OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture...
-
Upload
jonah-anthony -
Category
Documents
-
view
213 -
download
1
Transcript of OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture...
![Page 1: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/1.jpg)
![Page 2: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/2.jpg)
OFC320OFC320Infrastructure Topics Infrastructure Topics in SharePoint Products in SharePoint Products and Technologies: and Technologies: Administrative Architecture Administrative Architecture and Planning for Deploymentand Planning for Deployment
OFC320OFC320Infrastructure Topics Infrastructure Topics in SharePoint Products in SharePoint Products and Technologies: and Technologies: Administrative Architecture Administrative Architecture and Planning for Deploymentand Planning for Deployment
John NisiJohn NisiLead Architect – East Region IW CoELead Architect – East Region IW CoE
Microsoft CorporationMicrosoft Corporation
Joel OlesonJoel OlesonSenior Product Manager – Office ServersSenior Product Manager – Office Servers
Microsoft CorporationMicrosoft Corporation
![Page 3: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/3.jpg)
Session ObjectivesSession Objectives
OFC320 – Part 1OFC320 – Part 1Detailed understanding of product architecture Detailed understanding of product architecture
Understand admin components & their usesUnderstand admin components & their uses
Understand admin security Understand admin security
Understanding your deployment optionsUnderstanding your deployment options
Determine topologyDetermine topology
4 Servings of of Pudding!4 Servings of of Pudding!
OFC417 – Part 2OFC417 – Part 2Introduction to advanced deploymentsIntroduction to advanced deployments
Practical examples for deploying and Practical examples for deploying and administering an installation (MSIT)administering an installation (MSIT)
Demonstrate key concepts and UIDemonstrate key concepts and UI
3 Servings of Pudding!3 Servings of Pudding!
![Page 4: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/4.jpg)
BusinessBusinessIntelligenceIntelligence
SharePoint Technology Used by SharePoint Technology Used by OfficeOffice
CollaborationCollaboration
SearchSearch
PortalPortalBusinessBusinessFormsForms
PlatformPlatformServicesServices
Workspaces, Mgmt,Workspaces, Mgmt,Security, Storage,Security, Storage,
Topology, Site ModelTopology, Site Model
ContentContentManagementManagement
Server-based Excel Server-based Excel spreadsheets and data spreadsheets and data visualization, Report visualization, Report Center, BI Web Parts, Center, BI Web Parts,
KPIs/DashboardsKPIs/Dashboards
Integrated document Integrated document management, records management, records
management, and Web management, and Web content management content management
with policies and with policies and workflowworkflow
Rich and Web Rich and Web forms based forms based
front-ends, LOB front-ends, LOB actions, actions,
pluggable SSOpluggable SSO
Docs/tasks/calendars, Docs/tasks/calendars, blogs, wikis, e-mail blogs, wikis, e-mail integration, project integration, project management “lite”, management “lite”, Outlook integration, Outlook integration,
offline docs/listsoffline docs/lists
Enterprise scalability,Enterprise scalability,contextual relevance, contextual relevance,
rich rich people and business people and business
data searchdata search
Enterprise Portal Enterprise Portal template, Site template, Site Directory, My Directory, My Sites, social Sites, social networking, networking,
privacy controlprivacy control
![Page 5: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/5.jpg)
![Page 6: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/6.jpg)
TopicsTopics
SharePoint 101 – The New WorldSharePoint 101 – The New World
Administration Design GoalsAdministration Design Goals
Logical ArchitectureLogical ArchitectureRe-architecting SharePoint AdminRe-architecting SharePoint Admin
Security MapSecurity Map
Physical ArchitecturePhysical ArchitecturePicking your topologyPicking your topology
Multi-farm topologiesMulti-farm topologies
Hardware RequirementsHardware Requirements
Putting it all TogetherPutting it all Together
![Page 7: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/7.jpg)
Key Customer Pain PointsKey Customer Pain Points
