SlideShare ist ein Scribd-Unternehmen logo

Users, Profiles, and MySites: Managing a Changing SharePoint User population

Paul Stork (Microsoft MVP)
Paul Stork (Microsoft MVP)
Technologie
1 von 26
Managing a Changing SharePoint User Population
Paul Papanek Stork • Principal Architect for BlueChip Consulting Group • http://www.bluechip-llc.com • Contributing Author • Developer’s Guide to WSS 3.0 • MOSS 2007 Best Practices • Author • MCTS: WSS 3.0 Configuration Study Guide (70-631) • Pro SharePoint 2010 Development for Office 365 • Contact Information • Email: Paul.Stork@bluechip-llc.com • Blog: http://dontPaPanic.com/blog • Twitter: @PStork
Agenda • AD Users, Profiles, & the UserInfo table • How SharePoint Security Works • Managing Profile Property/UserInfo Changes • Filtering User Synchronization • Cleaning up MySites and Profiles
User Profiles and UserInfo Table • Foundation and Server are different • Foundation – UserInfo table only • Server – UserInfo table and Profiles • Profiles can be imported from AD, LDAP, or BCS • Profile changes are synced to UserInfo table • Quick sync every 5 minutes (new users only) • Full sync hourly • Users not marked as active are NOT sync’d • User information not pulled from consistent location • Lists and Welcome Menu use UserInfo table • People search crawls profiles
WebFrontEnd Profile Synchronization Service Instance Profile Service Instance Search Indexing Tags and Security Trimming Enterprise Metadata Tagging and Profile Properties WFE talks to the service and SQL, maintains Front-end cache Mid-tier cache, optimized for most- used profiles, 256 Mb default (good for 500k users on average) Social Data SyncProfiles User Profile Service
User Profile Timer JobsName Description Timing Activity Feed Cleanup Cleans up pre-computed activities that are used in activity feeds that are older than 14 days. This job does not affect the User Profile Change Log. Daily at 3 AM Activity Feed Pre-computes activities to be shown in user activity feeds. Hourly Audience Compilation Computes memberships of defined audiences. Weekly, Sat at 1 AM My Site Suggestions Email Sends e-mail messages that contain colleague and keyword suggestions to people who do not update their profile often, prompting them to update their profiles. Monthly, 15th at 10 PM Social Data Maintenance Aggregates social tags and ratings and cleans the social data change log. Hourly, 30 min after Social Rating Synchronization Synchronize rating values between Social Database and Content database Change Cleanup Job Cleans up data that is 14 days old from User Profile Change Log. Daily at 10 PM Change Job Processes changes to user profiles Hourly, on the hour Incremental Synchronization Synchronizes user, group and group membership changes between the User Profile Application and specified directory source Daily at 1 AM Language Synchronization Job Looks for new language pack installations and makes sure that strings that related to the user profile service are localized correctly. Every minute SharePoint Full Synchronization Synchronizes user information from the user profile application to SharePoint users and synchronizes site memberships from SharePoint to the user profile application. Hourly, on the hour SharePoint Quick Synchronization Synchronizes user information from the user profile application to SharePoint users who were recently added to a site. Every 5 minutes My Site Cleanup Job When a user is deleted, sends an e-mail message to the manager containing a request to the manager to move any documents or data that the manager wants to preserve, because the site might be deleted in the future. Hourly, on the hour System Job to Manage User Profile Synchronization Manages provisioning, run steps and additional tasks related to User Profile Synchronization. (Note: Don’t Change Timing) Every minute
SharePoint Security • SharePoint handles Authorization not Authentication • Profiles have no connection to Authorization • Authorization is the union of three things • Principal - SharePoint User or SharePoint Group • Permission Level – Named set of Permissions • Securable Object – Web site, List, or Item • Key Understandings • Inherited by default • Users, Groups, and Permission Levels are shared by all sites in a Site Collection • Three part union can be applied anywhere that Inheritance is broken • Security only goes down to the List Item level
