In our environment I wanted to host both the MySites and the default web application on the same server and use the same IP - at the same time I wanted to setup SSL only on both these sites using a wildcard certificate.
The goal is to get to where people could browse portal.domain.com and mysite.domain.com from SSL only and have it work both inside and outside the firewall.
I setup SharePoint with the default web application and then configured mysites to run on SSL only.
So now I could get to https://mysite.domain.com without issue.
In teh Alternate Access Mappings I changed the URL for the default web application to https://portal.domain.com and set it to also be SSL.
Then I went into IIS and configured both to bind to the wildcard certificate.
Now the websites showed stopped in IIS and they would not restart due to a conflict.
What happens is that you have to add a host header to the default web application in IIS for it to restart - except you cannot do this in the binding screen.
MAKE A BACKUP PRIOR TO THIS STEP (c:\windows\system32\inetsrv\config\applicationHost.config)
To add a host header in IIS 7:
Run NotePad as an administrator
File/Open
c:\windows\system32\inetsrv\config
applicationHost.config
Open this file and search for your default Web Application name - it will appear in the file like:
site name="SharePoint - 80"...
Look for bindings and specifically the line "binding protocol=..."
On this line you will need to add your host header (portal.domain.com) after the :443: and inside the quotations - like this
"binding protocol="https" bindinginformation="*:443:portal.domain.com" />
Now save the file and go into IIS and you can start the websites.
If you want to ensure the default website is SSL only you go into IIS and edit the bindings on that web application and remove the port 80 binding.
They will now respond to SSL only.
Thursday, February 16, 2012
Wednesday, February 15, 2012
Windows 7 Network Shortcut location
I had a need to copy some network shortcuts from one account to another on Win7.
C:\Users\[username]\AppData\Roaming\Microsoft\Windows\Network Shortcuts
This is where Windows keeps the shortcuts for network locations.
C:\Users\[username]\AppData\Roaming\Microsoft\Windows\Network Shortcuts
This is where Windows keeps the shortcuts for network locations.
SharePoint 2010 LoopBack and Search errors
I was having total fits with getting my search to work properly in our environment.
I have SSL enabled on our site and on our MySites, also there are AAM for each site.
What I found was an error when I tried to search these sites, even when I added the read permissions to the web applications.
There are several postings about DisableLoopBack and Server 2008 R2 - here are the two I used:
http://www.harbar.net/archive/2009/07/02/disableloopbackcheck-amp-sharepoint-what-every-admin-and-developer-should-know.aspx
http://www.cleverworkarounds.com/2011/07/22/troubleshooting-sharepoint-people-search-101/
So, for me I had to take the less attractive route to get this search working but once I disabled loopback my search started to work.
To search profiles via ssl:
I have SSL enabled on our site and on our MySites, also there are AAM for each site.
What I found was an error when I tried to search these sites, even when I added the read permissions to the web applications.
There are several postings about DisableLoopBack and Server 2008 R2 - here are the two I used:
http://www.harbar.net/archive/2009/07/02/disableloopbackcheck-amp-sharepoint-what-every-admin-and-developer-should-know.aspx
http://www.cleverworkarounds.com/2011/07/22/troubleshooting-sharepoint-people-search-101/
So, for me I had to take the less attractive route to get this search working but once I disabled loopback my search started to work.
To search profiles via ssl:
- Setup your Content Source to https://
- Setup Profile Location (mysite) to sps3s://
- Don't miss the sps3s here or it will not index via SSL!
Tuesday, February 14, 2012
SharePoint 2010 RePost - Top Configuration Tips - Todd Klindt
I have heard Todd speak at a few SharePoint events and I highly recommend attending any of his sessions - very informative and fun too!
Checkout this article on SharePoint Pro - Top 10 SharePoint 2010 Configuration Mistakes -- and How to Fix Them
http://www.sharepointpromag.com/content1/topic/sharepoint-2010-misconfigurations-141636/catpath/sharepoint
Checkout this article on SharePoint Pro - Top 10 SharePoint 2010 Configuration Mistakes -- and How to Fix Them
http://www.sharepointpromag.com/content1/topic/sharepoint-2010-misconfigurations-141636/catpath/sharepoint
SharePoint 2010 Name ActiveX Control
Argg - this stinks, why won't this go away on Windows 7...
It appears that you have to add your SharePoint WFE address into IE as a Local Intranet entry.
DO NOT ADD AS TRUSTED SITE!!
- found this out the hard way that it will break passthru authentication!
Now I just need to get with our admins to edit our domain GPO to add this to all our domain machines....
Eventually when we have Lync up and running I'll have to figure out how to load this control properly so that presence information will correctly display in SharePoint. For now that is a future project :-)
It appears that you have to add your SharePoint WFE address into IE as a Local Intranet entry.
DO NOT ADD AS TRUSTED SITE!!
- found this out the hard way that it will break passthru authentication!
Now I just need to get with our admins to edit our domain GPO to add this to all our domain machines....
Eventually when we have Lync up and running I'll have to figure out how to load this control properly so that presence information will correctly display in SharePoint. For now that is a future project :-)
SharePoint 2010 Search Setup
Once again SharePoint George has come to my rescue.
I was having problems with search not finding everything - found this posting and I had missed a few steps in allowing the search service account access to the UPA.
http://sharepointgeorge.com/2010/configuring-enterprise-search-sharepoint-2010/
I was having problems with search not finding everything - found this posting and I had missed a few steps in allowing the search service account access to the UPA.
http://sharepointgeorge.com/2010/configuring-enterprise-search-sharepoint-2010/
SharePoint 2010 - My Sites default page to My Content
Now that I have My Sites configured I enabled the NewFeeds....