Inconsistent setup between productsInconsistent setup between products
Central admin just too hardCentral admin just too hard
Topology restrictionsTopology restrictionsFarms of various sizes & shapesFarms of various sizes & shapes
Flexibility in renaming & repurposing serversFlexibility in renaming & repurposing servers
Network support: Network support: NT authentication onlyNT authentication only
Reverse proxies, SSL termination, IP-bound IIS virtual Reverse proxies, SSL termination, IP-bound IIS virtual serversservers
Poor resource utilization & isolationPoor resource utilization & isolationPortal services model very inflexiblePortal services model very inflexible
UpgradeUpgrade
![Page 8: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/8.jpg)
Fundamental Principle #1Fundamental Principle #1
IISIIS WSS v2 / SPS 2003WSS v2 / SPS 2003 WSS v3 / MOSSWSS v3 / MOSS
Web SitesWeb Sites Virtual ServersVirtual Servers Web ApplicationsWeb Applications
Physical Server
Web Application(s)
Top Level Site(s)
Site(s)
Site(s)
Site Collection
![Page 9: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/9.jpg)
Fundamental Principle #2Fundamental Principle #2
WSS v3WSS v3Site CollectionsSite Collections
SitesSites
TemplatesTemplates
MOSS 2007MOSS 2007Site CollectionsSite Collections
SitesSites
TemplatesTemplates
Shared ServicesShared Services
EVERYTHING IS A SITEEVERYTHING IS A SITE
![Page 10: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/10.jpg)
Fundamental Principle #3Fundamental Principle #3
Shared servicesShared servicesGrouped, high-value, resource intensive servicesGrouped, high-value, resource intensive servicesOne to many per farmOne to many per farmInter-farm capableInter-farm capable
Shared Services Shared Services mustmust::expect to be used by multiple Web applications from expect to be used by multiple Web applications from multiple farmsmultiple farmsmake themselves able to be surfaced in and managed make themselves able to be surfaced in and managed via SharePoint Central Administrationvia SharePoint Central Administrationallow themselves to be managed by delegated allow themselves to be managed by delegated administratorsadministrators
Windows SharePoint Services doesn’t ship with Windows SharePoint Services doesn’t ship with shared services, but Microsoft Office SharePoint shared services, but Microsoft Office SharePoint Server provides manyServer provides manySSP = Shared Service Provider = A Site that SSP = Shared Service Provider = A Site that Provides MOSS Shared ServicesProvides MOSS Shared Services
![Page 11: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/11.jpg)
Fundamental Principle #4Fundamental Principle #4What happened to “Portals”?What happened to “Portals”?
Just a WSS Site + MOSS Template + Shared Just a WSS Site + MOSS Template + Shared ServicesServices
MOSS Single Server
Web Application(s)
SSP Admin Central AdminPortal Template
Portal Template
![Page 12: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/12.jpg)
Fundamental Principle #5Fundamental Principle #5NO MORE TOPOLOGY RESTRICTIONS!!!NO MORE TOPOLOGY RESTRICTIONS!!!
Servers have RolesServers have RolesWeb Front End (WFE)Web Front End (WFE)
Application ServerApplication Server
Database ServerDatabase Server
You can create a Farm of any size of each Server You can create a Farm of any size of each Server Role!Role!
There are some guidelines and best practicesThere are some guidelines and best practicesYou need to have at least 1 server specified as an Index You need to have at least 1 server specified as an Index Server.Server.
Suggested no more than 8 WFEs for each SQL ServerSuggested no more than 8 WFEs for each SQL Server
![Page 13: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/13.jpg)
The MOSS Portal Template & Creating a New SiteThe MOSS Portal Template & Creating a New Site
![Page 14: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/14.jpg)
POP QUIZ!!!! POP QUIZ!!!! What is the new name for a SharePoint What is the new name for a SharePoint Virtual Server?Virtual Server?
Web Application!Web Application!What does the acronym SSP stand for?What does the acronym SSP stand for?
Shared Service Provider!Shared Service Provider!
Are there topology restrictions in Are there topology restrictions in WSSv3/MOSS?WSSv3/MOSS?NO WAY!NO WAY!