SharePoint Security Principals • Groups • Users Permission Level • Read • Contribute • Full Control • Etc. Securable Object • Site • List • Item • Document • Etc.
Problems Editing User Profiles • Some profile properties are not editable • Privacy level for some properties are locked • Errors editing fields that require Managed Metadata • Ask me About MemberOf • Job Title Department • Proxy Addresses Interests • Office Location Followed #Tags • Past Projects • Skills • Schools
Problems Synching User Information • Most UI information pulled from User Info, not Profiles • Two Sync Timer Jobs to Sync Information • Problem: Inactive Users Ignored • Inactive Users (pre-2010) • Permissions gained through AD Group Membership • Must Login to be in Userinfo Table • Must Contribute to be marked ACTIVE • An Alternative Method • Stsadm -o sync -ignoreisactive 1 • Stsadm -o sync -deleteolddatabases 0
Additional Challenges • How to keep from Importing All users • Filter based on OU • Filter based on UserProperties • UserInfo still used in List & Library Metadata • Profile Synch Deletes User Profile but not UserInfo • If you delete User from Site Collection Metadata breaks
Property Filter Bit On Equals Value Disabled Account 2 Account Locked Out 5 No Password Required 6 Computer Account 13 Domain controller Account 14 Non-expiring password 17 Password Expired 24 Common Profile Sync Filters • Full List available at: http://www.harbar.net/archive/2011/02/22/323.aspx
Effect of Filtering Users • UserInfo Table Entry Remains • Disabled Users can no longer log in • Profiles will be deleted if Filtered out of Sync • Re-Sync’d Profiles have My Site Issues • Can’t Connect to existing MySite • Can’t Create a New MySite • Fix is to edit the Personal Site address property
What’s in a MySite • Shared Locations • My Site • My Newsfeed • My Profile • Personal Locations • My Content – Personal MySite • Personalization Site Tabs • Created & Managed Centrally • Displayed as Tab in MySite
Cleaning up MySites and Profiles 1. User’s AD account/profile is deleted 2. User Profile Service Incremental Sync runs (Not User Profile to SharePoint Sync) 3. My Site Cleanup Job runs 4. User’s Manager receives e-mail and access to User’s MySite 5. Manager retrieves Intellectual Property from MySite 6. User’s MySite is deleted
Email Sent to Manager
MySite Deletion • Deletes MySite after 14 days • Based on an entry in the Profile database in the MySiteDeletionStatus Table • Requires Custom Code to prevent or postpone • Not archived before deletion • Deletion Approval is not required
Issues & Weak Points • Lots of dependencies on Manager • Defined in Active Directory • Is a SharePoint User • Has a valid email • User Profile Sync • User Deleted in AD • Disabled Users if Filtered • UserInfo Table • References not Deleted with Profile • Manual clean-up of InfoTable causes loss of history
Avoiding Pitfalls • Name Groups based on where they will be used to avoid misuse • Don’t adjust Group membership in sub sites • Always break inheritance from the top down in the site hierarchy • Delete old MySite before re-synching to create User Profile
Best Practice Alternatives • Ensure that all dependencies are in place • Do not remove old users from People and Groups list (UserInfo) - or - • Create a Custom Workflow for off- boarding 1. Disable AD users rather than delete them 2. Delegate Site Collection Administrator role 3. Mark profiles inactive with custom field 4. Do not remove old users from People and Groups list
Additional Resources • Synchronize user and group profiles in SharePoint Server 2013 - Technet http://tinyurl.com/ProfileSync2013 • Rational Guide to implementing SharePoint Server 2010 User Profile Synchronization- Spence Harbar http://www.harbar.net/articles/sp2010ups.aspx • Inside the SharePoint 2010 My Site Cleanup Timer Job http://tinyurl.com/mySiteCleanup
Contact Information Email: Paul.Stork@bluechip-llc.com Blog: http://dontPaPanic.com/blog Twitter: @PStork

