190 likes | 367 Views
Simplify External Collaboration with the Extranet Collaboration Toolkit for SharePoint. Dave Mowers President Securitay Inc. Who/What is Securitay?. Founded by Dave Mowers & Jeff Spelman in late 2005 “Micro” ISV Consulting services to ISVs, Enterprise organizations & Microsoft
E N D
Simplify External Collaboration with the Extranet Collaboration Toolkit for SharePoint Dave Mowers President Securitay Inc.
Who/What is Securitay? • Founded by Dave Mowers & Jeff Spelman in late 2005 • “Micro” ISV • Consulting services to ISVs, Enterprise organizations & Microsoft • Group Management Portal (GMP) released Jan 2007 • Security Policy Manager (SPM) launched at RSA 2009
Session Objectives And Takeaways • Session Objective • Outline the technical considerations for an extranet SharePoint implementation • Describe the capabilities of the External Collaboration Toolkit for SharePoint • Key Takeaways • SharePoint can be an effective platform for external collaboration • The External Collaboration Toolkit for SharePoint provides many of the capabilities required for this scenario
Targeted Scenario • Small and Medium Business • Small professional services firms • Education • Limited number of external partners (<500) • Moderate number of collaboration sites (<100)
Challenges • Need to segregate users • Security • Cost • Must Segregate Collaboration Projects • Keep AMD from seeing Intel stuff • Extranet SharePoint setup is difficult
Constraints • Target small and mid-sized organizations • Easy to setup • Minimal infrastructure impact • Extensible to larger environments • Customizable • Support both WSS and MOSS 2007 • Easy to use for the end user
Network & Connectivity Intranet DMZ Internet http://collab https://collab.woodgrove.com
Out of Scope • ADFS • RMS • CardSpace • IAG • Multi-step, complex workflow
Trusts – Option A Corp Forest Internet Forest Trust
Trusts – Option B Corp Forest DMZ Forest Internet 1-Way Trust
Detailed Features • Installation wizard • Self-service user provisioning to the external user store • Self-service site collection provisioning • Workflow for all provisioning activities • Form-based login for external users • Friendly external user management capability • ADSI Edit is not an option! • Site collection navigation and management • Deployment documentation
Primary Features • Setup wizard • Site Collection Creation and workflow-based approval • External User Creation and workflow-based approval • Form-based Login • Self-service password reset • External User Manager • Site Manager • Profile Maintenance
Site Collection Creation Process • Site collections have the proper security boundaries • Increase efficiency using self-service • Revert context to service process to perform privileged operations • Workflow and administrative approval if you don’t fully trust your users • Automatically creates SharePoint groups • External and internal URLs created automatically
External User Creation Process • Use ADAM to store external user accounts • ADAM & AD similarity makes for a flexible solution • SharePoint builds on ASP.NET Membership Provider • LDAP membership provider only available with MOSS, so we use AD Membership Provider • Workflow and admin approval if you don’t fully trust your users • Uses e-mail address as unique identifier • Disable AD password policies if justified
External User Logon • Forms-based logon • .NET Membership Provider logon control • Self-service password reset (optional) • Profile data collected on first login • Forced password change on first login
External User Management • User Manager Web Part • Modify user profile • Reset password • Enable/Disable account • Delete account
Availability • Available now at http://www.microsoft.com/collabkit • Source code available at http://www.codeplex.com/cks
Contacts David Mowers - david.mowers@securitay.com www.securitay.com