How much wood could a woodchuck chuck How much wood could a woodchuck chuck if a woodchuck could chuck wood?if a woodchuck could chuck wood?
Please see the Performance Planning Please see the Performance Planning & Scaling Session on Mammals & Scaling Session on Mammals (MAML-302)(MAML-302)
![Page 15: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/15.jpg)
You Pass You Pass SharePoint 101 – The New SharePoint 101 – The New
WorldWorld
![Page 16: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/16.jpg)
TopicsTopics
SharePoint 101 – The New WorldSharePoint 101 – The New World
Logical ArchitectureLogical ArchitectureRe-architecting SharePoint AdminRe-architecting SharePoint Admin
Security MapSecurity Map
Physical ArchitecturePhysical ArchitecturePicking your topologyPicking your topology
Multi-farm topologiesMulti-farm topologies
Hardware RequirementsHardware Requirements
Putting it all TogetherPutting it all Together
![Page 17: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/17.jpg)
Administration Design GoalsAdministration Design Goals
Windows SharePoint ServicesWindows SharePoint ServicesSimplicitySimplicity
ConsistencyConsistency
ExtensibilityExtensibility
Microsoft Office SharePoint Server – Microsoft Office SharePoint Server – Windows SharePoint Services goals +Windows SharePoint Services goals +
Resource OptimizationResource Optimization
DelegationDelegation
![Page 18: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/18.jpg)
Re-Architecting AdminRe-Architecting AdminKey conceptsKey concepts
SharePoint farmSharePoint farmServersServers
App servers have all services installedApp servers have all services installedWFEs are always mirrors WFEs are always mirrors
Config DB: Heart & soul of the farmConfig DB: Heart & soul of the farmTakes place of registryTakes place of registry1 per farm1 per farm
SPTimer Service: Heartbeat of farmSPTimer Service: Heartbeat of farmSharePoint Administration ServiceSharePoint Administration Service
Used to propagate config changes across farm - as box Used to propagate config changes across farm - as box adminadmin
Shared ServicesShared ServicesA grouping of Services for Sites to use.A grouping of Services for Sites to use.
Admin sitesAdmin sitesCentral administration: 1 per farmCentral administration: 1 per farmShared services administration: “special” content siteShared services administration: “special” content site
![Page 19: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/19.jpg)
Shared ServicesShared ServicesBusiness unit ITBusiness unit ITUp to one per Up to one per business groupbusiness group
Service-level Service-level configurationconfiguration
E.g. Create E.g. Create search content search content sourcesource
Central AdminCentral AdminIT AdministratorsIT AdministratorsFarm-level Farm-level
StatusStatusResource Resource managementmanagement
One per farmOne per farmE.g. Create new E.g. Create new sitesite
Administrative ArchitectureAdministrative Architecture
Site SettingsSite SettingsBusiness site Business site ownerownerSite specific Site specific configuration configuration & tasks& tasksE.g. Create new E.g. Create new listlist
Three Tier AdministrationThree Tier AdministrationWeb-basedWeb-basedRole- & Task-DelineatedRole- & Task-DelineatedControlled DelegationControlled DelegationSecure IsolationSecure Isolation
![Page 20: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/20.jpg)
Tier 1: Central AdministrationTier 1: Central AdministrationGoalsGoals
Reduce administrator timeReduce administrator timeQuickly identify what must be doneQuickly identify what must be done
Rapidly locate UI to do what’s neededRapidly locate UI to do what’s needed
Single point administrationSingle point administrationManage the applicationManage the application
Single change updates all servers in farmSingle change updates all servers in farm