Empfohlen

SPConnections - Search Administration in SharePoint 2013
SPConnections - Search Administration in SharePoint 2013SPConnections - Search Administration in SharePoint 2013
SPConnections - Search Administration in SharePoint 2013Agnes Molnar
 
Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...
Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...
Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...Paul Stork (Microsoft MVP)
 
Bulding anextraneto365
Bulding anextraneto365Bulding anextraneto365
Bulding anextraneto365Paul Stork (Microsoft MVP)
 
Introduction to the SharePoint 2013 User Profile Service
Introduction to the SharePoint 2013 User Profile ServiceIntroduction to the SharePoint 2013 User Profile Service
Introduction to the SharePoint 2013 User Profile ServiceRegroove
 
Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...
Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...
Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...rwuhrman
 
SharePoint 2010 User Profile Sync
SharePoint 2010 User Profile SyncSharePoint 2010 User Profile Sync
SharePoint 2010 User Profile SyncNilesh Mehta
 
Leveraging User Profiles and MySites
Leveraging User Profiles and MySitesLeveraging User Profiles and MySites
Leveraging User Profiles and MySitesDerek Cash-Peterson
 
SharePoint 2013 Site Administration
SharePoint 2013 Site AdministrationSharePoint 2013 Site Administration
SharePoint 2013 Site AdministrationLearning SharePoint
 

Empfohlen

SPConnections - Search Administration in SharePoint 2013
SPConnections - Search Administration in SharePoint 2013SPConnections - Search Administration in SharePoint 2013
SPConnections - Search Administration in SharePoint 2013Agnes Molnar
 
Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...
Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...
Share, Follow, and Sync: How SharePoint 2013 uses Personal MySites for Social...Paul Stork (Microsoft MVP)
 
Bulding anextraneto365
Bulding anextraneto365Bulding anextraneto365
Bulding anextraneto365Paul Stork (Microsoft MVP)
 
Introduction to the SharePoint 2013 User Profile Service
Introduction to the SharePoint 2013 User Profile ServiceIntroduction to the SharePoint 2013 User Profile Service
Introduction to the SharePoint 2013 User Profile ServiceRegroove
 
Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...
Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...
Enterprise Collaboration and Employee Engagement with Microsoft SharePoint My...rwuhrman
 
SharePoint 2010 User Profile Sync
SharePoint 2010 User Profile SyncSharePoint 2010 User Profile Sync
SharePoint 2010 User Profile SyncNilesh Mehta
 
Leveraging User Profiles and MySites
Leveraging User Profiles and MySitesLeveraging User Profiles and MySites
Leveraging User Profiles and MySitesDerek Cash-Peterson
 
SharePoint 2013 Site Administration
SharePoint 2013 Site AdministrationSharePoint 2013 Site Administration
SharePoint 2013 Site AdministrationLearning SharePoint
 
Ms. Search and Mr. Project
Ms. Search and Mr. ProjectMs. Search and Mr. Project
Ms. Search and Mr. ProjectSPC Adriatics
 
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013Agnes Molnar
 
What’s new in share point 2013
What’s new in share point 2013What’s new in share point 2013
What’s new in share point 2013Wael Sharba
 
Introduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael BlumenthalIntroduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael BlumenthalMichael Blumenthal (Microsoft MVP)
 
10 Quick Wins - No Code
10 Quick Wins - No Code10 Quick Wins - No Code
10 Quick Wins - No CodeJoshua Haebets
 
Top 10 in SharePoint 2013
Top 10 in SharePoint 2013Top 10 in SharePoint 2013
Top 10 in SharePoint 2013Cory Peters
 
SharePoint 2010 Basics for newbies
SharePoint 2010 Basics for newbiesSharePoint 2010 Basics for newbies
SharePoint 2010 Basics for newbiesSachchin Annam
 
Beginners SharePoint introduction
Beginners SharePoint introductionBeginners SharePoint introduction
Beginners SharePoint introductionMelick Baranasooriya
 
Going offline with share point workspace
Going offline with share point workspaceGoing offline with share point workspace
Going offline with share point workspaceJoshua Haebets
 
Share point 2010 Fundamentals
Share point 2010 FundamentalsShare point 2010 Fundamentals
Share point 2010 Fundamentalsbalraj_s
 
Introduction To Microsoft SharePoint 2013
Introduction To Microsoft SharePoint 2013Introduction To Microsoft SharePoint 2013
Introduction To Microsoft SharePoint 2013Vishal Pawar
 
Introduction to SharePoint 2010
Introduction to SharePoint 2010Introduction to SharePoint 2010
Introduction to SharePoint 2010Rushi Waghmare
 
