Post on 26-May-2015
description
transcript
SharePoint Governance, Part I
Architecting SharePointfor Scalability and Enforceable Governance
Dan HolmeChief SharePoint Evangelist,AvePoint
Author MAUI, HAWAII
Consultant
AvePoint
Dan Holme
Text/Icon/Pic
Dan Holmedanholme dan.holme@avepoint.com
Architecting SharePointfor Scalability and Enforceable Governance• Definitions• Architectures• Governance
• Simple Examples• Concepts & Terminology
• Technical Details• Scenario-based architectural best practices
GOVERNANCE
The Role of SharePoint
“”
Governance defines the processes, people, policies
and technologiesthat deliver a service
What is governance?
BUSINESS
GOVERNANCE
MANAGEMENT
Communities
Search
Sites
Composites
ContentInsights
SERVICE
BUSINESS
GOVERNANCE
MANAGEMENT
Communities
Search
Sites
Composites
ContentInsights
SERVICE
Example: Sites
Business Needs to Solution Architecture
BUSINESS
GOVERNANCE
MANAGEMENT
Communities
Search
Sites
Composites
ContentInsights
SERVICE
Architectural Components
PhysicalLogical
Farm
Web AppService
AppZone
Content DB
Site collection
Site
Library
[Folder]
Document
Business Needs to Solution Architecture• Business needs• Human resources wants to
work on 75 HR documents• Engineering wants to work
on 25 engineering documents
Information and Service Management Architecture
Farm
Web AppService
AppZone
Content DB
Site collection
Site
Library
[Folder]
Document
Sites Farm
TEAMS
Content DB
Site collection
Departments
Engineering
HR
Content
Security
Scope(Site)
Control(ACL)
Sites Farm
TEAMS
Content DB
Site collection
Departments
Scope(Site)
Control(ACL)
Engineering
HR
+GovernancePolicy Management =
Content
Security
Business Requirements
Content Security
Example: Farms
Business Needs to Solution Architecture
Information and Service Management Architecture Farm
Web AppService
AppZone
Content DB
Site collection
Site
Library
[Folder]
Document
Business Needs to Solution Architecture• Production solutions• Dev/Test/QA Farm(s)• Extranet collaboration
We don’t have a test farm? No… You don’t have a production farm!
Governance Defines Policies• Information architecture• Content hierarchy, metadata
• Information management• Security & compliance
• Service management• IT assurance
Architecture Builds Manageable Solution• Information architecture• Content hierarchy,
metadata• Information
management• Security & compliance
• Service management• IT assurance
Information and Service Management Architectures
Farm
PEOPLEINTRANETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketin
gFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Architectures
Three Distinct
Information Architecture (Site Map)
http://intranet
HR Finance
TeamVacation Tracking
Financial Performan
ceBenefits
Marketing
LogosExpense Reports
TeamTeam
Information Architecture• Site map• Taxonomy• Content types• Search
Information and Service Management Architectures
Farm
PEOPLEINTRANETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketin
gFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Farm
PEOPLEINTRANETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketingFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
http://intranet
HR Finance
TeamVacation Tracking
Financial Performanc
eBenefits
Marketing
LogosExpense Reports
TeamTeam
Information Architecture
Information and Service Management Architecture
Architecture Best Practices
Scenario-Based
Information and Service Management Architecture Farm
Web AppService
AppZone
Content DB
Site collection
Site
Library
[Folder]
Document
Sites scope security and functionality:permissions, features
Sites
SitesFarm
TEAMS
Content DB
Site collection
Departments
Engineering
MarketingFinance HR
Content
Security
Site CollectionsFarm
TEAMS
Content DB
Site collection
Departments
Engineering
MarketingFinance HR
Ownership
(Full Control)
Site CollectionsFarm
TEAMS
Content DB
Site collection
Departments
Engineering
MarketingFinance
Site collection
HR
Ownership
(Full Control)Quotas
Site CollectionsFarm
TEAMS
Content DB
Site collection
Departments
MarketingFinance
