SlideShare a Scribd company logo

Planning and Configuring Extranets in SharePoint 2010

Geoff Varosky, profile picture
Geoff Varosky

This document discusses planning and configuring extranets in SharePoint 2010. It begins by defining an extranet and exploring considerations for design such as topology, authentication mechanisms, and user identity storage locations. It then covers evaluating requirements, SharePoint 2010 capabilities, and configuration steps like user and role management. Authentication methods like Windows, forms-based, and claims-based are examined alongside identity storage options like Active Directory, LDAP, and SQL Server.

Technology
1 of 40
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
Planning and Configuring Extranets in SharePoint 2010
 Geoff Varosky  Jornata  Architect, Director of Evangelism  Co-Founder Boston Area SharePoint Users Group  Co-Organizer SharePoint Saturday Boston  Blog – www.SharePointYankee.com  Email – gvarosky@jornata.com  Twitter – @gvaro  LinkedIn & Facebook  Visit Jornata Booth #601
 Thinking  What is an Extranet?  Design  Topology  Authentication Mechanism  User Identity Storage Location  Evaluating Your Requirements  SharePoint 2010 Considerations  Doing  Configuration  User and Role Management
Planning and Configuring Extranets in SharePoint 2010
Planning and Configuring Extranets in SharePoint 2010
Controlled access from external networks
Controlled access from EXTeRnAl NETworks
Planning and Configuring Extranets in SharePoint 2010
 Topology  Authentication Methods  User Identity Storage Location
Planning and Configuring Extranets in SharePoint 2010
Planning and Configuring Extranets in SharePoint 2010
Corporate network a/k/a where you access Internets Perimeter network Facebook from every morning External Firewall/UAG Server Farm Users
Internets Perimeter network Corporate network Firewall Router A Router B Firewall /UAG /UAG LAYER 1 LAYER 2 LAYER 3 Web Servers APP & SQL DNS, Active Directory, Servers LOB Systems
Internets Perimeter network Corporate network External Firewall Firewall Users /UAG /UAG CONSUMING SERVICES FARM FARM
Corporate network Internets Perimeter network YAY! FACEBOOKS! LOLS! External Firewall Firewall Users /UAG /UAG Web Servers, SQL Servers, Application Application Servers, Servers, DNS, Active DNS, Active Directory Directory
Planning and Configuring Extranets in SharePoint 2010
 Windows  NTLM  Kerberos  Basic  Forms Based Authentication (FBA)*  *Claims needs to be enabled for FBA  Claims Based Authentication  SAML tokens
Planning and Configuring Extranets in SharePoint 2010
 Active Directory  LDAP  SQL Server  Other  Facebooks  Twitters
Planning and Configuring Extranets in SharePoint 2010
 What do you really need?  Who needs access?  How sensitive is the data?  How sensitive is the network?  Budget?**
 Who needs access?  Internal employees only  Active Directory  Internal employees and external users  Active Directory  Additional domain with restricted access  Active Directory & Forms Based Authentication  Claims Authentication  External only (rare)  Clients, partners, consultants  Active Directory or LDAP or SQL?  Forms Based Authentication or Windows auth?  Separate or together?  Hosting  Mobile Clients
 How sensitive is the data & internal network?  Network & SharePoint  Separate site?  Separate site collection?  Separate web application?  Multiple farms with cross-farm services & publishing?  Separate farm?  DMZ?
 How sensitive is the data & internal network?  Security  Secure Certificates (SSL)  Encryption  Firewall  Both hardware and software?  Content Filtering  ACLs  Virtual Private Network  Anti-Virus and Anti-Malware  Client-based certificates  One-time passwords (RSA tokens)  Phone verification  Biometrics  Retina, fingerprint, facial structure, hair and blood samples
 How sensitive is the data & internal network?  Security  Secure Certificates (SSL)  Encryption  Firewall  Both hardware and software?  Content Filtering  ACLs  Virtual Private Network  Anti-Virus and Anti-Malware  Client-based certificates  One-time passwords (RSA tokens)  Phone verification  Biometrics  Retina, fingerprint, facial structure, hair and blood samples
 Budget**
 REMEMBER THIS… You are giving a key to access your company’s data in some form or another.
Planning and Configuring Extranets in SharePoint 2010
 Supported versions  All – Foundation up through Enterprise  Office 365  Can be used as an extranet (since that is basically what it is!)
 Assumptions  Any Topology  Multi-Mode (Windows & FBA Authentication)  SQL User Database 1. Create ASP.NET Membership Database 2. Configure SharePoint 3. Configure IIS 4. Create and Manage Users
 IIS  Using your SharePoint Site = BAD  Must first change default role manager, and then membership provider each time from claims to your SQL providers  No one can log into SharePoint during this time  And then change them back when done  Each change recycles the application pool.  Create a separate IIS Virtual Web Application and Manage from there  BCS  Great way to search for and manage users (passwords, email, etc.)  No way to create users without additional logic
 CodePlex (www.codeplex.com)  SharePoint 2010 FBA Pack  http://sharepoint2010fba.codeplex.com  Third Party Solutions
 Test your configuration  Review security regularly  Be wary of cats
 My Blog Series  Part 1 : http://go.gvaro.net/ExtranetsP1  Part 2 : http://go.gvaro.net/ExtranetsP2  Part 3 : http://go.gvaro.net/ExtranetsP3  Phone Factor – Phone Verification  http://www.phonefactor.com  Plan Security Hardening (TechNet)  http://go.gvaro.net/uSyY1Z  SharePoint 2007 & 2010 Farm Ports (Firewall Config)  http://go.gvaro.net/uWQZzU  Disabling SSL v2.0, PCT 1.0 +more in IIS7  http://go.gvaro.net/N5GgEa
 SharePoint Ports, Proxies, and Protocols (Firewall Config)  http://go.gvaro.net/tblxCn  Harden SQL Server for SharePoint  http://go.gvaro.net/viVQuN  Visual FBA configuration by Donal Conlon  http://go.gvaro.net/oPnAYx  Extranet tested topologies for SP 2010 Model  http://go.gvaro.net/SP2010ExtTopMod  ASP.NET 2.0 Membership Database Reference  Create, Add Users, etc. http://go.gvaro.net/AN2Mbr
 FBA Configuration in SharePoint 2010  LDAP: http://go.gvaro.net/FBALDAP  ASP.NET Membership DB  http://go.gvaro.net/FBAANMDB  PeoplePicker Wildcard Search  http://go.gvaro.net/FBAWildCard  Helpful Resources for Troubleshooting Membership Providers  http://go.gvaro.net/TSMemProv  “Sign me in automatically” in FBA  http://go.gvaro.net/pAkDQP  Configuring SSL in a Development Environment  http://go.gvaro.net/uOTTlJ
Planning and Configuring Extranets in SharePoint 2010
 Meets 2nd Wednesday/month  6-8PM  Microsoft N.E.R.D. (Cambridge)  BostonSharePointUG.org  Twitter: @BASPUG / #BASPUG  MEETING TONIGHT HERE! 7P-9P  Staffordshire room  Ask the experts panel!
Planning and Configuring Extranets in SharePoint 2010
 Geoff Varosky  Jornata  Architect, Director of Evangelism  Co-Founder Boston Area SharePoint Users Group  Co-Organizer SharePoint Saturday Boston  Blog – www.SharePointYankee.com  Email – gvarosky@jornata.com  Twitter – @gvaro  LinkedIn & Facebook  Visit Jornata Booth #601