SharePoint 101
SharePoint 101SharePoint 101
SharePoint 101Dux Raymond Sy
 
Basics of SharePoint
Basics of SharePointBasics of SharePoint
Basics of SharePointsamirsangli
 
Sharepoint 2010 overview - what it is and what it can do
Sharepoint 2010 overview - what it is and what it can doSharepoint 2010 overview - what it is and what it can do
Sharepoint 2010 overview - what it is and what it can doFaisal Masood
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)SPC Adriatics
 
Introduction To SharePoint 2010
Introduction To SharePoint 2010Introduction To SharePoint 2010
Introduction To SharePoint 2010Rishu Mehra
 
SharePoint 2010 - User Profile Store
SharePoint 2010 - User Profile Store SharePoint 2010 - User Profile Store
SharePoint 2010 - User Profile Store Joshua Haebets
 
Core SharePoint 2013 Concepts
Core SharePoint 2013 ConceptsCore SharePoint 2013 Concepts
Core SharePoint 2013 ConceptsLearning SharePoint
 
Share followsync
Share followsyncShare followsync
Share followsyncPaul Stork (Microsoft MVP)
 
SPSLA - Customizing My Sites
SPSLA - Customizing My SitesSPSLA - Customizing My Sites
SPSLA - Customizing My SitesMichael Doyle
 
Social Architecture of SharePoint 2013 for Developers
Social Architecture of SharePoint 2013 for DevelopersSocial Architecture of SharePoint 2013 for Developers
Social Architecture of SharePoint 2013 for DevelopersPaul J. Swider
 

Weitere ähnliche Inhalte

Was ist angesagt?

Ms. Search and Mr. Project
Ms. Search and Mr. ProjectMs. Search and Mr. Project
Ms. Search and Mr. ProjectSPC Adriatics
 
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013Agnes Molnar
 
What’s new in share point 2013
What’s new in share point 2013What’s new in share point 2013
What’s new in share point 2013Wael Sharba
 
10 Quick Wins - No Code
10 Quick Wins - No Code10 Quick Wins - No Code
10 Quick Wins - No CodeJoshua Haebets
 
Top 10 in SharePoint 2013
Top 10 in SharePoint 2013Top 10 in SharePoint 2013
Top 10 in SharePoint 2013Cory Peters
 
SharePoint 2010 Basics for newbies
SharePoint 2010 Basics for newbiesSharePoint 2010 Basics for newbies
SharePoint 2010 Basics for newbiesSachchin Annam
 
Going offline with share point workspace
Going offline with share point workspaceGoing offline with share point workspace
Going offline with share point workspaceJoshua Haebets
 
Share point 2010 Fundamentals
Share point 2010 FundamentalsShare point 2010 Fundamentals
Share point 2010 Fundamentalsbalraj_s
 
Introduction To Microsoft SharePoint 2013
Introduction To Microsoft SharePoint 2013Introduction To Microsoft SharePoint 2013
Introduction To Microsoft SharePoint 2013Vishal Pawar
 
Introduction to SharePoint 2010
Introduction to SharePoint 2010Introduction to SharePoint 2010
Introduction to SharePoint 2010Rushi Waghmare
 
Basics of SharePoint
Basics of SharePointBasics of SharePoint
Basics of SharePointsamirsangli
 
Sharepoint 2010 overview - what it is and what it can do
Sharepoint 2010 overview - what it is and what it can doSharepoint 2010 overview - what it is and what it can do
Sharepoint 2010 overview - what it is and what it can doFaisal Masood
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)SPC Adriatics
 
Introduction To SharePoint 2010
Introduction To SharePoint 2010Introduction To SharePoint 2010
Introduction To SharePoint 2010Rishu Mehra
 
SharePoint 2010 - User Profile Store
SharePoint 2010 - User Profile Store SharePoint 2010 - User Profile Store
SharePoint 2010 - User Profile Store Joshua Haebets
 

Was ist angesagt? (19)

Ms. Search and Mr. Project
Ms. Search and Mr. ProjectMs. Search and Mr. Project
Ms. Search and Mr. Project
 
