[2024]Digital Global Overview Report 2024 Meltwater.pdf
Planning and Configuring Extranets in SharePoint 2010
1. Thinking SharePoint? Think Jornata.
Planning and Configuring
Extranets in SharePoint 2010
Prepared for
Prepared by Geoff Varosky
Jornata
Jornata
61-63 Chatham Street
Fourth Floor
Boston, MA 02109
Submitted on January 9, 2012
9. Requirements
• What do you REALLY need?
– Who needs access?
– How sensitive is the data?
– How sensitive is your network?
– Budget?
email: geoff.varosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
9
Thinking SharePoint? Think Jornata.
11. Requirements
• Who needs access?
– Internal employees only?
• Active Directory
– Internal employees and external users?
• Active Directory
– Additional domain with restricted access
• Active Directory & Forms Based Authentication
– Claims Authentication
– External
• Clients, partners, consultants
– Active Directory
– Forms Based Authentication
– Separate or together?
email: geoff.varosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
11
Thinking SharePoint? Think Jornata.
12. Remember this…
You are giving a key
to access your
company’s data in
some form or
another.
email: geoff.varosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
12
Thinking SharePoint? Think Jornata.
13. Requirements
• How sensitive is the data & internal network?
– Network & SharePoint
• DMZ
• Separate web application
• Separate farm
email: geoff.varosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
13
Thinking SharePoint? Think Jornata.
14. Requirements
• How sensitive is the data & internal network?
– Security
• Secure Certificates (SSL)
• Encryption
• Firewall
– Both hardware and software?
– Content Filtering
– ACLs
• Virtual Private Network
• Anti-Virus and Anti-Malware
• Client-based certificates
• One-time passwords (RSA tokens)
• Phone verification
• Biometrics
– Retina, fingerprint, facial structure, hair and blood samples
email: geoff.varosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
14
Thinking SharePoint? Think Jornata.
18. Managing Users
• IIS
– Must change default role manager and membership providers
each time = DOWNTIME.
– Separate IIS Virtual Web Application
• BCS
– Great way to manage users (passwords, emails, etc.)
– No ability to create users without another layer of logic
• Codeplex
– SharePoint 2010 FBA Pack
• http://sharepoint2010fba.codeplex.com
• 3rd Party…
– DevIt.EU
• http://www.devit.eu/
email: geoff.varosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
18
Thinking SharePoint? Think Jornata.
19. Remember this too…
• Test the configuration
• Review security regularly
email: geoff.varosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
19
Thinking SharePoint? Think Jornata.
20. Resources
• My blog series
– Part 1 : http://go.gvaro.net/ExtranetsP1
– Part 2 : http://go.gvaro.net/ExtranetsP2
– Part 3 : http://go.gvaro.net/ExtranetsP3
• My Virtual Environment via CloudShare
– SharePoint 2010 Information Worker image
– Configured just about the same as we did here
– On the desktop
• Links to my information
• Link to Extranet
• 14 Day Trial
• Use promo code GEOFF to get first month for $29!
• http://go.gvaro.net/ExtranetsVM3
email: gvarosky@jornata.com | web: www.jornata.com | blog: www.sharepointyankee.com | twitter: @gvaro
20
Thinking SharePoint? Think Jornata.