Kevin Remde's IT Pro Weblog
IT Pro Resources
TechNet EventsMicrosoft Security Response CenterTechNet IT Manager Community HubMicrosoft Virtual AcademyKevin’s Evaluation Download Center
IT Pro Evangelist Blogs
Blain Barton Blain Barton's Blog@BlainBar
Brian LewisMy Thoughts on IT...@BrianLewis_
Dan Stolts IT Pro Guru Blog@ITProGuru
Jennelle Crothers TechBunny@jkc137
Keith MayerIT Pros ROCK!@KeithMayer
Kevin Remde Full of I.T.@KevinRemde
Matt Hester Matthew Hester's WebLog@MatthewHester
Tommy PattersonVirtually Cloud 9@Tommy_Patterson
Yung Chou Yung Chou on Hybrid Cloud@YungChou
IMPORTANT UPDATE: This promotion and promotion code have expired.Please CLICK HERE for the most current promotion.
Whenever I present a live TechNet Event, I ask my audience to raise their hands if they are a TechNet subscriber. Usually about 1/3 of the audience raises their hand. Considering that this is typically a Microsoft-friendly audience, I'm a little shocked that there aren't more hands going up. The TechNet Subscription is such a great resource for IT Pros, for these reasons:
For all of those reasons (Heck, for any ONE of those reasons), a TechNet Plus subscription is worth the yearly investment.
"Cool, Kevin. But how do I save $100?"
For new subscriptions, until May 31st June 30th!, 2008, you can save $100 on any version of a TechNet Plus subscription.
Write down or copy this promotion code to your clipboard: TMSAM08 (That's zero-eight. Not the letter O. Think of 2008.)
Then GOTO the TechNet Subscription Center (CLICK HERE), and use the code to get your savings.
"New subscriptions only?"
Yes, unfortunately for right now it's only for new subscriptions, and only for people in the United States. The folks running this program are working on a way to include other areas, and perhaps do this for renewals as well, but it doesn't look like that's going to happen anytime soon, I'm afraid. But hey.. a new subscription might still be worth the savings if you only have a few months left on your existing subscription.
...and that $100 will go a long way towards that Zune you've always wanted.
Our TechNet folks have put together a promotion, and a fun game to go along with it. Those of us who spent too many hours playing cheesy pixilated adventure games** about 15-20 years ago will appreciate the awesome reproduction in the form of this cute online game, "Server Quest".
The sappy soundblaster-esque (you have my permission to use that word) music will really get on your nerves after awhile; which is the point, I believe. And the storyline and quizzes are a lot of fun. I love the fact that our hero sleeps with a TechNet Magazine tucked under his pillow.
Note: There is a a promotion code that you can write down to save $75 on TechNet. Readers of my blog already know that you can save $100 on a TechNet Subscription with the code I provide.
** "Hey Kevin - By 'cheezy pixilated adventure games', you're talking about all that time you wasted playing 'Leisure Suit Larry', right?"
Below are the best of the questions and answers that occurred during our TechNet Webcast entitled, "SharePoint Server 2007 (Part 5 of 6): SharePoint Server 2007 Security, from Service Accounts to Item-Level Access"
John Weston was kind enough to help out with the questions and answers during the webcast. Much of what you see below is either specifically his answer, or based on the answer he gave during the session. I've expanded upon them, and added answers to questions we didn't get to answer or were answered verbally on the webcast. But basically this was possible as a result of his effort, and I wanted to give him credit here. Thanks, John!
PS - here are the RESOURCES I pulled together for this webcast
Questions and Answers
“A group can be created at the Context level and at the individual level?”
“How can you add users from outside of AD if you are using AD authentication?”
Check this whitepaper for a discussion on security methods http://office.microsoft.com/download/afile.aspx?AssetID=AM101638561033
“We are using windows authentication through AD for all users. What is the easiest/best/cleanest way to add test accounts?”
If you’re using AD for all users, then it's best to create and manage test AD users.
“Is there a way of assigning ‘none’ for a user's permissions? I want to explicitly revoke a user's access to a site, for instance.”
Check this link for permissions discussion http://office.microsoft.com/en-us/sharepointtechnology/HA101001491033.aspx#2 If they’re getting permissions through a group membership, then the only way to revoke permissions is to remove them from the group.
“I can import user accounts from LDAP server but cannot use LDAP to authenticate the imported users. Any idea?”
Check this link http://technet2.microsoft.com/Office/en-us/library/a38bc5b6-9d65-4c20-811b-484b082d28dd1033.mspx?mfr=true I think it may have the answer youre looking for.
“Are you going to have more advance level wbcast. How to do this type of work through code?”
I won't - But I know that our Dev Evangelists (MSDN events) have done sessions on this kind of thing. You should be able to find them if you go to http://www.microsoft.com/events and search for them. In fact, I did find one available on-demand, delivered by a good friend of mine – Glen Gordon. It’s specifically on SharePoint Custom authentication providers. http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032346257&culture=en-US
“What is the individual level? Is that a particular document?”
