 2011_12_14

spsnh - getting started with sharepoint 2013 development

the keys to future proofing your sharepoint strategy - spsnh

maximizing value and getting the most out of sharepoint...

intranets and extranets (treeworks white paper)

social media b2 b and extranets

chap07 the internet , intranets and extranets

spsnh 5 ways sp can benefit the pmo

sentri's sharepoint 2013 extranets webinar

the internet, intranets, and extranets

spsnh - what goes where

the internet, intranets, extranets -- and vpns