Extensible platform for SharePoint adminExtensible platform for SharePoint adminConsistent UI experience for all productsConsistent UI experience for all products
![Page 21: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/21.jpg)
Central AdministrationCentral AdministrationMajor elementsMajor elements
Administrative task list Administrative task list Informs operators what must be doneInforms operators what must be done
Explains action needed, and provides link to UIExplains action needed, and provides link to UI
Home page topology view Home page topology view Quick view of farm servers & what is running on themQuick view of farm servers & what is running on them
Services on Server pageServices on Server pageManage the components running on a single serverManage the components running on a single server
Flat menu structureFlat menu structureOperations: tasks affecting farm resource usageOperations: tasks affecting farm resource usage
App Management: tasks specific to a single application or service within App Management: tasks specific to a single application or service within the farmthe farm
Security trimming reduces UI clutterSecurity trimming reduces UI clutter
Remote administrationRemote administrationWeb-based administration UIWeb-based administration UI
Timer-based system updatesTimer-based system updates
![Page 22: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/22.jpg)
A Stroll through Central Administration
A Stroll through Central Administration
![Page 23: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/23.jpg)
Tier 2: Shared Services Tier 2: Shared Services Key concepts Key concepts
““Shared Services” = Office SharePoint Server Shared Services” = Office SharePoint Server InfrastructureInfrastructure
Goal:Goal:Separation of services from PortalsSeparation of services from Portals
Remove scale limitation for # of portals Remove scale limitation for # of portals
Required for site and cross site-level Office Server features Required for site and cross site-level Office Server features
Logical / secure partition of farmLogical / secure partition of farm
Services act as a groupServices act as a group
SSP ComponentsSSP ComponentsSSP admin siteSSP admin site
SSP databasesSSP databases
Shared web service hostingShared web service hosting
Shared ServicesShared ServicesOffice Server SearchDirectory importUser profile synchAudiences
TargetingBusiness data catalogExcel calculation serviceUsage reporting
![Page 24: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/24.jpg)
Shared ServicesShared ServicesAssociationsAssociations
SSPDefault == 1st SSPSSPDefault == 1st SSPCan be changed to different SSPCan be changed to different SSP
Cannot be deletedCannot be deleted
New, existing web apps auto-associatedNew, existing web apps auto-associated
Content web applicationsContent web applicationsALWAYS associated to 1 and only 1 SSP*ALWAYS associated to 1 and only 1 SSP*
Security implicationsSecurity implicationsContent app pool granted rights across SSPContent app pool granted rights across SSP
Disassociation: Accounts NOT auto-cleaned upDisassociation: Accounts NOT auto-cleaned up
Actions auto-started / stopped:Actions auto-started / stopped:Search: Add start address to portal content sourceSearch: Add start address to portal content source
People: User Profile SynchPeople: User Profile Synch
![Page 25: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/25.jpg)
Shared ServicesShared Services
Web AppWeb App Web AppWeb App
CorpWeb WinWebOfficeWeb LegalWeb
Office Server SearchDirectory importUser profile synchAudiences
TargetingBusiness data catalogExcel calculation serviceUsage Reporting
Shared Services
![Page 26: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/26.jpg)
Office Server SearchDirectory importUser profile synchAudiences
TargetingBusiness data catalogExcel calculation serviceUsage reporting
Shared Services - # 2
Shared ServicesShared ServicesMultiple SSPs?Multiple SSPs?