More Related Content

PPTX
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PPTX
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PPTX
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PDF
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PPTX
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PPTX
What's New for Developers in SharePoint 2010
Geoff Varosky
 
PPTX
SharePoint Saturday EMEA - The Ribbon UI and Custom Actions in SharePoint 2010
Geoff Varosky
 
PPTX
Creating Custom Actions within SharePoint
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
What's New for Developers in SharePoint 2010
Geoff Varosky
 
SharePoint Saturday EMEA - The Ribbon UI and Custom Actions in SharePoint 2010
Geoff Varosky
 
Creating Custom Actions within SharePoint
Geoff Varosky
 

What's hot (13)

PPTX
From SharePoint Designer to Visual Studio - Prototyping and Deploying Solutio...
Geoff Varosky
 
PPTX
Spsnh geoff varosky - jornata - planning and configuring extranets in share...
Geoff Varosky
 
PPTX
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PDF
The Ribbon UI and Custom Actions in SharePoint 2010
Geoff Varosky
 
PPTX
Creating Custom Actions in SharePoint 2010
Geoff Varosky
 
PPTX
SharePoint Saturday NYC 1/30/10 - Whats New For Developers In Share Point 2010
Geoff Varosky
 
PPTX
SharePoint Saturday Boston 2/27/10 - Whats New For Developers In SharePoint 2010
Geoff Varosky
 
PPT
Beyond mainstream social media with Dmitry Shesterin
Dmitry Shesterin
 
PPTX
SharePoint Saturday Hartford - 01/29/11 - Creating Custom Actions in SharePoi...
Geoff Varosky
 