Well, I like what it can do but I HATE that the site defaults to the NewFeeds first.
Ahh - found someone that has the same problem and knows how to fix it.
http://sharepoint.licomputersource.com/2010/11/how-to-remove-the-whats-happening-status-message-from-the-user-profile-page-in-sharepoint-2010/
Well, I like what it can do but I HATE that the site defaults to the NewFeeds first.
Ahh - found someone that has the same problem and knows how to fix it.
http://sharepoint.licomputersource.com/2010/11/how-to-remove-the-whats-happening-status-message-from-the-user-profile-page-in-sharepoint-2010/
"So lets jump into the technical side of today’s post. How do we go about changing the default home page of the My Site Host? Then disable and remove the What’s Happening Status Message. Pretty simple believe it or not. To change the default home page open the site collection in SharePoint Designer (you need to be a site collection owner of the my site host). After its open click on all files on the left hand side. In the right main area you should now see a bunch of items one being default.aspx which is the current default page. The other being person.aspx which is our desired default page. So go ahead and select person.aspx and then in the ribbon click set as home page."Many thanks again to the SharePoint community for posting these great articles - what a time saver!
SharePoint 2010 setup My Sites
On the the MySites adventure.
I found an Excellent series of postings that explain exactly how to setup/configure the User Profile Service and setup/configure MySites in 2010.
http://sharepointgeorge.com/2010/configuring-the-user-profile-service-in-sharepoint-2010/
- This is how to setup the user profile service to import profiles into SharePoint
- I had an issue where our FQDN is not the same as our NetBIOS domain name so there was some tweaking I had to do to make this work properly to import our users with the domain\username
Our setup is for machines to join the corp.domain.com and our NetBIOS shortname is domain
When you run the default import you will get corp\username which is incorrect...
You need to first update to the newest CU - I used the December 2011 CU
Then follow the steps outlined here to use PowerShell to enable NetBIOS for UPA
http://tremblayse.wordpress.com/2011/10/17/ups-and-netbios-domain-name-different-then-fqdn-domain-name/
Now, I want to verify that we will only import user profiles that are enabled in AD. We have a policy that allows for accounts to be disable for a period of time prior to their removal from AD and I don't want those accounts in SharePoint.
http://lindachapman.blogspot.com/2011/06/sharepoint-2010-user-profile-importhow.html
Thanks Linda - I would have never found this obscure setting on my own!
Now verify the proper domain names are in the user profiles...
On to setup for MySites - again SharePoint George to the Rescue!
This guy has EXCELLENT postings - saved a ton of time
http://sharepointgeorge.com/2010/configuring-my-site-sharepoint-2010/
There you have it - configured MySites with their own seperate Web Application
I found an Excellent series of postings that explain exactly how to setup/configure the User Profile Service and setup/configure MySites in 2010.
http://sharepointgeorge.com/2010/configuring-the-user-profile-service-in-sharepoint-2010/
- This is how to setup the user profile service to import profiles into SharePoint
- I had an issue where our FQDN is not the same as our NetBIOS domain name so there was some tweaking I had to do to make this work properly to import our users with the domain\username
Our setup is for machines to join the corp.domain.com and our NetBIOS shortname is domain
When you run the default import you will get corp\username which is incorrect...
You need to first update to the newest CU - I used the December 2011 CU
Then follow the steps outlined here to use PowerShell to enable NetBIOS for UPA
http://tremblayse.wordpress.com/2011/10/17/ups-and-netbios-domain-name-different-then-fqdn-domain-name/
Now, I want to verify that we will only import user profiles that are enabled in AD. We have a policy that allows for accounts to be disable for a period of time prior to their removal from AD and I don't want those accounts in SharePoint.
http://lindachapman.blogspot.com/2011/06/sharepoint-2010-user-profile-importhow.html
Thanks Linda - I would have never found this obscure setting on my own!
Now verify the proper domain names are in the user profiles...
On to setup for MySites - again SharePoint George to the Rescue!
This guy has EXCELLENT postings - saved a ton of time
http://sharepointgeorge.com/2010/configuring-my-site-sharepoint-2010/
There you have it - configured MySites with their own seperate Web Application
SharePoint 2010 PDF icon and display in browser
You have to make some edits to allow SharePoint to display the PDF Icon in the libraries.
Here is the KB article on this:
http://support.microsoft.com/kb/832809
You have to download the small icon from Adobe at:
http://www.adobe.com/images/pdficon_small.gif
Once you have the icon fixed you will notice that when you click the document it asks to save and does not open in the browser PDF viewer.
This is due to a change in security with IE8 and above.
I found the fix on the following site:
http://whitepages.unlimitedviz.com/2010/05/opening-pdf-files-in-sharepoint-2010/
It involves changing the Web Application / General Settings / Browser File Handling to Permissive instead of Strict (which is the default).
Don't forget to also change this on the MySite web application as well !
Here is the KB article on this:
http://support.microsoft.com/kb/832809
You have to download the small icon from Adobe at:
http://www.adobe.com/images/pdficon_small.gif
Once you have the icon fixed you will notice that when you click the document it asks to save and does not open in the browser PDF viewer.
This is due to a change in security with IE8 and above.
I found the fix on the following site:
http://whitepages.unlimitedviz.com/2010/05/opening-pdf-files-in-sharepoint-2010/
It involves changing the Web Application / General Settings / Browser File Handling to Permissive instead of Strict (which is the default).
Don't forget to also change this on the MySite web application as well !
SharePoint 2010
I'm working on an upgrade from MOSS 2007 to SharePoint Server 2010.
I'll be posting updates and links to other sites with information that I used for my upgrade.
I'll be posting updates and links to other sites with information that I used for my upgrade.
Subscribe to:
Posts (Atom)