Yes. You can apply permissions down to the individual item level - which could be a specific document.
See you on Wednesday for PART 6 - SharePoint Server 2007 (Part 6 of 6): Keeping Control of Your SharePoint Sites with IT Governance
Below are the best of the questions and answers that occurred during our TechNet Webcast entitled, "SharePoint Server 2007 (Part 3 of 6): Disaster Recovery"
PS - here's the RESOURCES I pulled together for this webcast
“I notice in the bottom right about Microsoft TechNet like a sponsor, My question is there a subscription to the Microsoft TechNet magazine ?”
TechNet is a Microsoft Brand, TechNet subscription is a software subscription. A separate company runs TechNet Magazine. http://www.microsoft.com/technet/technetmag for more info.
Note that one of the benefits (among many) of the TechNet Subscription is that you are automatically subscribed to TechNet Magazine. (And right now you can save $100 on it.)
“Any recommendations for third party DR tools?”
Again, as I said in the Q&A from part 2, why would you ever EVER consider something “third party”?! (and again - JUST KIDDING) I’m sure there are many; but I’m not allowed to recommend them here. And anyway, my own answer would be based on a Windows Live Search, which is something you could do as well.
“What is the benefit of an index backup, just the time it saves in rebuilding?”
Yes, that's about it. That could be significant; depending on the amount of information you’re crawling and indexing.
“Search Index is not backed by SQL Server? How do you back it if you can?”
As I said later in the presentation – yes, the indexes are not saved in or backed up by a SQL backup. You would backup the indexes through the SharePoint Backup and Restore (UI or Command-line “stsadm.exe”).
“Can you have the backup and restore just to that single application instead of the whole shared services?”
No. As you may have seen briefly in our demonstrations from Monday and Today, you can select certain items, and certain other items included in that selection are listed (and highlighted) to show you what’s being backed up if you select that level. For Shared Services, the applications are backed up as part of that, but not selectable for backup or restore separately.
“If you do only command line backup, how do you deal with transaction log of the DB?”
Command-line stsadm.exe backup (and SharePoint Backup and Restore in the UI) are a point-in-time backup (full or differential). They’re not concerned with the plumbing of SQL or the transaction logs. If you decide instead to use SQL backup (or us it in addition to your SharePoint backups), then yes, transaction log backups may be a part of your backup process. But the two (SharePoint vs. SQL backup choice) aren’t really related.
“Do you have a list of the front-end files that need to be backed up? How often do these files change? What is stored in them?”
I found a document online that describes this, but it isn’t live any longer (not sure why). So from the cached page (thanks again, Windows Live Search) I found this text:
“Web front end server data includes custom assemblies, configuration files, add-in software, custom templates, the IIS metabase, and the Inetpub directory. The size of a WFE server backup depends how much customization is done on the WFEs. An estimate based on a medium server farm consisting of two WFE servers is approximately 50 MB for each server. You can estimate the maximum amount of hard disk space required for front-end Web server backups by using the following formula: The number of WFE servers × 50 MB = estimated disk space required”
“Web front end server data includes custom assemblies, configuration files, add-in software, custom templates, the IIS metabase, and the Inetpub directory. The size of a WFE server backup depends how much customization is done on the WFEs. An estimate based on a medium server farm consisting of two WFE servers is approximately 50 MB for each server. You can estimate the maximum amount of hard disk space required for front-end Web server backups by using the following formula:
The number of WFE servers × 50 MB = estimated disk space required”
“I attended 1,2 and was wondering if an email is sent out to attendees once the webcast is posted with voice and ppt and pdf when it is ready?”
The e-mail will contain a link to where you can go to for a link to the webcast recording, as well as a download of the PowerPoint.
Here are some resources relating to part 3 of the SharePoint Server 2007 webcast series I'm presenting, entitled "SharePoint Server 2007 (Part 3 of 6): Disaster Recovery".
I hope you find them useful.
