Admin 101So You’re The New AdministratorSPTechCon Boston 2012Scott Hoag and Dan Usher

who are we?

Infrastructure Consultant at Applied Information Sciences

8 years of experience with the SharePoint platform from MCMS 2002 to SharePoint 2010 today

Enjoys discussions about user adoption, search, and world peace

Recently returned from a trip around the world…

ScottHoag

ciphertxt

Who’s that other guy?

Lead Associate at Booz Allen Hamilton

7 years of experience with SharePoint going back to adventures with STS 2001 and SPS 2003 with fun in the SharePoint 2007 and 2010

Follows the SharePoint Credo - ADIDASAll Day I Dream About SharePoint

Enjoys discussions about Claims AuthZ, SmartCard AuthN, Atomic Molecular Optics & the Big Bang Theory

Enjoys whey protein biscuits

DanUsher

usher

introductions

a few ground rules…

SharePoint Administrator Meme I manage the SharePoint

http://blogs.technet.com/b/sharepointcomic/archive/2009/07/25/sharepoint-comic-unexpected-error.aspx

agenda

Section 1 Lecture: 9:10-10:30

Break: 10:30 – 10:45 Section 2

Demo: 10:45 – 12:00 Q&A: 12:00 – 12:15

Section 1

administrator vs. administrator

SharePoint (Farm) Administrator Defines the governance policies for

quotas, security and permissions SharePoint Service Application

administration Web application administration General farm administration and

maintenance Monitors backup and restore operations

administrator vs. administrator

Site Collection Administrator Defines the governance policies for

quotas, security and permissions Site collection management Overall site and sub-site management

common terms – farm level Farms (& Plantations)

A collection of servers hosting a SharePoint infrastructure

Web Application An IIS site with a unique application pool

Service Application A resource that can be shared across sites throughout a

farm, and can be accessed by users through a hosting Web application.

Host Named Site Collections and Multi-Tenancy Site collections with unique host names

Central Administration Web application for managing a farm

common terms – site level

Site Collection A hierarchical set of sites that can be

managed together and share the same set of features/permissions/web parts/etc.

Web Parts Server-side controls that run inside the

context of site pages in SharePoint Features

The basis of a unified framework for distributed deployment of SharePoint solutions

getting around Ribbon

The ribbon is a new command interface that brings many SharePoint controls out from hiding and onto the page where they can do the most good. Similar to the UI in products like Microsoft Word 2010, in SharePoint 2010, the ribbon is a toolbar that appears across the top of each page and displays many of the most commonly-used tools, controls, and commands.

Breadcrumb Navigation control that displays a dynamically

generated set of links at the top of Web pages, to show users their current position in the site hierarchy

why a site collection?

Shared functionality Each site collection contains a top-

level site and (usually) one or more sites below it in a hierarchical structure

Groups your site's content and features into a single container

SharePoint’s layers… SharePoint Foundation

Windows Services Platform SharePoint Standard

Application Server SharePoint Enterprise

Integrated Services

site configuration Templates    Language  Security  Navigation    Web pages   Layouts   

Themes    Regional settings  Search  Content types  Workflows 

templates Foundation

Team Blank Document

Workspace Blog Group Work

Site Basic Meeting

Workspace Blank Meeting

Workspace Decision

Meeting Workspace

Social Meeting Workspace

Multipage Meeting Workspace

Standard Records Center Enterprise

Search Center My Site Host Basic Search

Center Publishing

Portal Enterprise Wiki

Enterprise Business

Intelligence Center

FAST Search Center

Visio Process Repository

language packs Selected at the time a site (or site

collection is created) You cannot change an existing site, site

collection, or Web page from one language to another by applying different language-specific site templates

Some user interface elements such as error messages, notifications, and dialog boxes will always display in English

After you install a new language pack, you must deactivate and then reactivate any language-specific features before you use the new language pack

security Ability to secure down to the item level

(Site Library or List Folder Document or Item)

Users will not have the same permissions (or permission levels) on every site

Users need to understand the security model to ensure information remains secure

Understand securable objects and their inheritance

Be mindful of performance implications and broken inheritance

navigation Primary interface for site users to move

around on the sites and pages on your site Global Navigation (top link bar) vs. Quick

Launch Breadcrumb navigation Navigation can be inherited in a manner

similar to permissions Be mindful of the user experience; even at

the site level (traditional Quick Launch vs. Treeview)

web pages Publishing elements vs. Wiki pages Wiki Home Pages are not Welcome Pages Wiki Pages are not Publishing Pages Enterprise Wikis use Publishing Pages and

Page Layouts I’m confused… What’s a wiki anyway?

layouts Part of the Publishing Infrastructure

(Enterprise SKU) Master pages are not page layouts    Stored in the Master Page Gallery at the

root of the site collection Be mindful of the additional groups added

by feature activation

SKU = Stock Keeping Unit

themes “Quick and easy way” to apply colors and

fonts to sites     Limited in their customizations

Are themes right for you? How about CSS? Full-on branding experience?

regional settings Locale setting controls numbering, sorting,

calendar, and date and time formatting Sort Order setting controls the sort order

for lists and libraries Time zone settings provides a default

value for the displayed times in calendars and other date fields in a site

Calendar settings control your primary calendar for your SharePoint sites (Gregorian/Buddhist/etc.)

