Connecting SharePoint 2010 Service Applications with other

FarmsAlex Pearce

SharePoint Saturday UK

Alex Pearce Microsoft SharePoint MVP Blog: www.bfcnetworks.com Email: apearce@bfcnetworks.com Twitter: @alex_pearce

Alex Pearce Personal Interest in SharePoint…

– Education– Learning Gateways/Learning Platforms– User Adoption– Integration

Founder of the Learning Gateway User Group and co-founder of the Learning Gateway Conference

Agenda

Introduction to Publishing Service Applications

Creating a trust between SharePoint Farms

Connecting Metadata My Sites Search

http://www.microsoft.com/downloads/details.aspx?FamilyID=fd686cbb-8401-4f25-b65e-3ce7aa7dbeab&displaylang=en

Topologies for SharePoint 2010

http://www.microsoft.com/downloads/details.aspx?FamilyID=fd686cbb-8401-4f25-b65e-3ce7aa7dbeab&displaylang=en

Example

Web Applications

User

Web Analytics

SearchMetadata

Service Applications

Publishing Farm Receiving Farm

Web Applications

Service Applications

Real Life - Redstone

Real Life - Redstone

Redstone PLCMetadata Service Application

User Profile Service ApplicationSearch Service Application

Redstone Managed SolutionsRedstone i4eRedstone Converged Solutions

Creating a Trust

Creating a Trust between Farms

Export Certificates Root Certificate (PowerShell) Security Token Certificate (PowerShell)

Import Certificates (PowerShell & GUI) Farm Permissions (PowerShell)

Application Discovery and Load Balancing Service Application

Export Certificate

Publishing Server Root Certificate

Receiving Server Root Certificate Security Token Certificate

Export Certificate - Publishing

1. $rootCert = (Get-SPCertificateAuthority).RootCertificate

2. $rootCert.Export("Cert") | Set-Content C:\Cert\PublishingFarmRoot.cer -Encoding byte

Export Certificate - Receiving

1. $rootCert = (Get-SPCertificateAuthority).RootCertificate

2. $rootCert.Export("Cert") | Set-Content C:\Cert\ReceivingFarmRoot.cer –Encoding byte

3. $stsCert = (Get-SPSecurityTokenServiceConfig).LocalLoginProvider.SigningCertificate

4. $stsCert.Export("Cert") | Set-Content C:\Cert\ReceivingFarmSTS.cer -Encoding byte

Import Certificates

Publishing Server needs to have both Root and Security Token Certificates

Receiving Server only requires the Root Certificate.

Import Certificate - Publishing

1. $trustCert = Get-PfxCertificate C:\Cert\ReceivingFarmRoot.cer

2. New-SPTrustedRootAuthority ReceivingFarm -Certificate $trustCert

3. $stsCert = Get-PfxCertificate c:\Cert\receivingFarmSTS.cer

4. New-SPTrustedServiceTokenIssuer ReceivingFarm -Certificate $stsCert

Import Certificate - Receiving

1. $trustCert = Get-PfxCertificate C:\cert\PublishingFarmRoot.cer

2. New-SPTrustedRootAuthority PublishingFarm -Certificate $trustCert

Farm Permission

Give receiving farm permission to publishing farm

Farm Permission – Get FarmID

1. (Get-SPFarm).Id

Farm Permission – Get FarmID $security = Get-SPTopologyServiceApplication | Get-

SPServiceApplicationSecurity $claimProvider = (Get-SPClaimProvider

System).ClaimProvider $principal = New-SPClaimsPrincipal -ClaimType

http://schemas.microsoft.com/sharepoint/2009/08/claims/farmid -ClaimProvider $claimProvider -ClaimValue <farmid>

Grant-SPObjectSecurity -Identity $security -Principal $principal -Rights "Full Control"

Get-SPTopologyServiceApplication

Demo

CREATING A TRUST BETWEEN FARMS

How to create a trust between 2 SharePoint 2010 farms

Publishing Farm: Green

Receiving Farm: Blue

Demo

CREATING A TRUST BETWEEN FARMS

How to create a trust between 2 SharePoint 2010 farms

Metadata Publishing

What are we publishing?

Metadata Term Store Content Type Hub

Metadata Service Application

Publish the Service Application Copy URL Connect Service Application Give permission Set properties Test metadata in Receiving farm Content Type publishing

Demo

CONNECTING THE METADATA SERVICE APPLICATION

Publishing the metadata service application to a receiving farm

Demo

Publishing: Green Receiving: Blue

User Profile

Publishing

What are we publishing?

‘I Like It’ link to My Site Link to My Site

User Profile Service Application

Publish the Service Application Copy URL Connect Service Application Give permission

Demo

CONNECTING THE USER PROFILE SERVICE APPLICATION

Publishing the user profile service application to a receiving farm

Demo

Publishing: Green Receiving: Blue

PublishingSearch

What are we publishing?

The ability to search Not the Search Centre

Search Service Application

Publish the Service Application Copy URL Connect Service Application Give permission Configure Search to Crawl

Demo

CONNECTING THE SEARCH SERVICE APPLICATION

Publishing the search service application to a receiving farm

Demo

Publishing: Green Receiving: Blue

Web Applications

User

Web Analytics

SearchMetadata

Service Applications

Publishing Farm Receiving Farm

Web Applications

Service Applications

Conclusion

Thank you for attending!

Email: apearce@bfcnetworks.com

Blog: www.bfcnetworks.com

Twitter: @alex_pearce