SharePoint Series Landing Page http://www.microsoft.com/events/series/sharepointserver.aspx?tab=webcasts
Be Prepared: A Guide to SharePoint Disaster Prevention and Recovery (SPS 2003 focus, but still useful info) http://www.microsoft.com/technet/technetmag/issues/2005/11/BePrepared/default.aspx
Administering backup and recovery for Windows SharePoint Services 3.0 Technology http://technet2.microsoft.com/windowsserver/WSS/en/library/64171b8c-5608-4e69-881a-67996080b7ff1033.mspx?mfr=true
Administering backup and recovery for Office SharePoint Server 2007 http://technet2.microsoft.com/Office/en-us/library/468b8840-258c-42ba-a89e-9d09701a7cda1033.mspx?mfr=true
Bill Baer's Blog - SQL Server 2005 Database Mirroring and Windows SharePoint Services 3.0/Microsoft Office SharePoint Server 2007 Part 1 (Introduction, Overview, and basics): http://blogs.technet.com/wbaer/archive/2007/04/23/sql-server-2005-database-mirroring-and-windows-sharepoint-services-3-0-microsoft-office-sharepoint-server-2007-part-1-introduction-overview-and-basics.aspx
Part 2 (Configuration): http://blogs.technet.com/wbaer/archive/2007/05/25/sql-server-2005-database-mirroring-and-windows-sharepoint-services-3-0-microsoft-office-sharepoint-server-2007-part-2-configuration.aspx
Part 3 (Failover): http://blogs.technet.com/wbaer/archive/2007/08/01/sql-server-2005-database-mirroring-and-windows-sharepoint-services-3-0-microsoft-office-sharepoint-server-2007-part-3-failover.aspx
Database Mirroring in SQL Server 2005 http://www.microsoft.com/technet/prodtechnol/sql/2005/dbmirror.mspx
Download a Virtual Machine VHD already pre-installed for testing SharePoint Server 2007http://blogs.msdn.com/sharepoint/archive/2007/06/22/microsoft-office-sharepoint-server-2007-vhd-i-e-virtual-machine-now-available-for-download.aspx
Microsoft Office 2007 Online - Home Page http://office.microsoft.com/en-us/products/default.aspx
Microsoft Office SharePoint Server 2007 Home http://office.microsoft.com/en-us/sharepointserver/FX100492001033.aspx
Microsoft Office SharePoint Server 2007 Product Guide http://office.microsoft.com/en-us/sharepointserver/HA101680161033.aspx
Microsoft Office SharePoint Server 2007 Product Overview http://office.microsoft.com/en-us/sharepointserver/HA101656531033.aspx
Download the Trial of Office SharePoint Server 2007 http://www.microsoft.com/downloads/details.aspx?FamilyId=2E6E5A9C-EBF6-4F7F-8467-F4DE6BD6B831&displaylang=en
Microsoft Windows SharePoint Services 3.0 http://office.microsoft.com/en-us/sharepointtechnology/FX100503841033.aspx
Download Windows SharePoint Services 3.0 http://technet.microsoft.com/en-us/windowsserver/sharepoint/bb400747.aspx
Integration with Office SharePoint Server 2007 (great diagram of the components that make up the whole) http://msdn2.microsoft.com/en-us/library/ms454209.aspx
Microsoft SharePoint Products and Technologies Team Blog http://blogs.msdn.com/sharepoint
Microsoft TechNet http://www.microsoft.com/technet
Live TechNet Events http://www.technetevents.com
Microsoft Events page: http://www.microsoft.com/events
Save $100 on a TechNet Plus Subscription (including non-timeout eval software, 2 support calls, and more!)
I'll never use one of those alcohol wipes again...
Here are some resources relating to part 5 of the SharePoint Server 2007 webcast series I'm presenting, entitled "SharePoint Server 2007 (Part 6 of 6): Keeping Control of Your SharePoint Sites with IT Governance".
The SharePoint Guide - Document Download http://download.microsoft.com/download/e/0/6/e06e6d91-7d14-44d0-83fb-2800fcd3a4fb/SharePointGuide.doc
Community Kit for SharePoint: Windows Live ID Authentication (SharePoint Team Blog) http://blogs.msdn.com/sharepoint/archive/2007/10/15/announcing-community-kit-for-sharepoint-windows-live-authentication.aspx
Plan for Authentication (Office SharePoint Server) http://technet2.microsoft.com/Office/en-us/library/ef5a9ffd-67ba-407b-9d1c-613d9295db8f1033.mspx
Administering records management http://technet2.microsoft.com/Office/en-us/library/743e6100-4b9c-4789-a5c1-2a653d4716d51033.mspx
Downloadable Book: Office SharePoint Server Security http://technet2.microsoft.com/Office/en-us/library/ef5a9ffd-67ba-407b-9d1c-613d9295db8f1033.mspx?mfr=true
Windows SharePoint Services 3.0 Technical Library http://technet2.microsoft.com/windowsserver/WSS/en/library/700c3d60-f394-4ca9-a6d8-ab597fc3c31b1033.mspx?mfr=true
Get SharePoint Training on your Desktop http://office.microsoft.com/en-us/sharepointserver/HA102488011033.aspx?pid=CL100796281033
Download a Virtual Machine VHD already pre-installed for testing SharePoint Server 2007 http://blogs.msdn.com/sharepoint/archive/2007/06/22/microsoft-office-sharepoint-server-2007-vhd-i-e-virtual-machine-now-available-for-download.aspx
Here are some resources relating to part 1 of the SharePoint Server 2007 webcast series I'm presenting, entitled "SharePoint Server 2007 (Part 1 of 6): Planning and Deploying SharePoint Server 2007".
SharePoint Security Highlights http://blogs.msdn.com/sharepoint/archive/2006/04/07/570939.aspx
Microsoft Business Intelligence Product Guide http://www.microsoft.com/office/preview/solutions/bi/guide.mspx
SharePoint Portal Server Architecture http://www.microsoft.com/technet/prodtechnol/sppt/reskit/c0561881x.mspx
Yes indeed! My favorite conference of the year, Microsoft TechEd, is now taking "Early Bird" registrations.