Currency settings control the display of currency symbols

search For a site collection:

Scopes configuration Point to a custom Search Center (and results

page) For a site:

Hide from search results (noindex)  Prevent indexing of ASPX content Exclude site columns from the index

content types Reusable collection of metadata

(columns), workflow, behavior, and other settings for a category of items or documents

Documents are no longer just documents. A Form isn’t just a form… A Contract isn’t just a Word document… A contact list is actually made up of Contacts

workflows Out-of-the-box

Extend with SPD/Visual Studio

Workflow Purpose

Collect Feedback   Sends a document for review.

 Approval    Sends a document for approval, often as a prerequisite to publishing it.

Disposition    Manages document expiration and disposition.

Collect Signatures   

Routes a document for signatures.

Translation Management   

Manages the translation of a document into one or more languages.

Three-state    Manages business processes that require organizations to track the status of an issue or item through three different states (phases).

break

Section 2

agenda

Semi-deep dive Site Collection Overview (Section 1

Review) Permissions and Roles Content Types Content Query vs. List View Web Part Recycle Bin/Site Storage

Demo

Site Collection Overview

Demo

Permissions and Roles

Demo

Content Types

Demo

Content Query and List View Web Parts

Demo

Recycle Bin / Site Storage

Bonus!!!

Blunders, Gotchas and Other Administrator Snafus

creating orphans IIS reset solves all qualms

or so we’d like to think… During backup of a site collection

The backup is now invalid During a restore of a site collection

The restore will have portions of the site collection and associated webs restored (maybe)

permissions management Removing the SharePoint group that you

gave Full Control… Removing yourself from the SharePoint

group that has Full Control…

I updated my Master Page Page Layout Style Sheet or a number of other assetsAnd no one can see my changes!

Publish and approvepublish

testing workflows as a deity Declarative Workflows set to start when

an item is created or changed will not execute when logged in as the System Account.

Pro Tip: Email-enabled lists will not auto start workflows either, unless…

stsadm –o setproperty –pn declarativeworkflowautostartonemailenabled –pv true

will fix thisdeclarativeworkflowautostartonemailenabled (Property Reference)

deleting the wrong item I see a hidden Forms folder when using

Explorer View. I think I should delete some things in it!

tune your analytics By default, you get 25 months(!!) of

analytics data Microsoft’s guidance for capacity planning

in regards to web analytics isn’t pretty.

Dataset Characteristics

Value

SharePoint components 30k

Unique users 117k

Unique queries 68k

Unique assets 500k

Reporting DB data size?200GB per day

Capacity requirements for the Web Analytics Shared Service in SharePoint Server 2010

permissive file handling Users are being prompted to download

PDFs Enable permissive file handling for all files

in Web Application in Central Administration

Set specific mime types for a Web Application

> $webApp = Get-SPWebApplication("http://intranet.contoso.com")> $webApp.AllowedInlineDownloadMimeTypes.Add("application/pdf")> $webApp.Update()

running in circles You’re browsing your site from the server.

Or you’re trying to get search to work. Or you’re trying to get a web service to work. Or you just want anything to work….

HTTP 401.1 - Unauthorized: Logon Failed and you’ve got a FQDN on your site

KB896861 offers several options DisableLoopbackCheck or

BackConnectionHostNames

DisableLoopbackCheck & SharePoint: What every admin and developer should know

pausing IIS Bring up your SharePoint Products

Configuration Wizard on the second screen

Checking IIS to see your web applications temporarily paused

lost passphrases Passphrase is no longer known

Managed accounts and auto-password resets

Document your farm TechNet CodePlex

> $passphrase = ConvertTo-SecureString -asPlainText -Force> Set-SPPassPhrase -PassPhrase $passphrase -Confirm

certificate revocation list

Slow (up to 60 seconds) execution of stsadm and Application Pool recycles Enable outbound internet access to

crl.microsoft.com HOSTS file redirect Set the State registry key for all users who

will run a shell or application pool

Edit the machine.config for each server in your farm

<psuedocode>if (!server.HasInternetConnectivity()) {

server.DisableCRLCheck();}

</psuedocode>

Certificate Revocation List Check and SharePoint 2010 without an Internet Connection

SOFTWARE\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing

sandboxed solutions…“The sandboxed code execution request was refused because the Sandboxed Code Host Service was too busy to handle the request”

Your ports are blocked internally (TCP 32846) The UserCode Solutions service isn’t running GPO Policy

RPC Endpoint Mapper Client Authentication Restrictions for Unauthenticated RPC clients

Registry Key Exists

Value set incorrectlyHKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\RPC

HKEY_USERS\AccountSID\SOFTWARE\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\SoftwarePublishing

managing managed paths Don’t create managed paths for URIs that

already exist! Both sites exist, but only 1 is accessible

closing thought

something to rememberSharePoint Implementations today consist of a race between Architects, Developers and IT Pros striving to build well planned out, bigger and better idiot-proof solutions, and the Universe trying to produce requirements of entropy with bigger and better idiots.

…so far, the Universe is winning.

questions

?

evaluations

How to find us Follow us on Twitter

@usher@ciphertxt

Read our blogs http://www.sharepointdan.com http://psconfig.com