Vast majority of installs = 1 SSPVast majority of installs = 1 SSP
Use cases for multiple SSPsUse cases for multiple SSPsSecure isolation of services and service dataSecure isolation of services and service data
Hosted environmentsHosted environments
Restricted sitesRestricted sites
Organizational / Political concernsOrganizational / Political concerns
Web AppWeb App Web AppWeb App
CorpWeb WinWebOfficeWeb LegalWeb
Office Server SearchDirectory importUser profile synchAudiences
TargetingBusiness data catalogExcel calculation serviceUsage reporting
Shared ServicesOffice Server SearchDirectory importUser profile synchAudiences
TargetingBusiness data catalogExcel calculation serviceUsage reporting
Shared Services
![Page 27: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/27.jpg)
Shared Services Shared Services
Customer benefitsCustomer benefitsResource optimizationResource optimization
Security isolationSecurity isolation
FlexibilityFlexibility
Delegation of administrationDelegation of administrationPower users administer Shared Service InstancePower users administer Shared Service Instance
≠ ≠ Central admin rightsCentral admin rights
Can be shared across farmsCan be shared across farms
Watch-outsWatch-outsFarm: SSP web app’s app pool account cannot be Network Farm: SSP web app’s app pool account cannot be Network ServiceService
1 SSP admin site allowed in a single web application1 SSP admin site allowed in a single web application\admin\ssp\admin\ssp
Central admin operators ≠ SSP site administratorsCentral admin operators ≠ SSP site administrators
Closely manage security when switching associationsClosely manage security when switching associations
![Page 28: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/28.jpg)
A Stroll through SSP AdministrationA Stroll through SSP Administration
![Page 29: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/29.jpg)
Tier 3: Site SettingsTier 3: Site Settings
UI for users to manage their sites:UI for users to manage their sites:Permissions & users of sitePermissions & users of site
Storage taken up within siteStorage taken up within site
Site hierarchySite hierarchy
Key conceptsKey conceptsDelegate management of common tasks to usersDelegate management of common tasks to users
ExtensibleExtensibleConsistent experienceConsistent experience
Features merged directly into UIFeatures merged directly into UI
Operators lack permission for contentOperators lack permission for contentChange from v2 Change from v2
Can take ownership or add policy (audited)Can take ownership or add policy (audited)
Security trimmed UI improves usabilitySecurity trimmed UI improves usability
![Page 30: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/30.jpg)
A Stroll through Site SettingsA Stroll through Site Settings
![Page 31: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/31.jpg)
Infrastructure Object MapInfrastructure Object Map
ConfigDB
ContentDB
SSPDB
SearchDB
Centr
al A
dm
inShare
d S
erv
ices
Sit
e
SharedWeb Services
1 SPWebApplication = _Admin 1 SPDatabase = ContentDB
1 SPSite = Central Administration 1 SPDatabase = ConfigDB
Objects
ContentDB
ContentDB
1 SPWebApplication = <Admin Specified> 1 SPDatabase = ContentDB
1 SPSite = <SSP Name> 2 SPDatabases:
<SSPName>_SSP_DB <SSPName>_Search_DB
1 IIS web site = OfficeSharedWebServices 1 IIS vDir = <SSPName_ShareSvcs>
1 SPWebApplication = <Admin Specified> 1 SPDatabase = ContentDB
1 SPSite = <Site Name>
CACASiteSite
SSPSSPSiteSite
ContentContentSiteSite
Web AppWeb App
Web AppWeb App
Web AppWeb App
![Page 32: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/32.jpg)
Centr
al A
dm
inShare
d S
erv
ices
Sit
e
Farm Account• Central admin app pool• SPTimer
• DBO for all DBs• DB Creator• SQL Security Admin
SSP Admin Process Account• SSP app pool
• DBO for content DB• R/W to SSP DBs• R/W to content DBs• Read from config DB
Infrastructure Security MapInfrastructure Security Map
Content Process Account• Content app pool
• DBO for content DB• R/W to SSP DBs• Read from config DB
Farm Shared Web Svc Acnt • Network Service
• SSP shared web svc
• R/W to SSP DBs• R/W to content DBs• Read from config DB
Special Rights
SPAdmin • LocalSystem on all svrs Config
DB
ContentDB
SSPDB
SearchDB
SharedWeb Services
ContentDB
ContentDB
CACASiteSite
SSPSSPSiteSite
ContentContentSiteSite
Web AppWeb App
Web AppWeb App
Web AppWeb App
![Page 33: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/33.jpg)
Security Best PracticesSecurity Best Practices
Unique accounts for the following:Unique accounts for the following:Farm accountFarm account
SSP process accountSSP process accountNOTE: Cannot be Network Service in a farm config.NOTE: Cannot be Network Service in a farm config.