PPTX
Building Social Intranets - MS Days Bulgaria by Joel Oleson
Joel Oleson
 
PDF
The Days of Web Standards "IA" 20070715
Takashi Sakamoto
 
PPT
Skb web2.0
animove
 
KEY
Social Media Inside the Enterprise
Connie Crosby
 
From SharePoint Designer to Visual Studio - Prototyping and Deploying Solutio...
Geoff Varosky
 
Spsnh geoff varosky - jornata - planning and configuring extranets in share...
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
The Ribbon UI and Custom Actions in SharePoint 2010
Geoff Varosky
 
Creating Custom Actions in SharePoint 2010
Geoff Varosky
 
SharePoint Saturday NYC 1/30/10 - Whats New For Developers In Share Point 2010
Geoff Varosky
 
SharePoint Saturday Boston 2/27/10 - Whats New For Developers In SharePoint 2010
Geoff Varosky
 
Beyond mainstream social media with Dmitry Shesterin
Dmitry Shesterin
 
SharePoint Saturday Hartford - 01/29/11 - Creating Custom Actions in SharePoi...
Geoff Varosky
 
Building Social Intranets - MS Days Bulgaria by Joel Oleson
Joel Oleson
 
The Days of Web Standards "IA" 20070715
Takashi Sakamoto
 
Skb web2.0
animove
 
Social Media Inside the Enterprise
Connie Crosby
 
Ad

Similar to Planning and Configuring Extranets in SharePoint 2010 (20)

PPTX
HAD05: Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
PPTX
SEASPC 2011 - Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
PPTX
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PPTX
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
PPTX
Collaborating with Extranet Partners on SharePoint 2010 - SharePoint Connecti...
Michael Noel
 
PDF
SharePoint Saturday The Conference 2011 - Extranets & Claims Authentication
Brian Culver
 
PPTX
Vfm palo alto next generation firewall
vfmindia
 
PDF
Is the Web at Risk?
Carlos Serrao
 
PDF
Plugging Network Security Holes Using NetFlow
NetFlow Analyzer
 
PDF
Putting the "Share" and "Point" back in SharePoint 2013
C/D/H Technology Consultants
 
PPTX
Check Point75 Makes3 D Security A Reality Q22011
chaucheckpoint
 
PDF
Intranets and Extranets
We Learn - A Continuous Learning Forum from Welingkar's Distance Learning Program.
 
PDF
Intranet & Extranet
We Learn - A Continuous Learning Forum from Welingkar's Distance Learning Program.
 
PPTX
Deploying an Extranet on SharePoint
Alan Marshall
 
PDF
Forecast 2012 Panel: Security POC NAB, Terremark, Trapezoid
Open Data Center Alliance
 
PDF
Architecting Secure Web Systems
InnoTech
 
PPTX
SharePoint and Forefront United Access Gateway
Planet Technologies
 
PDF
Choosing Your Windows Azure Platform Strategy
drmarcustillett
 
PDF
Oit2010 model extranet_topologies
Ard van Someren
 
PDF
Extranet topologies forsp 2010
Chad Solomonson
 
HAD05: Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
SEASPC 2011 - Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010
Geoff Varosky
 
Collaborating with Extranet Partners on SharePoint 2010 - SharePoint Connecti...
Michael Noel
 
SharePoint Saturday The Conference 2011 - Extranets & Claims Authentication
Brian Culver
 
Vfm palo alto next generation firewall
vfmindia
 
Is the Web at Risk?
Carlos Serrao
 
Plugging Network Security Holes Using NetFlow
NetFlow Analyzer
 
Putting the "Share" and "Point" back in SharePoint 2013
C/D/H Technology Consultants
 
Check Point75 Makes3 D Security A Reality Q22011
chaucheckpoint
 
Intranets and Extranets
We Learn - A Continuous Learning Forum from Welingkar's Distance Learning Program.
 
Intranet & Extranet
We Learn - A Continuous Learning Forum from Welingkar's Distance Learning Program.
 
Deploying an Extranet on SharePoint
Alan Marshall
 
Forecast 2012 Panel: Security POC NAB, Terremark, Trapezoid
Open Data Center Alliance
 
Architecting Secure Web Systems
InnoTech
 
SharePoint and Forefront United Access Gateway
Planet Technologies
 
Choosing Your Windows Azure Platform Strategy
drmarcustillett
 
Oit2010 model extranet_topologies
Ard van Someren
 
Extranet topologies forsp 2010
Chad Solomonson
 
Ad

More from Geoff Varosky (12)

PPTX
Using Azure Runbooks and Microsoft Flow to Automate SharePoint Tasks
Geoff Varosky
 