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013
SPCAdriatics - Search Administration and Troubleshooting in SharePoint 2013
 
What’s new in share point 2013
What’s new in share point 2013What’s new in share point 2013
What’s new in share point 2013
 
Introduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael BlumenthalIntroduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael Blumenthal
 
10 Quick Wins - No Code
10 Quick Wins - No Code10 Quick Wins - No Code
10 Quick Wins - No Code
 
Top 10 in SharePoint 2013
Top 10 in SharePoint 2013Top 10 in SharePoint 2013
Top 10 in SharePoint 2013
 
SharePoint 2010 Basics for newbies
SharePoint 2010 Basics for newbiesSharePoint 2010 Basics for newbies
SharePoint 2010 Basics for newbies
 
Beginners SharePoint introduction
Beginners SharePoint introductionBeginners SharePoint introduction
Beginners SharePoint introduction
 
Going offline with share point workspace
Going offline with share point workspaceGoing offline with share point workspace
Going offline with share point workspace
 
Share point 2010 Fundamentals
Share point 2010 FundamentalsShare point 2010 Fundamentals
Share point 2010 Fundamentals
 
Introduction To Microsoft SharePoint 2013
Introduction To Microsoft SharePoint 2013Introduction To Microsoft SharePoint 2013
Introduction To Microsoft SharePoint 2013
 
Introduction to SharePoint 2010
Introduction to SharePoint 2010Introduction to SharePoint 2010
Introduction to SharePoint 2010
 
SharePoint 101
SharePoint 101SharePoint 101
SharePoint 101
 
Basics of SharePoint
Basics of SharePointBasics of SharePoint
Basics of SharePoint
 
Sharepoint 2010 overview - what it is and what it can do
Sharepoint 2010 overview - what it is and what it can doSharepoint 2010 overview - what it is and what it can do
Sharepoint 2010 overview - what it is and what it can do
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)
 
Introduction To SharePoint 2010
Introduction To SharePoint 2010Introduction To SharePoint 2010
Introduction To SharePoint 2010
 
SharePoint 2010 - User Profile Store
SharePoint 2010 - User Profile Store SharePoint 2010 - User Profile Store
SharePoint 2010 - User Profile Store
 
Core SharePoint 2013 Concepts
Core SharePoint 2013 ConceptsCore SharePoint 2013 Concepts
Core SharePoint 2013 Concepts
 

Ähnlich wie Users, Profiles, and MySites: Managing a Changing SharePoint User population

SPSLA - Customizing My Sites
SPSLA - Customizing My SitesSPSLA - Customizing My Sites
SPSLA - Customizing My SitesMichael Doyle
 
Social Architecture of SharePoint 2013 for Developers
Social Architecture of SharePoint 2013 for DevelopersSocial Architecture of SharePoint 2013 for Developers
Social Architecture of SharePoint 2013 for DevelopersPaul J. Swider
 
PowerPlatform Integrated Sample
PowerPlatform Integrated SamplePowerPlatform Integrated Sample
PowerPlatform Integrated SampleDoug Pearce
 
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveSharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveChirag Patel
 
How Atrium Health SharePoint Team Manages Office 365
How Atrium Health SharePoint Team Manages Office 365How Atrium Health SharePoint Team Manages Office 365
How Atrium Health SharePoint Team Manages Office 365Kelly Jones
 
Top ten new ECM features in SharePoint 2013
Top ten new ECM features in SharePoint 2013Top ten new ECM features in SharePoint 2013
Top ten new ECM features in SharePoint 2013John F. Holliday
 
SPC.Org - Upgrading to SharePoint 2013
SPC.Org - Upgrading to SharePoint 2013SPC.Org - Upgrading to SharePoint 2013
SPC.Org - Upgrading to SharePoint 2013Bert Johnson
 
10 most liked features of SharePoint 2013
10 most liked features of SharePoint 201310 most liked features of SharePoint 2013
10 most liked features of SharePoint 2013Karthik Nallajalla
 
Charlotte SPUG - Planning for MySites and Social in the Enterprise
Charlotte SPUG - Planning for MySites and Social in the EnterpriseCharlotte SPUG - Planning for MySites and Social in the Enterprise
Charlotte SPUG - Planning for MySites and Social in the EnterpriseMichael Oryszak
 
What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013CTE Solutions Inc.
 