Site collection
HR
Site collection
Engineering
Quotas Ownership
(Full Control)Auditing
Site CollectionsFarm
TEAMS
Content DB
Site collection Site collection
HR
Site collection
Engineering
Site collection
Finance
Site collection
Marketing
Quotas Ownership
(Full Control)Auditing
Site collections scope many of the most commonly-needed information management controls
Site Collections
Information Management Controls: Site Collections• Ownership• Administration• Quotas• Audit settings• Locks• SharePoint Designer restrictions• Features• Sandbox Solutions• Search settings• User & group management
Multiple scopes
In the COLLABORATION workload, separate site collections for each business unit, department, team & project support diverse requirements
Site Collections
Site CollectionsFarm
TEAMS
Content DB
Site collection Site collection
HR
Site collection
Engineering
Site collection
Finance
Site collection
Marketing
Quotas Ownership
(Full Control)Auditing
But Wait!• Site collection scalability• You cannot have “infinite” site collections
• Loss of out-of-box ease-of-use• Navigation• Content roll-up• Auditing
Site CollectionsFarm
TEAMS
Content DB
Site collection Site collection
HR
Site collection
Engineering
Site collection
Finance
Site collection
Marketing
Quotas Ownership
(Full Control)Auditing
Web ApplicationsFarm
TEAMS
Content DB
Site collection Site collection
HR
Site collection
Engineering
Site collection
Finance
Site collection
Marketing
Web applications scope important controls for both information management and service management
Web Applications
Web ApplicationsFarm
TEAMS
Content DB
Site collection Site collection
HR
Site collection
Engineering
Site collection
Finance
Site collection
Marketing
Blocked File Types
Web ApplicationsFarm
TEAMS
Content DB
Site collectionSite collection
HR
Site collection
Engineering
Site collection
Intranet
Site collection
Marketing
INTRANET
Content DB
Blocked File Types
Site collection
Finance
Collaboration (“Teams”) vs. Intranet Farm
INTRANET
TEAMS
Content DB
Site collection
Intranet Home
ITMarketi
ngFinance HR
Marketing
Content DB
Site collection
Finance
Content DB
Site collection
Engineering
Content DB
Site collection
IT
Content DB
Site collection
HR
Content DB
Site collection
Marketing
Content ReclassificationFarm
INTRANET
TEAMS
Content DB
Site collection
Intranet Home
ITMarketi
ngFinance HR
Marketing
Content DB
Site collection
Finance
Content DB
Site collection
HR
Content DB
Site collection
2012 Benefits
Benefits Page2012
Benefits
Benefits Page
Web ApplicationsFarm
TEAMS
Content DB
Site collection Site collection
HR
Site collection
Engineering
Site collection
Finance
Site collection
Marketing
Recycle Bin
Web ApplicationsFarm
TEAMS
Content DB
Site collectionSite collection
HR
Site collection
Engineering
Site collection
Finance
Site collection
Marketing
TEAMS*
Content DB
Recycle Bin
Web AppsFarm(s)
INTRANET
TEAMS*TEAMS
Information Management Controls: Web Apps
• Blocked file types• Recycle Bin settings• Self-service site creation, automatic deletion of
unused sites• SharePoint Designer controls• Authentication Mode: Classic or Claims• Service application connections
Web AppsFarm(s)
INTRANET
TEAMS*TEAMS
Enterprise
Metadata
Web AppsFarm(s)
INTRANET
TEAMS*TEAMSEXTRAN
ET
ExtranetMetadata
Enterprise
Metadata
Web AppsFarm(s)
INTRANET
TEAMS*TEAMSEXTRAN
ET
ExtranetMetadata
Enterprise
Metadata
Service Management Controls: Web Apps
• Maximum upload size• Mobile access
• Web site service isolation• Web server: server isolation• Application pool: process isolation
Web AppsFarm(s)
INTRANET
TEAMS*TEAMSEXTRAN
ETPEOPLE
Service Management Controls: Web Apps
• Maximum upload size• Mobile access
• Web site service isolation• Web server: server isolation• Application pool: process isolation
• DNS namespace (URL)• Enables management of application• Facilitates upgrade
Web AppsFarm
INTRANET
PEOPLE APPS <LOB>TEAMS*TEAMSEXTRAN
ET
Guidance: Web Apps• INTRANET• COLLABORATION• Gold• Silver• Bronze
• EXTRANET• SOCIAL• APPS• Each significant LINE OF BUSINESS application
FarmsFarm