Can be same as SSP shared web service accountCan be same as SSP shared web service account
Content app poolContent app pool
Kerberos on (default = NTLM)Kerberos on (default = NTLM)Each process account must be a registered SPN to workEach process account must be a registered SPN to work
SSL enabled (default = offSSL enabled (default = off**))Turn on for admin sites & server to serverTurn on for admin sites & server to server
Warning provided on credentials pages if SSL is offWarning provided on credentials pages if SSL is off
SPAdmin service:SPAdmin service:Single server: Off (recommend ‘On’ for OSS)Single server: Off (recommend ‘On’ for OSS)
Farm: OnFarm: On
* Search web service auto-enables SSL w/ server generated certificate
![Page 34: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/34.jpg)
TopicsTopics
SharePoint 101 – The New World SharePoint 101 – The New World
Logical ArchitectureLogical ArchitectureRe-architecting SharePoint AdminRe-architecting SharePoint Admin
Security MapSecurity Map
Physical ArchitecturePhysical ArchitecturePicking your topologyPicking your topology
Multi-farm topologiesMulti-farm topologies
Hardware RequirementsHardware Requirements
Putting it all TogetherPutting it all Together
![Page 35: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/35.jpg)
Physical ArchitecturePhysical ArchitectureKey conceptsKey concepts
TopologyTopologyGroup services on hardware as neededGroup services on hardware as needed
Scale hardware based on your needsScale hardware based on your needs# servers / role# servers / role
32-bit, 64-bit, mixed 32 & 64-bit32-bit, 64-bit, mixed 32 & 64-bit
Server “roles”Server “roles”Web front end Web front end
App server: Indexing, Search, Excel Calc, ProjectApp server: Indexing, Search, Excel Calc, Project
DatabaseDatabase
Network capabilitiesNetwork capabilitiesExtranet as a 1st tier “feature”Extranet as a 1st tier “feature”
Span DomainsSpan Domains
Multiple authentication providersMultiple authentication providers
SQL auth supportSQL auth support
SSL, IPSec, etc.SSL, IPSec, etc.
![Page 36: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/36.jpg)
Picking Your TopologyPicking Your Topology
Factors to considerFactors to considerData compositionData composition
User loadUser load
Long-running operationsLong-running operations
PerformancePerformance
Availability & reliabilityAvailability & reliability
Network considerationsNetwork considerations
No topology restrictionsNo topology restrictions
See TechEd OFC417 & SharePoint Conf See TechEd OFC417 & SharePoint Conf PTL314PTL314
![Page 37: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/37.jpg)
User requests
Load balances webfront end servers
Applicationservers
Clustered SQL server
Index Search Excel Project
XxYxZ Farm (Large)
User requests
Web front ends + application(s)
Application(s)
Clustered SQL server
XxYxZ Farm (Medium)
XxY Farm (Small)User requests
Each load-balanced server includes:
• Web front end• Applications
Dedicated SQL server
Single Server
• Web front end • Application • Database
One Server which contains:
User Requests
StrengthsStrengthsFast & EasyFast & Easy
Network considerationsNetwork considerations
LimitationsLimitationsLimited data & user load Limited data & user load
capabilitycapability
Availability & reliabilityAvailability & reliability
Single Server
User Requests
One Server which contains:
• Web front end
• Application
• Database
XxY Farm (Small)
User requests
Each load-balanced server includes:
• Web front end• Applications
Dedicated SQL server
StrengthsStrengthsData & user load capabilityData & user load capabilityAvailability & reliabilityAvailability & reliabilityExercise feature deploymentExercise feature deployment
LimitationsLimitationsLong running operationsLong running operationsNetwork considerationsNetwork considerations
XxYxZ Farm (Medium)
StrengthsStrengthsData & user load capabilityData & user load capabilityAvailability & reliabilityAvailability & reliabilityExercise feature deploymentExercise feature deploymentPerformancePerformance
LimitationsLimitationsSetup / configurationSetup / configurationNetwork considerationsNetwork considerations