User profiles sps bend
User profiles sps bendUser profiles sps bend
User profiles sps bendstephentech911
 
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...Chirag Patel
 
Oracle WebCenter portal
Oracle WebCenter portalOracle WebCenter portal
Oracle WebCenter portalAddvantum
 
SPSLA - What to Expect with SharePoint 2019
SPSLA - What to Expect with SharePoint 2019SPSLA - What to Expect with SharePoint 2019
SPSLA - What to Expect with SharePoint 2019Brian Caauwe
 

Ähnlich wie Users, Profiles, and MySites: Managing a Changing SharePoint User population (20)

Share followsync
Share followsyncShare followsync
Share followsync
 
SPSLA - Customizing My Sites
SPSLA - Customizing My SitesSPSLA - Customizing My Sites
SPSLA - Customizing My Sites
 
Social Architecture of SharePoint 2013 for Developers
Social Architecture of SharePoint 2013 for DevelopersSocial Architecture of SharePoint 2013 for Developers
Social Architecture of SharePoint 2013 for Developers
 
Social In SharePoint 2010
Social In SharePoint 2010Social In SharePoint 2010
Social In SharePoint 2010
 
Building an Extranet with Office 365
Building an Extranet with Office 365Building an Extranet with Office 365
Building an Extranet with Office 365
 
PowerPlatform Integrated Sample
PowerPlatform Integrated SamplePowerPlatform Integrated Sample
PowerPlatform Integrated Sample
 
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveSharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
 
How Atrium Health SharePoint Team Manages Office 365
How Atrium Health SharePoint Team Manages Office 365How Atrium Health SharePoint Team Manages Office 365
How Atrium Health SharePoint Team Manages Office 365
 
Top ten new ECM features in SharePoint 2013
Top ten new ECM features in SharePoint 2013Top ten new ECM features in SharePoint 2013
Top ten new ECM features in SharePoint 2013
 
SPC.Org - Upgrading to SharePoint 2013
SPC.Org - Upgrading to SharePoint 2013SPC.Org - Upgrading to SharePoint 2013
SPC.Org - Upgrading to SharePoint 2013
 
10 most liked features of SharePoint 2013
10 most liked features of SharePoint 201310 most liked features of SharePoint 2013
10 most liked features of SharePoint 2013
 
Charlotte SPUG - Planning for MySites and Social in the Enterprise
Charlotte SPUG - Planning for MySites and Social in the EnterpriseCharlotte SPUG - Planning for MySites and Social in the Enterprise
Charlotte SPUG - Planning for MySites and Social in the Enterprise
 
What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013
 
2014 03-27 Share Point Portals
2014 03-27 Share Point Portals2014 03-27 Share Point Portals
2014 03-27 Share Point Portals
 
2013-10-29 Capabilities of SharePoint
2013-10-29 Capabilities of SharePoint2013-10-29 Capabilities of SharePoint
2013-10-29 Capabilities of SharePoint
 
User profiles sps bend
User profiles sps bendUser profiles sps bend
User profiles sps bend
 
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
 
Oracle WebCenter portal
Oracle WebCenter portalOracle WebCenter portal
Oracle WebCenter portal
 
SPSLA - What to Expect with SharePoint 2019
SPSLA - What to Expect with SharePoint 2019SPSLA - What to Expect with SharePoint 2019
SPSLA - What to Expect with SharePoint 2019
 
Social features sp2013
Social features sp2013Social features sp2013
Social features sp2013
 

Kürzlich hochgeladen

How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilV3cube
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 

Kürzlich hochgeladen (20)