Yeah.. if you register between now and Friday, April 4, 2008, you'll save $200 off the $1,995 regular price.
"Um.. let's see.. that would be.."
$1,795. Don't hurt yourself.
And if you're going, don't forget to add your blog to and watch the TechEd Bloggers site.
"Are you going, Kevin?"
I sure hope so. I have only missed three TechEds in the 15 years they've/we've been doing these. I had a great time helping out by doing several Virtual TechEd interviews, so hopefully I'll get the chance to do that again this year. I also created a few TechEd Video Diaries in previous years, which I will do again - this year in "Shocking HD!" **
And for those of you who missed it, there are TWO TechEds happening now in the US: One for Developers and one for IT Professionals.
** I have an HD video camera to use now. I don't know yet what "Shocking HD!" will mean.. but you can bet it will be entertaining. And very hi-res. Maybe I'll use bittorrent to distribute them.
Below are the best of the questions and answers that occurred during our TechNet Webcast entitled, "SharePoint Server 2007 (Part 2 of 6): Securing Data in Windows SharePoint Server 2007"
Keith Combs (pictured on left ** ) was kind enough to help out with the questions and answers during the webcast. Much of what you see below is either specifically his answer, or based on the answer he gave during the session. I've expanded upon them, and added answers to questions we didn't get to answer or were answered verbally on the webcast. But basically this was possible as a result of his effort, and I wanted to give him credit here. Thanks, Keith!
“Can you provide me with a link to get hardware specific server requirements, ie processor, RAM, etc.”
“I attended part 1 on 1/18 and was wonderng the url to the first part for downloading and does it come with the audio as well as all parts(2 -6 as they become available)?”
When the recording becomes available, it includes audio and video. Check the area for the webcast and it will have a link to the recording.
“I have an internet website that I want our employees to be able to access it from anywhere... using the same url <http://intranet.mycompany.com/> regardless where they are. If they access it from outside the domain using <http://intranet.mycompany.com/> it would change the url to httpS://intranet.mycompany.com <https://intranet.mycompany.com/>, and accessing it from inside the domain, it should not use ssl. Any idea how to configure my aam, isa and dns to do that?”
You have more options than I really could address in the webcast; or even here, for that matter. Let’s forget about ISA 2006 for a minute (though that’s a good option for doing the application publishing for secured access to your internal server). As I said when I answered your question verbally – you’re able to set up the SharePoint so that your external URL is mapped to gain access to the internal one. Personally, I don’t see why you wouldn’t want SSL for both the external AND internal access (it’s not that much overhead; certainly not worth having to do special configuration to make up for it or have separate URLs people use).
“Can you go over what SSP does again?”
The main benefit is that this is the configuration and management of services that are shareable – we broke out the marriage of services from the portals that use them, so that you could have more flexibility and less redundancy. Multiple portals on a farm, or even multiple farms, can use the same Search Indexing (for example), so you define it once, and then use it multiple places. (Can you say “Amazing Scalability”? I knew you could!)
See the SSP information at http://technet2.microsoft.com/Office/en-us/library/cce2f987-3949-44be-8057-663b38fc949d1033.mspx?mfr=true
“Can I used ISA and use the same URL for accessing both the internet and Intranet so the user doens't have to remember two URLs.”
Yes. If SSL is set as a requirement for the website, then just use the http protocol and it will automatically use https and SSL.
“I listened to Kevins Webcast on Friday "SharePoint Server 2007 (part 1 of 6) Planning and Deploying Sharepoint Server 2007" He mentioned the recorded version of the webcast was going to be placed on his blog site. I am looking at http://blogs.technet.com/kevinremde/archive/2008/01/18/itprodsk101.aspx and don't see the recorded Webcast. Where are you putting his Webcast series ?”
Well.. I never promised I’d put the recording on my blog – but I do have a link to the webcast signup there (and at the top of this page as well) – and that’s the one that you use for watching the recording. It’s the same link that you used to sign up for or join the webcast, and now it should bring you to the recording.
It does typically take 24-48 hours for the recordings to be processed and made available.
“Are there any third party MOSS2007 Anti Virus products? We are using McAfee for our SPS2003 currently.”
Why would you ever want to even look at a “third-party” product?! (Just kidding!)
Of course, Microsoft has Microsoft Forefront Security for SharePoint.
There is McAfee PortalShield for Microsoft SharePoint. And a search on the Norton/Symantec site didn’t come up with a single hit on “SharePoint”.
“Does the virus program need to be sharepoint aware?”
For performance and reliability – Yes. (And do I hope you meant ANTI-virus…)
“Does the content deployment path topic also apply to developers creating content for MOSS? ie from a developers machine to the Production server?”