User requests
Web front ends + application(s)
Application(s)
Clustered SQL server
XxYxZ Farm (Large)StrengthsStrengths
Data & user load capabilityData & user load capabilityAvailability & reliabilityAvailability & reliabilityExercise feature deploymentExercise feature deploymentPerformancePerformance
LimitationsLimitationsSetup / configurationSetup / configurationNetwork considerationsNetwork considerations
User requests
Load balances webfront end servers
Applicationservers
Clustered SQL server
Index Search Excel Project
Picking Your TopologyPicking Your Topology
Availability
Per
form
ance
![Page 38: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/38.jpg)
Multi-Farm TopologiesMulti-Farm Topologies
Security and process isolationSecurity and process isolationDev / test / prodDev / test / prod
Business demandsBusiness demands
Content ManagementContent ManagementStaging environments in different networksStaging environments in different networks
Authoring in Intranet with AD authAuthoring in Intranet with AD auth
Production in premier network with forms authProduction in premier network with forms auth
Content Deployment copies content between Content Deployment copies content between networksnetworks
Path connects source and destination site collectionPath connects source and destination site collection
Job defines schedule for incremental deploymentJob defines schedule for incremental deployment
Quick Deploy feature allows authors to expedite specific Quick Deploy feature allows authors to expedite specific articlesarticles
Inter-Farm Shared ServicesInter-Farm Shared Services
![Page 39: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/39.jpg)
Multi-Farm TopologyMulti-Farm Topology
![Page 40: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/40.jpg)
Beta Hardware Beta Hardware RecommendationsRecommendations
Single box installation *Single box installation *CPU: 2.5 GHzCPU: 2.5 GHz
Memory: 2 GB recommended, 1 GB minimumMemory: 2 GB recommended, 1 GB minimum
HDD: Scenario dependentHDD: Scenario dependent
Farm Deployment *Farm Deployment *Web server: 2.5 GHz, 2 GB RAMWeb server: 2.5 GHz, 2 GB RAM
App server: Dual proc 2.5 GHz, 2 GB RAMApp server: Dual proc 2.5 GHz, 2 GB RAM
SQL: Dual proc 2.5 GHz; 2gb RAMSQL: Dual proc 2.5 GHz; 2gb RAM
Support both 32 & 64-bitSupport both 32 & 64-bit
* This will change by RTM* This will change by RTM
![Page 41: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/41.jpg)
TopicsTopics
SharePoint 101 – The New World SharePoint 101 – The New World
Logical ArchitectureLogical ArchitectureRe-architecting SharePoint AdminRe-architecting SharePoint Admin
Security MapSecurity Map
Physical ArchitecturePhysical ArchitecturePicking your topologyPicking your topology
Multi-farm topologiesMulti-farm topologies
Hardware RequirementsHardware Requirements
Putting it all TogetherPutting it all Together
![Page 42: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/42.jpg)
LogicalLogicalPhysicalPhysical
Logical Logical Physical Mapping Physical MappingSingle serverSingle server
Server 1:Server 1:Content SitesContent Sites
SSPSSPSSP admin siteSSP admin site
Shared servicesShared services
Shared web Shared web servicesservices
Central adminCentral admin
All databasesAll databases
One Server which contains:
• Web front end
• Application
• Database
![Page 43: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/43.jpg)
LogicalLogicalPhysicalPhysical
Logical Logical Physical Mapping Physical MappingXxY Farm (Small example)XxY Farm (Small example)
Server 1 & 2:Server 1 & 2:Content SitesContent Sites
SSPSSPSSP admin siteSSP admin site
Shared servicesShared services
Shared web Shared web servicesservices
Central admin Central admin (only svr 1)(only svr 1)
Server 3Server 3
All databasesAll databases
Load balanced servers:
Web front endApplications
Dedicated SQL server
![Page 44: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/44.jpg)
LogicalLogicalPhysicalPhysical
Logical Logical Physical Mapping Physical MappingXxYxZ Farm (Medium example)XxYxZ Farm (Medium example)