How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 

Users, Profiles, and MySites: Managing a Changing SharePoint User population

  • 1. Managing a Changing SharePoint User Population
  • 2. Paul Papanek Stork • Principal Architect for BlueChip Consulting Group • http://www.bluechip-llc.com • Contributing Author • Developer’s Guide to WSS 3.0 • MOSS 2007 Best Practices • Author • MCTS: WSS 3.0 Configuration Study Guide (70-631) • Pro SharePoint 2010 Development for Office 365 • Contact Information • Email: Paul.Stork@bluechip-llc.com • Blog: http://dontPaPanic.com/blog • Twitter: @PStork
  • 3. Agenda • AD Users, Profiles, & the UserInfo table • How SharePoint Security Works • Managing Profile Property/UserInfo Changes • Filtering User Synchronization • Cleaning up MySites and Profiles
  • 4. User Profiles and UserInfo Table • Foundation and Server are different • Foundation – UserInfo table only • Server – UserInfo table and Profiles • Profiles can be imported from AD, LDAP, or BCS • Profile changes are synced to UserInfo table • Quick sync every 5 minutes (new users only) • Full sync hourly • Users not marked as active are NOT sync’d • User information not pulled from consistent location • Lists and Welcome Menu use UserInfo table • People search crawls profiles
  • 5. WebFrontEnd Profile Synchronization Service Instance Profile Service Instance Search Indexing Tags and Security Trimming Enterprise Metadata Tagging and Profile Properties WFE talks to the service and SQL, maintains Front-end cache Mid-tier cache, optimized for most- used profiles, 256 Mb default (good for 500k users on average) Social Data SyncProfiles User Profile Service
  • 6. User Profile Timer JobsName Description Timing Activity Feed Cleanup Cleans up pre-computed activities that are used in activity feeds that are older than 14 days. This job does not affect the User Profile Change Log. Daily at 3 AM Activity Feed Pre-computes activities to be shown in user activity feeds. Hourly Audience Compilation Computes memberships of defined audiences. Weekly, Sat at 1 AM My Site Suggestions Email Sends e-mail messages that contain colleague and keyword suggestions to people who do not update their profile often, prompting them to update their profiles. Monthly, 15th at 10 PM Social Data Maintenance Aggregates social tags and ratings and cleans the social data change log. Hourly, 30 min after Social Rating Synchronization Synchronize rating values between Social Database and Content database Change Cleanup Job Cleans up data that is 14 days old from User Profile Change Log. Daily at 10 PM Change Job Processes changes to user profiles Hourly, on the hour Incremental Synchronization Synchronizes user, group and group membership changes between the User Profile Application and specified directory source Daily at 1 AM Language Synchronization Job Looks for new language pack installations and makes sure that strings that related to the user profile service are localized correctly. Every minute SharePoint Full Synchronization Synchronizes user information from the user profile application to SharePoint users and synchronizes site memberships from SharePoint to the user profile application. Hourly, on the hour SharePoint Quick Synchronization Synchronizes user information from the user profile application to SharePoint users who were recently added to a site. Every 5 minutes My Site Cleanup Job When a user is deleted, sends an e-mail message to the manager containing a request to the manager to move any documents or data that the manager wants to preserve, because the site might be deleted in the future. Hourly, on the hour System Job to Manage User Profile Synchronization Manages provisioning, run steps and additional tasks related to User Profile Synchronization. (Note: Don’t Change Timing) Every minute
  • 7. SharePoint Security • SharePoint handles Authorization not Authentication • Profiles have no connection to Authorization • Authorization is the union of three things • Principal - SharePoint User or SharePoint Group • Permission Level – Named set of Permissions • Securable Object – Web site, List, or Item • Key Understandings • Inherited by default • Users, Groups, and Permission Levels are shared by all sites in a Site Collection • Three part union can be applied anywhere that Inheritance is broken • Security only goes down to the List Item level
  • 8. SharePoint Security Principals • Groups • Users Permission Level • Read • Contribute • Full Control • Etc. Securable Object • Site • List • Item • Document • Etc.
  • 9.