As I mentioned during the webcast – yes, you can use content deployment as a way to keep any content (source code in this case, I assume) synchronized. And also as I mentioned, you might want to look into employing workflows for digitizing any approval or other work-related process. Click HERE for more information on what workflows are in SharePoint Server 2007.
“What about stsadm with the export/import commands, that will work for subsites right?”
I wasn’t 100% sure of the answer to this, so I did some digging and found a very interesting blog post by one of Microsoft’s MVPs, Gary Lapointe. His post here talks about the trials and tribulations of automating a move from sub-sites to site collections using STSADM. He even wrote a script that automates the process. Pretty smart!
“Hi. Does the integrated backup also backup the config database?
Hi yerself. Yes, it does. Hopefully you’ll be attending (or will view later) the webcast I’m presenting on 1/23/08, which is a deeper-dive into Disaster Recovery technologies you can use to protect and recover SharePoint installations.
“Can we not use Microsoft SSO if we are using forms authentication for the portal?“
I have to confess that I’m not an authentication expert. But I have found some resources that I’m sure have the answer for you:
Plan Authentication Methods (SharePoint Server) http://technet2.microsoft.com/Office/en-us/library/40117fda-70a0-4e3d-8cd3-0def768da16c1033.mspx?mfr=true
About Data Connections, Authentication, and Alternate Access Mapping http://msdn2.microsoft.com/en-us/library/ms771995.aspx
And Jeff Schroeder does an excellent job summarizing the options (yes, including forms authentication) on his blog, with links to even more resources: http://blogs.interknowlogy.com/jeffschroeder/archive/2007/02/08/11331.aspx
“Can we backup/restore SSO key on ANY drive or just floppy drive (like in SPS2K3)?”
SharePoint now lets you restore to any removable media; not just a floppy (thank goodness).
“Do you have any resources for using psconfig? I only found one page on Microsoft.”
Doing a Windows Live Search on psconfig, I found several references on the web (and my blog post here, of course, will be another. <grin>). This is probably the one you found – but in case it’s not, here it is again: http://technet2.microsoft.com/Office/en-us/library/a59c4e8f-9b7f-4127-8199-1b9ab76991501033.mspx?mfr=true
“Can you use Content Deployment from MOSS Admin site with WSS 3.0 site in order to deploy, for instance, content from a WSS 3.0 site to a MOSS Site ?”
The Content Deployment mechanism that we demonstrated isn’t a part of WSS 3.0, so it’s not going to be the tool you’ll use for moving content from WSS to MOSS.
You can do an in-place upgrade of WSS to MOSS without losing any of the sites you’ve created, so that’s one option. It’s basically the install, followed by the initial configuration wizard. http://technet2.microsoft.com/Office/en-us/library/3f8fc632-4493-430b-baca-49f60e5508cd1033.mspx?mfr=true
Or you can use stsadm.exe and the export / import commands to move site collections.
“Can SSO be used as a solution in our .NET applications via some MOSS web services? Would be nice if all our enterprise desktop apps and websites used the same auth/auth.”
Yes, you can. Check out the question and resources I posted further up on this post around authentication methods available.
“What does Content Deployment does? Does in copy file to Document library or Index documents?”
Content deployment do do just what I described – it copies documents or items from one place to another, and keeps the destination looking like the source. If you want to set up indexing for both locations, then you’d want to make sure that search has been configured to do that. So, this is not really related to setting up search or changing indexing settings.
“How does recovery works if a server is recovered to a differ server how will users credential work since they did not have access on the new server?”
This sounds just like the migration scenarios and the sorts of questions described and answered in this “Migrate Office SharePoint Server 2007 by using Central Administration” technical document: http://technet2.microsoft.com/Office/en-us/library/391fd37a-daf0-47e3-810b-5cd8c2a4fc341033.mspx?mfr=true
**Just kidding. Keith's much better looking.
Kevin’s Blog “Full of I.T.” – Additional Resources and Discussionhttp://blogs.technet.com/kevinremde
E-mail Technical Questions: Kevin Remde – Kevin.Remde@microsoft.com
Feedback e-mail to my boss: Rich Russell– firstname.lastname@example.org
Future Live, In-Person Event InformationTechNet (for IT Pros): http://www.technetevents.com/kevinremdeMSDN (for Software Developers): http://www.MSDNEvents.comMicrosoft Across America: http://www.microsoft.com/acrossamerica
$100 TechNet Subscription Promotion – Yes.. save $100!Use Promotion Code TMSAM08 at http://www.microsoft.com/technet/subscriptionIMPORTANT UPDATE: This promotion and promotion code have expired.Please CLICK HERE for the most current promotion.