INTRANET
PEOPLE APPS <LOB>TEAMS*TEAMSEXTRAN
ET
Farm
FarmsFarm
INTRANET
PEOPLE APPS <LOB>TEAMS*TEAMSEXTRAN
ET
Farm Farm
Governance Controls: Farms• Code (feature & process) isolation• Dev / Test / Staging / Production• Farms for services, premium applications, update
management• Content isolation• Access isolation• Extranet in Cloud: Partners & Customers• Public-facing web site
• Geo-performance & geo-availability• Farms in remote locations
FarmsFarm
PEOPLEINTRAN
ETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collectionExpense Report
Content DB
Site collection
Intranet Home
HRMarketi
ngFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Multiple Farm Implications• SLAs• Chargebacks• Upgrade to vNext
Guidance: Farms• Dev / Test / Staging / Production• Extranet• Public facing website• Remote locations*• Enterprise SharePoint services farm
• Search, metadata, social (User Profiles, My Sites), BCS
• Premium farms for custom applications• Gold farm (locked down)
FarmsFarm
PEOPLEINTRAN
ETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collectionExpense Report
Content DB
Site collection
Intranet Home
HRMarketi
ngFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Farms scope isolation of service and information.
Farms
Governance Controls in the Slide Deck• Content Databases• Service management: Storage management
• Application Pools• Zones
Information & Service Management ArchitectureFarm
PEOPLEINTRANE
TTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketin
gFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Navigation & Administration
“Behind the Scenes”
Farm
PEOPLEINTRANETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketin
gFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Presentation to User
http://intranet
HR Finance
TeamVacation Tracking
Financial Performan
ceBenefits
Marketing
LogosExpense Reports
TeamTeam
Navigation
Farm
PEOPLEINTRANETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketin
gFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Information Architecture
• Navigation• Manually-configured Quick Launch and top (global)
navigation• Custom link lists (advantage: security trimmed)• Custom or third-party navigation controls• SPXmlContentMapProvider • Search-Based Navigation
• Content types & metadata• Managed Metadata Service
Functionality
• Content roll-ups• Content publication
Farm
PEOPLEINTRANETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketin
gFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
SearchMetadat
aMy
Sites
PRODUCTION
Administration
TEST/QA
Administration• Administration “single pane of glass” across• Site collections• Web applications• Farms
• For…• Manage access, manage groups, provision users, audit• Deploy content
• PowerShell• Third-party administration tools
In Sum…
BUSINESS
MANAGEMENT
Communities
Search
Sites
Composites
Content
Insights
GOVERNANCE
SERVICE
Information & Service Management ArchitectureFarm
PEOPLEINTRANE
TTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketin
gFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
Farm
PEOPLEINTRANETTEAMSAPPS <LOB>
Farm
EXTRANET
Farm
WWW
Farm
REMOTE
Farm
Content DB
Site collection
Expense Report
Content DB
Site collection
Intranet Home
HRMarketingFinance
Content DB
Site collection
Finance
Content DB
Site collection
Marketing
Content DB
Site collection
HR
http://intranet
HR Finance
TeamVacation Tracking
Financial Performanc
eBenefits
Marketing
LogosExpense Reports
TeamTeam
Information Architecture
Information and Service Management Architecture
Resources• TechNet• Governance resource center• http://technet.microsoft.com/en-us/sharepoint/ff800826.aspx
• Governance features• http://technet.microsoft.com/en-us/library/cc262287.aspx
• Plan for Software Boundaries• http://technet.microsoft.com/en-us/library/cc262787.aspx
• White Papers: http://www.avepoint.com Resources
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
SLIDES: http://bit.ly/danholme120215dan.holme@avepoint.com@danholmehttp://bit.ly/danholmearticleshttp://bit.ly/danholmebooks