1 / 32

Configuring Cross-Farm Services in Microsoft SharePoint 2010

OSP401. Configuring Cross-Farm Services in Microsoft SharePoint 2010. Shannon Bray Technical Architect | Training Director Planet Technologies. Shannon Bray. MCT, MCPD(e), MCITP, MCSD, MCAD, … SharePoint 2010 Microsoft Certified Master Candidate

connie
Download Presentation

Configuring Cross-Farm Services in Microsoft SharePoint 2010

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. OSP401 Configuring Cross-Farm Services in Microsoft SharePoint 2010 Shannon Bray Technical Architect | Training Director Planet Technologies

  2. Shannon Bray • MCT, MCPD(e), MCITP, MCSD, MCAD, … • SharePoint 2010 Microsoft Certified Master Candidate • Automating SharePoint 2010 with Windows PowerShell 2.0 • Technical Architect | Training Director • President of Colorado SharePoint User’s Group

  3. In this session you will learn to: • Understand the Service Application Architecture • Understand Key Concepts • Understand Service Federation and How it Works • The Steps Include … • Test the Federated Service Environment • Troubleshoot the Federated Service Environment

  4. To Start Out With … • Two Farms • http://enterprise.teched.local • http://internet.teched.local • No SharePoint Service Accounts • No SharePoint Service Applications • No SharePoint Content Databases in SQL Server

  5. To Start Out With … • Two Farms • http://enterprise.teched.local • http://internet.teched.local • No SharePoint Service Accounts • No SharePoint Service Applications • No SharePoint Content Databases in SQL Server • Everything will be built during the presentation!!!

  6. Build Core Infrastructures Shannon Bray Technical Architect | Training Director Planet Technologies demo

  7. Understand the SA Architecture • Services can be consumed “a la carte” • The service architecture is extensible • Services are supported on SharePoint Foundation • Services can be scaled out • Services can be resilient \ redundant • Services can be Federated

  8. Understand Key Concepts • Service • Service Machine Instance • Service Application • Service Application Proxy • Service Consumer • Service Proxy Groups • Deploying Service Applications • Automatic Services

  9. Understand Federation and How it Works • Automatic Services • Services that Support Federation • Farm Level Trust • Service Application Permissions • Domain Level Trust

  10. Automatic Services • Application Discovery and Load Balancer Service Application • Security Token Service Application

  11. Automatic Services Shannon Bray Technical Architect | Training Director Planet Technologies demo

  12. Enterprise Services Farm

  13. The Steps Include … • Create the Publishing Certificate • Create the Consumer Certificates • Exchange the Certificates • Import the Consumer Certificates on Publisher • Import the Publishing Certificate on the Consumer • Configure Trust with Consumer Farm ID • Publish the Service(s) • Consume the Service(s)

  14. Create the Publishing Certificate $rootCert = (Get-SPCertificateAuthority).RootCertificate $rootCert.Export("Cert") | Set-Content "C:\Certs\EnterpriseServicesRootCert.cer" -Encoding byte

  15. Create the Consumer Certificates $rootCert = (Get-SPCertificateAuthority).RootCertificate $rootCert.Export("Cert") | Set-Content "C:\Certs\InternetRootCert.cer" -Encodingbyte $stsCert = (Get-SPSecurityTokenServiceConfig).LocalLoginProvider.SigningCertificate $stsCert.Export("Cert") | Set-Content "C:\Certs\InternetSTSCert.cer" -Encoding byte

  16. Get the Consumer Farm ID $farmID = (Get-SPFarm).Id New-Item C:\Certs\internetConsumerFarmID.txt -type file -force -value "$farmID“

  17. Swap ‘Em Copy-Item \\$consumer\c$\Certs\InternetConsumerFarmID.txt \\$publisher\c$\Certs Copy-Item\\$publisher\c$\Certs\EnterpriseServicesRootCert.cer \\$iconsumer\c$\Certs Copy-Item \\$iconsumer\c$\Certs\InternetRootCert.cer \\$publisher\c$\Certs Copy-Item \\$iconsumer\c$\Certs\InternetSTSCert.cer \\$publisher\c$\Certs

  18. Import the Certs on Publishing $trustCert = Get-PfxCertificate "C:\certs\InternetRootCert.cer" New-SPTrustedRootAuthority Internet -Certificate $trustCert $stsCert = Get-PfxCertificate "c:\certs\InternetSTSCert.cer" New-SPTrustedServiceTokenIssuer Internet -Certificate $stsCert

  19. Import the Certs on Consumer $trustCert = Get-PfxCertificate "C:\Certs\EnterpriseServicesRootCert.cer" New-SPTrustedRootAuthorityEnterpriseServices -Certificate $trustCert

  20. Permissions to the Consumer Farm $farmID = Get-Content C:\Certs\InternetConsumerFarmID.txt $security = Get-SPTopologyServiceApplication | Get-SPServiceApplicationSecurity $claimProvider = (Get-SPClaimProvider System).ClaimProvider

  21. Topology Discovery $principal = New-SPClaimsPrincipal -ClaimType "http://schemas.microsoft.com/sharepoint/2009/08/claims/farmid" -ClaimProvider $claimProvider -ClaimValue $farmID Grant-SPObjectSecurity -Identity $security -Principal $principal -Rights "Full Control" Get-SPTopologyServiceApplication| Set-SPServiceApplicationSecurity -ObjectSecurity $security

  22. The Steps Include… Shannon Bray Technical Architect | Training Director Planet Technologies demo

  23. Test the Federated Service Environment • Managed Metadata Service from Consumer Farm

  24. Troubleshoot the Environment • Ensure Domain Trust • Consumer has permission to Topology Service • Check the ACL • FQDN • Certificates

  25. Test and Troubleshoot the Federated Services Shannon Bray Technical Architect | Training Director Planet Technologies demo

  26. Required Slide Speakers, please list the Breakout Sessions, Interactive Discussions, Labs, Demo Stations and Certification Exam that relate to your session. Also indicate when they can find you staffing in the TLC. Related Content • OSP310 - Virtualizing Your SharePoint Farm Architecture • OSP201 - The Ten Immutable Laws of Microsoft SharePoint Security • BOF18 – Advanced Architectures for Microsoft SharePoint 2010 • Product Demo Stations for SharePoint 2010 • Find Me Later At… • BOF18 – Advanced Architectures for Microsoft SharePoint 2010 • SharePoint Booth • @NoIdentity29 – Follow me… to follow me.

  27. Resources • Connect. Share. Discuss. http://northamerica.msteched.com Learning • Sessions On-Demand & Community • Microsoft Certification & Training Resources www.microsoft.com/teched www.microsoft.com/learning • Resources for IT Professionals • Resources for Developers http://microsoft.com/technet http://microsoft.com/msdn

  28. Complete an evaluation on CommNet and enter to win!

  29. © 2011 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

More Related