Windows Vista Home Pagehttp://www.microsoft.com/windowsvista
Windows Vista Product Overview for IT Professionalshttp://www.microsoft.com/technet/windowsvista/evaluate/overvw.mspx
For IT Pros: Key reasons to upgrade to Windows Vista http://www.microsoft.com/technet/windowsvista/evaluate/keyreas.mspx
Network and Sharing Centerhttp://www.microsoft.com/windows/products/windowsvista/features/details/networksharingcenter.mspx
Network Troubleshooting and Diagnosticshttp://www.microsoft.com/windows/products/windowsvista/features/details/networkdiagnostics.mspx
User Account Control (Step-By-Step Guide)http://technet2.microsoft.com/WindowsVista/en/library/0d75f774-8514-4c9e-ac08-4c21f5c6c2d91033.mspx?mfr=true
What’s New in Group Policy in Windows Vistahttp://technet2.microsoft.com/WindowsVista/en/library/a8366c42-6373-48cd-9d11-2510580e48171033.mspx?mfr=true
BitLocker Drive Encryptionhttp://www.microsoft.com/windows/products/windowsvista/features/details/bitlocker.mspx
BitLocker Drive Encryption – Executive Overviewhttp://www.microsoft.com/technet/windowsvista/security/bitexec.mspx
BitLocker Drive Encryption – Technical Overviewhttp://technet2.microsoft.com/WindowsVista/en/library/ba1a3800-ce29-4f09-89ef-65bce923cdb51033.mspx?mfr=true
BitLocker Drive Encryption – Windows Vista TechCenterhttp://technet.microsoft.com/en-us/windowsvista/aa905065.aspx
BitLocker Step-by-Step Guidehttp://www.microsoft.com/technet/windowsvista/library/c61f2a12-8ae6-4957-b031-97b4d762cf31.mspx
“How do I use Active Directory for backup of BitLocker Drive Encryption recovery information?”http://windowshelp.microsoft.com/Windows/en-US/Help/86136f63-2f2f-40ad-a0d1-8293f4dbfc951033.mspx
Configuring Active Directory to Back up Windows BitLocker Drive Encryption and Trusted Platform Module Recovery Information (full document download)http://www.microsoft.com/downloads/details.aspx?FamilyID=3A207915-DFC3-4579-90CD-86AC666F61D4&displaylang=en
Configuring Active Directory to Back up Windows BitLocker Drive Encryption and Trusted Platform Module Recovery Information (short online summary)http://technet2.microsoft.com/WindowsVista/en/library/3dbad515-5a32-4330-ad6f-d1fb6dfcdd411033.mspx
BitLocker Drive Encryption and Disk Sanitationhttp://www.microsoft.com/technet/community/columns/sectip/st1006.mspx
Trusted Platform Module (TPM) Specificationshttp://www.trustedcomputinggroup.org/specs/TPM
PC Client Specificationshttp://www.trustedcomputinggroup.org/specs/PCClient
Document Download: Windows Logo Program 3.0http://windowsconnected.com/files/folders/2900/download.aspx
“Additional Resources” page of TechNet Content used to create this session:http://www.microsoft.com/technet/add-305
Network Policy Server (NPS)http://technet2.microsoft.com/windowsserver2008/en/library/9af0667e-aa7d-4b1f-a054-7102a85eb2bc1033.mspx
Network Policy Server Infrastructurehttp://technet2.microsoft.com/windowsserver2008/en/library/b1a177e6-fd36-4396-9fe7-314460d83c3f1033.mspx?mfr=true
First Look: Getting Started With Security and Policy in Windows Server 2008http://www.microsoft.com/learning/syllabi/en-us/6406afinal.mspx
NPS Network Access Protectionhttp://technet2.microsoft.com/windowsserver2008/en/library/b1a177e6-fd36-4396-9fe7-314460d83c3f1033.mspx?mfr=true
Introduction to Network Access Protection (document)http://www.microsoft.com/technet/network/nap/napoverview.mspx
Network Access Protection (NAP) for Windows Server 2008http://www.microsoft.com/windowsserver2008/network-access-protection.mspx
NAP Server Architecturehttp://msdn2.microsoft.com/en-us/library/aa369707.aspx
Network Access Protection Technology Centerhttp://www.microsoft.com/nap
Network Access Protection (NAP) Frequently Asked Questions (FAQs)http://www.microsoft.com/technet/network/nap/napfaq.mspx
TechNet Virtual Lab: Network Access Protection with IPSec Enforcementhttp://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032345136&EventCategory=3&culture=en-US&CountryCode=US
Network Access Protection Partnershttp://www.microsoft.com/windowsserver2008/nap-partners.mspx
Microsoft Network Monitor 3.1 (download)http://www.microsoft.com/downloads/details.aspx?FamilyID=18B1D59D-F4D8-4213-8D17-2F6DDE7D7AAC&displaylang=en
Frequently Asked Questions about Network Monitorhttp://support.microsoft.com/kb/294818
How to use Network Monitor to capture network traffichttp://support.microsoft.com/kb/812953
“Additional Resources” page of TechNet Content used to create this session:http://www.microsoft.com/technet/add-316http://www.microsoft.com/technet/add-302
Here are some resources relating to part 5 of the SharePoint Server 2007 webcast series I'm presenting, entitled "SharePoint Server 2007 (Part 5 of 6): SharePoint Server 2007 Security, from Service Accounts to Item-Level Access".