PPTX
Automating Enterprise Application Deployments with PowerShell
Geoff Varosky
 
PDF
Automating Your Enterprise Application Deployments with PowerShell
Geoff Varosky
 
PPTX
Creating Custom Actions in SharePoint 2010
Geoff Varosky
 
PPTX
The Ribbon UI and Custom Actions in SharePoint 2010
Geoff Varosky
 
PPTX
Best Practices in SharePoint Development - Just Freakin Work! Overcoming Hurd...
Geoff Varosky
 
PPTX
Who? What? Where? Searching in SharePoint
Geoff Varosky
 
PPTX
Planning and Configuring Extranets in SharePoint 2010 @ SharePoint Saturday N...
Geoff Varosky
 
PDF
Creating Custom Actions in SharePoint 2010
Geoff Varosky
 
PDF
Just Freakin' Work - Overcoming Hurdles and Avoiding Pain
Geoff Varosky
 
PPTX
Global SharePoint Users Group 1/5/10 - Creating Custom Actions Within SharePoint
Geoff Varosky
 
PPTX
SharePoint Saturday DC 12/5/09 - Introduction To Developing Custom Actions Wi...
Geoff Varosky
 
Using Azure Runbooks and Microsoft Flow to Automate SharePoint Tasks
Geoff Varosky
 
Automating Enterprise Application Deployments with PowerShell
Geoff Varosky
 
Automating Your Enterprise Application Deployments with PowerShell
Geoff Varosky
 
Creating Custom Actions in SharePoint 2010
Geoff Varosky
 
The Ribbon UI and Custom Actions in SharePoint 2010
Geoff Varosky
 
Best Practices in SharePoint Development - Just Freakin Work! Overcoming Hurd...
Geoff Varosky
 
Who? What? Where? Searching in SharePoint
Geoff Varosky
 
Planning and Configuring Extranets in SharePoint 2010 @ SharePoint Saturday N...
Geoff Varosky
 
Creating Custom Actions in SharePoint 2010
Geoff Varosky
 
Just Freakin' Work - Overcoming Hurdles and Avoiding Pain
Geoff Varosky
 
Global SharePoint Users Group 1/5/10 - Creating Custom Actions Within SharePoint
Geoff Varosky
 
SharePoint Saturday DC 12/5/09 - Introduction To Developing Custom Actions Wi...
Geoff Varosky
 

Recently uploaded (20)

PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Encapsulation theory and applications.pdf
gurumoop
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Approach and Philosophy of On baking technology
30anthuong17
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Spectroscopy.pptx food analysis technology
nawahassan45
 