Servers 1 & 2:Servers 1 & 2:Content SitesContent Sites
SSPSSPSSP admin siteSSP admin site
Shared services (-)Shared services (-)
Shared web servicesShared web services
Server 3Server 3SSPSSP
Shared service (Index)Shared service (Index)
Shared web servicesShared web services
Central Admin Central Admin
Server 4 & 5Server 4 & 5All databasesAll databases
Load balanced servers:
Web front endApplications (-)
Clustered SQL server
Application server (Index) Applications (-)
![Page 45: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/45.jpg)
LogicalLogicalPhysicalPhysical
Logical Logical Physical Mapping Physical MappingXxYxZ Farm (Large example)XxYxZ Farm (Large example)
Web front endWeb front end
Clustered SQL server
Application servers
Index
Search
Excel calculation
WFEs: servers 1 - 4:WFEs: servers 1 - 4:Content SitesContent Sites
SSPSSPSSP admin siteSSP admin site
App servers: 5-10App servers: 5-10SSPSSP
Svr 5 - 6: Shared service (Index)Svr 5 - 6: Shared service (Index)
Svr 7 - 8: Svr 7 - 8:
Shared service (Search)Shared service (Search)
Shared web services (Search)Shared web services (Search)
Svr 9 – 10: Svr 9 – 10:
Shared service (Excel)Shared service (Excel)
Shared web services (Excel)Shared web services (Excel)
Central Admin (server # 5)Central Admin (server # 5)
Server 11 & 12Server 11 & 12All databasesAll databases
![Page 46: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/46.jpg)
SummarySummary
Product ArchitectureProduct Architecture3-Tier Administration Architecture3-Tier Administration Architecture
Central AdministrationCentral Administration
Shared Services – what are they; how do they work?Shared Services – what are they; how do they work?
ExtensibilityExtensibility
Delegation to power usersDelegation to power users
Site AdminSite Admin
Deployment OptionsDeployment OptionsMachine “Roles”Machine “Roles”
Picking Your TopologiesPicking Your TopologiesSingle boxSingle box
Farm dimensions (XxYxZ), Sample sizes Farm dimensions (XxYxZ), Sample sizes (Small/Medium/Large)(Small/Medium/Large)
Multi-Farm topologies (IFSS, Publishing)Multi-Farm topologies (IFSS, Publishing)
![Page 47: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/47.jpg)
ResourcesResourcesTechnical Chats and Webcastshttp://www.microsoft.com/communities/chats/default.mspx http://www.microsoft.com/usa/webcasts/default.asp
Microsoft Learning and Certificationhttp://www.microsoft.com/learning/default.mspx
MSDN & TechNet http://microsoft.com/msdnhttp://microsoft.com/technet
Virtual Labshttp://www.microsoft.com/technet/traincert/virtuallab/rms.mspx
Newsgroupshttp://communities2.microsoft.com/communities/newsgroups/en-us/default.aspx
Technical Community Siteshttp://www.microsoft.com/communities/default.mspx
User Groupshttp://www.microsoft.com/communities/usergroups/default.mspx
Technical Resource DVD!
![Page 48: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/48.jpg)
The 2007 Microsoft Office The 2007 Microsoft Office System System Clients. Servers. Clients. Servers. Solutions.Solutions.
Install Beta 2 today! Install Beta 2 today! It’s in your attendee bagIt’s in your attendee bag
Learn more at the Office System TLCLearn more at the Office System TLCDemo Stations / Hands-on-Labs / Chalk-talksDemo Stations / Hands-on-Labs / Chalk-talks
Get more informationGet more informationhttp://www.microsoft.com/office/preview/default.mspxhttp://www.microsoft.com/office/preview/default.mspxhttp://http://msdn.microsoft.commsdn.microsoft.com/office//office/
TalkTalk
LabLab
DemoDemo
![Page 49: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/49.jpg)
Fill out a session Fill out a session evaluation on evaluation on
CommNet andCommNet and Win an XBOX Win an XBOX
360!360!
![Page 50: OFC320 Infrastructure Topics in SharePoint Products and Technologies: Administrative Architecture and Planning for Deployment John Nisi Lead Architect.](https://reader035.fdocuments.in/reader035/viewer/2022081603/56649efe5503460f94c132dd/html5/thumbnails/50.jpg)
© 2006 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation.
MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.