Plan and Design for Security (Windows SharePoint Services and Office SharePoint Server combined) - Document Download http://office.microsoft.com/download/afile.aspx?AssetID=AM101638561033
Plan for and design security (Office SharePoint Server) http://technet2.microsoft.com/Office/en-us/library/3df68222-235b-45de-82fa-b89166c5c6bd1033.mspx?mfr=true
Microsoft Patterns & Practices http://msdn2.microsoft.com/en-us/practices/default.aspx
Securing your Database Server http://msdn2.microsoft.com/en-us/library/aa302434.aspx
Securing your Network http://msdn2.microsoft.com/en-us/library/aa302431.aspx
Deploying Large and Medium Server Farms - Document Download http://www.microsoft.com/technet/prodtechnol/sppt/reskit/c1261881x.mspx
Fun stuff: http://video.msn.com/video.aspx?vid=61e0d4b6-5d6e-47c5-9ad0-d48310db5e91
Below are the best of the questions and answers that occurred during our TechNet Webcast entitled, "SharePoint Server 2007 (Part 1 of 6): Planning and Deploying SharePoint Server 2007"
John Weston was kind enough to help out with the questions and answers during the webcast. Much of what you see below is either specifically his answer, or based on the answer he gave during the session. I've expanded upon them some - but basically this was possible as a result of his effort, and I wanted to give him credit here. Thanks, John!
“So how did you hide the product key in LiveMeeting? We (at <our company>) present to LOB people and would like to do that! (or is this a pre-recording?)”
There isn’t a way to do that magically. The webcast is live. But the demos for these sessions have been pre-recorded, and I talk through the steps. I suspect that they edited that part to show you X's instead of the key.
Many of the steps that we take to install and configure SharePoint take a lot of time, and we certainly don’t want to wait for these during a webcast so showing a recording of the process works a lot better. And it allows me to speak to many more important points relating to each demo, while the demo steps are being carried out. This is something that I wouldn’t be able to do if I were concentrating on “click here”, and “scroll there”.
“Why is the speaker still running/installing MOSS 2007 beta code?”
See the previous answer.. And now consider that there has been a great deal of time between when the recordings were made and the present day.
“How many users will a single server install support?”
There isn’t any specific max number of users listed in the evaluation or deployment guides, however there is a whitepaper available on the SharePoint Product and Technologies Team Blog that contains recommendations for optimizing your server farms. Get it HERE.
“What kind of installation was selected?”
We did an advanced install, complete – meaning we installed everything on the one server, with the assumption that we have A) an already-installed SQL server, and B) the desire to expand and add servers to the farm at some later time (as opposed to the "basic" install)
“ Which security config is the most secure NTLM or Keberos?”
NTLM is for backward compatibility with NT 4.0. Kerberos is the current one used with Windows 2003 AD. You can find a good description of the what-and-why of Kerberos HERE.
“Why wasn't this included in the scope of the presentation? Security is still important....”
There are many security-specific events and webcasts available. This webcast wasn’t just about security. The webcast I’m doing (part 5 of 6 in this series) on January 28th is more specifically about Security in SharePoint Server 2007.
“Will this be available after this LiveMeeting is complete? Some others on my team would be interested in watching this”
Yes, you get an email follow-up after attending the live webcast. That will have information on how to view the recording. You can also follow the same link you did to sign up for this webcast originally. (CLICK HERE) It usually takes 24-48 hours to get the recording processed and available for download.
“Are there any guidelines about the number of users or amount of traffic that would be appropriate for each scenario?”
http://technet2.microsoft.com/Office/f/?en-us/library/9985f2fa-421d-4342-a17e-286055273c371033.mspx is a great guide to start from
“I haven't been able to find such a presentation or a training class in the Dallas or Houston area, it appears many people are taking the easy way out and not covering this, any suggestions?”
I come to Dallas and Houston for TechNet Events quite often. Watch the www.technetevents.com site for information on our schedule and topics.
“How do I get a copy of the slides?”
During the LiveMeeting, you can right-click on your screen and select Print To PDF. You can also use the "Printer" icon at the bottom right hand corner of the screen.
“Can you integrate moss's content management capabilities with SourceSafe?”
I don’t believe so; but that would be nice.
“Compatibility with Windows Server 2008?”
Windows Server 2008 is not shipping yet, so 'nothing' is officially supported on it yet until the product ships. However, it’s a safe assumption that it will be a fully supported platform for both WSS and MOSS.
“If we want to limit the scope of searches from pulling unathorized data, do we have to use seperate SSPs?”
Actually, no. That’s a huge improvement in MOSS 2007 over the old Portal Server search. All search results are “security trimmed”, so the user will only see results that they have access to. No longer will they have a page come up in the results that is then inaccessible to them after they click the link.
“Love this presentation! Recommend not scrolling because the refresh rate is too low. Jumping would be better...thanks!”