Planning and Configuring Extranets in SharePoint 2010

  • 2.  Geoff Varosky  Jornata  Architect, Director of Evangelism  Co-Founder Boston Area SharePoint Users Group  Co-Organizer SharePoint Saturday Boston  Blog – www.SharePointYankee.com  Email – gvarosky@jornata.com  Twitter – @gvaro  LinkedIn & Facebook  Visit Jornata Booth #601
  • 3.  Thinking  What is an Extranet?  Design  Topology  Authentication Mechanism  User Identity Storage Location  Evaluating Your Requirements  SharePoint 2010 Considerations  Doing  Configuration  User and Role Management
  • 6. Controlled access from external networks
  • 7. Controlled access from EXTeRnAl NETworks
  • 9.  Topology  Authentication Methods  User Identity Storage Location
  • 12. Corporate network a/k/a where you access Internets Perimeter network Facebook from every morning External Firewall/UAG Server Farm Users
  • 13. Internets Perimeter network Corporate network Firewall Router A Router B Firewall /UAG /UAG LAYER 1 LAYER 2 LAYER 3 Web Servers APP & SQL DNS, Active Directory, Servers LOB Systems
  • 14. Internets Perimeter network Corporate network External Firewall Firewall Users /UAG /UAG CONSUMING SERVICES FARM FARM
  • 15. Corporate network Internets Perimeter network YAY! FACEBOOKS! LOLS! External Firewall Firewall Users /UAG /UAG Web Servers, SQL Servers, Application Application Servers, Servers, DNS, Active DNS, Active Directory Directory
  • 17.  Windows  NTLM  Kerberos  Basic  Forms Based Authentication (FBA)*  *Claims needs to be enabled for FBA  Claims Based Authentication  SAML tokens
  • 19. Active Directory  LDAP  SQL Server  Other  Facebooks  Twitters
  • 21.  What do you really need?  Who needs access?  How sensitive is the data?  How sensitive is the network?  Budget?**
  • 22.  Who needs access?  Internal employees only  Active Directory  Internal employees and external users  Active Directory  Additional domain with restricted access  Active Directory & Forms Based Authentication  Claims Authentication  External only (rare)  Clients, partners, consultants  Active Directory or LDAP or SQL?  Forms Based Authentication or Windows auth?  Separate or together?  Hosting  Mobile Clients
  • 23.  How sensitive is the data & internal network?  Network & SharePoint  Separate site?  Separate site collection?  Separate web application?  Multiple farms with cross-farm services & publishing?  Separate farm?  DMZ?
  • 24.  How sensitive is the data & internal network?  Security  Secure Certificates (SSL)  Encryption  Firewall  Both hardware and software?  Content Filtering  ACLs  Virtual Private Network  Anti-Virus and Anti-Malware  Client-based certificates  One-time passwords (RSA tokens)  Phone verification  Biometrics  Retina, fingerprint, facial structure, hair and blood samples
  • 25.  How sensitive is the data & internal network?  Security  Secure Certificates (SSL)  Encryption  Firewall  Both hardware and software?  Content Filtering  ACLs  Virtual Private Network  Anti-Virus and Anti-Malware  Client-based certificates  One-time passwords (RSA tokens)  Phone verification  Biometrics  Retina, fingerprint, facial structure, hair and blood samples
  • 27.  REMEMBER THIS… You are giving a key to access your company’s data in some form or another.
  • 29.  Supported versions  All – Foundation up through Enterprise  Office 365  Can be used as an extranet (since that is basically what it is!)
  • 30.  Assumptions  Any Topology  Multi-Mode (Windows & FBA Authentication)  SQL User Database 1. Create ASP.NET Membership Database 2. Configure SharePoint 3. Configure IIS 4. Create and Manage Users
  • 31.  IIS  Using your SharePoint Site = BAD  Must first change default role manager, and then membership provider each time from claims to your SQL providers  No one can log into SharePoint during this time  And then change them back when done  Each change recycles the application pool.  Create a separate IIS Virtual Web Application and Manage from there  BCS  Great way to search for and manage users (passwords, email, etc.)  No way to create users without additional logic
  • 32.  CodePlex (www.codeplex.com)  SharePoint 2010 FBA Pack  http://sharepoint2010fba.codeplex.com  Third Party Solutions
  • 33.  Test your configuration  Review security regularly  Be wary of cats
  • 34.  My Blog Series  Part 1 : http://go.gvaro.net/ExtranetsP1  Part 2 : http://go.gvaro.net/ExtranetsP2  Part 3 : http://go.gvaro.net/ExtranetsP3  Phone Factor – Phone Verification  http://www.phonefactor.com  Plan Security Hardening (TechNet)  http://go.gvaro.net/uSyY1Z  SharePoint 2007 & 2010 Farm Ports (Firewall Config)  http://go.gvaro.net/uWQZzU  Disabling SSL v2.0, PCT 1.0 +more in IIS7  http://go.gvaro.net/N5GgEa
  • 35.  SharePoint Ports, Proxies, and Protocols (Firewall Config)  http://go.gvaro.net/tblxCn  Harden SQL Server for SharePoint  http://go.gvaro.net/viVQuN  Visual FBA configuration by Donal Conlon  http://go.gvaro.net/oPnAYx  Extranet tested topologies for SP 2010 Model  http://go.gvaro.net/SP2010ExtTopMod  ASP.NET 2.0 Membership Database Reference  Create, Add Users, etc. http://go.gvaro.net/AN2Mbr
  • 36.  FBA Configuration in SharePoint 2010  LDAP: http://go.gvaro.net/FBALDAP  ASP.NET Membership DB  http://go.gvaro.net/FBAANMDB  PeoplePicker Wildcard Search  http://go.gvaro.net/FBAWildCard  Helpful Resources for Troubleshooting Membership Providers  http://go.gvaro.net/TSMemProv  “Sign me in automatically” in FBA  http://go.gvaro.net/pAkDQP  Configuring SSL in a Development Environment  http://go.gvaro.net/uOTTlJ
  • 38. Meets 2nd Wednesday/month  6-8PM  Microsoft N.E.R.D. (Cambridge)  BostonSharePointUG.org  Twitter: @BASPUG / #BASPUG  MEETING TONIGHT HERE! 7P-9P  Staffordshire room  Ask the experts panel!
  • 40.  Geoff Varosky  Jornata  Architect, Director of Evangelism  Co-Founder Boston Area SharePoint Users Group  Co-Organizer SharePoint Saturday Boston  Blog – www.SharePointYankee.com  Email – gvarosky@jornata.com  Twitter – @gvaro  LinkedIn & Facebook  Visit Jornata Booth #601