  • 10. Problems Editing User Profiles • Some profile properties are not editable • Privacy level for some properties are locked • Errors editing fields that require Managed Metadata • Ask me About MemberOf • Job Title Department • Proxy Addresses Interests • Office Location Followed #Tags • Past Projects • Skills • Schools
  • 11. Problems Synching User Information • Most UI information pulled from User Info, not Profiles • Two Sync Timer Jobs to Sync Information • Problem: Inactive Users Ignored • Inactive Users (pre-2010) • Permissions gained through AD Group Membership • Must Login to be in Userinfo Table • Must Contribute to be marked ACTIVE • An Alternative Method • Stsadm -o sync -ignoreisactive 1 • Stsadm -o sync -deleteolddatabases 0
  • 12.
  • 13. Additional Challenges • How to keep from Importing All users • Filter based on OU • Filter based on UserProperties • UserInfo still used in List & Library Metadata • Profile Synch Deletes User Profile but not UserInfo • If you delete User from Site Collection Metadata breaks
  • 14. Property Filter Bit On Equals Value Disabled Account 2 Account Locked Out 5 No Password Required 6 Computer Account 13 Domain controller Account 14 Non-expiring password 17 Password Expired 24 Common Profile Sync Filters • Full List available at: http://www.harbar.net/archive/2011/02/22/323.aspx
  • 15. Effect of Filtering Users • UserInfo Table Entry Remains • Disabled Users can no longer log in • Profiles will be deleted if Filtered out of Sync • Re-Sync’d Profiles have My Site Issues • Can’t Connect to existing MySite • Can’t Create a New MySite • Fix is to edit the Personal Site address property
  • 16.
  • 17. What’s in a MySite • Shared Locations • My Site • My Newsfeed • My Profile • Personal Locations • My Content – Personal MySite • Personalization Site Tabs • Created & Managed Centrally • Displayed as Tab in MySite
  • 18. Cleaning up MySites and Profiles 1. User’s AD account/profile is deleted 2. User Profile Service Incremental Sync runs (Not User Profile to SharePoint Sync) 3. My Site Cleanup Job runs 4. User’s Manager receives e-mail and access to User’s MySite 5. Manager retrieves Intellectual Property from MySite 6. User’s MySite is deleted
  • 19. Email Sent to Manager
  • 20. MySite Deletion • Deletes MySite after 14 days • Based on an entry in the Profile database in the MySiteDeletionStatus Table • Requires Custom Code to prevent or postpone • Not archived before deletion • Deletion Approval is not required
  • 21. Issues & Weak Points • Lots of dependencies on Manager • Defined in Active Directory • Is a SharePoint User • Has a valid email • User Profile Sync • User Deleted in AD • Disabled Users if Filtered • UserInfo Table • References not Deleted with Profile • Manual clean-up of InfoTable causes loss of history
  • 22.
  • 23. Avoiding Pitfalls • Name Groups based on where they will be used to avoid misuse • Don’t adjust Group membership in sub sites • Always break inheritance from the top down in the site hierarchy • Delete old MySite before re-synching to create User Profile
  • 24. Best Practice Alternatives • Ensure that all dependencies are in place • Do not remove old users from People and Groups list (UserInfo) - or - • Create a Custom Workflow for off- boarding 1. Disable AD users rather than delete them 2. Delegate Site Collection Administrator role 3. Mark profiles inactive with custom field 4. Do not remove old users from People and Groups list
  • 25. Additional Resources • Synchronize user and group profiles in SharePoint Server 2013 - Technet http://tinyurl.com/ProfileSync2013 • Rational Guide to implementing SharePoint Server 2010 User Profile Synchronization- Spence Harbar http://www.harbar.net/articles/sp2010ups.aspx • Inside the SharePoint 2010 My Site Cleanup Timer Job http://tinyurl.com/mySiteCleanup
  • 26. Contact Information Email: Paul.Stork@bluechip-llc.com Blog: http://dontPaPanic.com/blog Twitter: @PStork

Hinweis der Redaktion

  1. Stsadm –o sync –ignoreisactive 1 (Syncs All User Profiles to UserInfoTable)-excludewebapps “http://url.domain.com,...” (except Site Collections in these Web apps)Stsadm –o sync –deleteolddatabases/listolddatabases 0 (resets sync record so all fields will sync on next run)Make sure to run stsadm –o sync without switches after to actually kick off sync job.
  2. Show how to allow user edit access to a propertyDemonstrate how to change visibility level or propertyEdit properties for two users in CA to simulate Profile Sync (one active one non-active=add via AD group, logged in, but never contributed) Run User Profile to SharePoint Full Synchronization manuallyActive User will sync, non-active user won’t