Thank you for letting us know. Good to know you are enjoying the presentation. The jumpiness you see is a bandwidth limitation on sharing the screen for the demos. Hopefully you were still able to get the majority of the good stuff.
“Is there someone I can contact that would know about Microsoft Visual SourceSafe and whether it can be integrated with SharePoint?”
http://msdn2.microsoft.com/en-us/vstudio/aa718670.aspx or www.msdnevents.com to find your local MSDN contact in the US. They know about this product.
“Is there a VM with SharePoint 2007 already set up as a single server?”
I know we have made these available for other products, but I can’t find one that has SharePoint 2007. If you’d like to play with either SharePoint Services or Office SharePoint Server 2007 in a hosted virtual lab, you can find those HERE.
“If I do set an incremental crawl to run say every 2min, what impact would that have on the database?”
I’d say the impact on the database would be minimal.. but I’d be more concerned about the processing overhead on the server doing the crawl, and on the
“What of the concepts viewed here does not apply to WSS 3.0?”
Most everything related to basic document library management applies. Check here for a description/side-by-side comparison of WSS with MOSS.
“What are the MS course numbers which apply to setting up and administering a Sharepoint 2007 farm?”
There are many courses available. Check HERE for a list of the courses. And don’t forget to check out the other options as well.
“We are planning a farm that will replace a SPS2003. Is there anything that needs to be installed on the other servers that are part of the farm, ie. SQL?”
For information on the planning and steps required to move from SPS to MOSS, check HERE. This documents the entire process. There is a section specifically about database migration (HERE).
“Are the Accounts that are needed for Index and Searching need to be domain or local accounts?”
I would recommend they be domain accounts that you set up specifically for the task at hand. Give them rights to access any/all the content locations that you will want to crawl and then index. Lock it down with a very VERY long, ultra-secure password.
“My organization is evaluating SharePoint for Document Managment initially. As we move forward we anticipate expanding to provide business inteligence.”
Fantastic. Yeah.. a big benefit of this product is that you can roll out and expand it as you go and grow into the functionality available. And SharePoint Search will even help you with your speling. (Sorry.. I couldn’t resist.)
“When you choose "Windows Authentication" what account does it use across the farm, The machine account? the domain admin account? What SQL login account is used to access the DB? Can I send you a spreadsheet (I creted) to reveiw of the MS permissions recommended by using the ‘Least Security’ principle for a server farm? if so what email would you like me to send it to ?”
Let’s do it this way: Make sure you attend or view the recording for part 5 of this series, which is all about security in SharePoint Server 2007. Also, you should be able to find the answers to your security questions HERE at the TechNet TechCenter. (There’s even a downloadable book all about Office SharePoint Server Security)
“Upgrading from SPPS 2003 and migrating to new hardware-single server-what do you suggest?”
For information on the planning and steps required to move from SPS to MOSS, check HERE.
Can a Document library be migrated to a departmental site at a later time, if we deploy just the library in the beginning?”
“HOW CAN I SECURE PDF'S FILES ALLOCATED IN DOCUMENT LIBRARIES? TO PREVENT SAVE ITS TO USER LOCAL DISK”
I’m not entirely sure what you’re asking (or WHY YOU’RE SHOUTING), but I think you’re asking me about something that is provided by information rights management (IRM). Not only can you protect content with-in file shares and now document libraries, but you can also associate rights with the file itself – so that, as you ask in your example, some documents may be viewable but NOT allowed to be saved or forwarded in e-mail.
Read more about IRM in Office 2007 HERE
“What elements of different topologies can be virtualized?”
It all can be virtualized.. but as I said in the webcast; what you virtualize depend greatly on the performance requirements matched with the available performance of your virtualization host server(s). Some aspects are easier to virtualize. Web front end apps are good candidates. SQL Servers are less likely to run well virtualized due to the processing and the fast access you’ll want – but again, with a beefy virtualization host and not-so-heavy-use, you’ll be fine there as well. So… “it depends”.
I know this isn't strictly IT Pro related, but I do know that many of you reading this are working in companies who may be considering rolling out or replacing your existing CRM (Customer Relationship Management) software, or may be just curious about what Microsoft Dynamics CRM is all about.
Well, there's a series of Launch Events going on soon here in the US that you just might want to attend.
Click HERE to check out the Launch Site.
Here are some resources relating to part 2 of the SharePoint Server 2007 webcast series I'm presenting, entitled "SharePoint Server 2007 (Part 2 of 6): Securing Data in SharePoint Server 2007".
Here are some resources relating to part 4 of the SharePoint Server 2007 webcast series I'm presenting, entitled "SharePoint Server 2007 (Part 4 of 6): Compliance and Records Management".
Microsoft Enterprise Content Management http://office.microsoft.com/en-us/sharepointserver/HA101747881033.aspx
Enterprise Content Management from Microsoft http://office.microsoft.com/en-us/sharepointserver/HA102063591033.aspx?pid=CL100796281033
Enterprise Content Management Team Blog http://blogs.msdn.com/ecm/