in

SharePoint Blogs

The Best Place for SharePoint-related Blogs

Dave Wollerman's SharePoint Blog

I use this blog to share information with the community plus also as a repository for reference material on unique situations that I have come across.

View Dave Wollerman's profile on LinkedIn      Sogeti Logo

June 2007 - Posts

  • Site Collection Logical Architecture

    This post is probably not relevant to most people, but I keep running into the same discussions with companies that are setting up SharePoint for the first time or have already set it up and are asking a lot of questions about why their environment is not as flexible as they thought it was going to be. I also seem to get into discussions about this with other SharePoint integrators who don't feel that this topic is important. Maybe they assume people already know the concept or maybe they don't understand it themselves.

    I feel that understanding the architecture around the definition and maybe the purpose of sites and site collections is the building blocks of SharePoint. Most people coming into SharePoint for the first time see it as if it were a single web application with a ton of features and settings. They also look at it as if the taxonomy of the sites were a physical heirarchy on a file system. Its hard for some people to grasp the understanding that everything is stored in a database and there is no real physical site hierarchy.

    SharePoint Architecture 

    With the use of managed paths, site collections can impersonate a physical hierarchy for a means of organization, but the site collections are still on the same level as far as SharePoint is concerned. A Farm, Web Application, and a Site Collection are all "Containers" (or in active directory thinking "organizational units").

    As far as when to use a site collection as opposed to using a sub-site, that is based on the organization itself. Usually it is the IT department’s goal to implement the SharePoint system. In most circumstances these people are infrastructure experienced and not experienced in deploying applications. This results in a hodge-podge installation of SharePoint with a single site collection to house everything known within the organization. This will result in a failed installation, since there is no room for scaling. Plus IT will either be burdened with the task of maintaining all the structure and security, or they will demand it (sometimes IT doesn't get the idea of distributed security).

    Site collections will allow the IT department freedom to maintain just application itself without the worry of security or content hierarchy maintenance. The following is a list of what an individual site collection offers.

    For the Users:
    • Dedicated Recycle bins
    • Dedicated usage Reports
    • Distributed administration (site collection administrators)
    • Dedicated search scopes, keywords, and best-bets
    • Custom feature deployments
    • Dedicated language translation maintenance
    • Dedicated galleries for web parts, master pages, content types, site columns, site templates, and list templates
    • Dedicated shared libraries, such as site collection images and site collection styles
    • Dedicated real estate (Self Containment)
    For the IT Administrators:
    • Site quota templates
    • Distributed administration
    • Site locking
    • Database maintenance options
    • Backup / Restore abilities
    • Content Deployments
    • InfoPath forms services global template targeting

    I have 2 big, at least what I think is big, points on why to use site collections. The first one is site quotas and recycle bins. The issue is the recycle bin is based on site collections and the quota for a site collection. If everyone shares a site collection, then they share the recycle bins storage size. The example I usually give is HR deletes 1MB per day and IT deletes 1GB per day. With a 5GB site quota, HR content will be flushed through the system a lot quicker if they share a recycle bin. This results in having to restore a database to get back a single document. (You know it will happen, Murphy’s Law). If they were in separate site collections, then the HR recycle bin would be valid for months maybe years with a 5GB quota because it is only affected by their deletions.

    The second point is distributed administration. For most small companies this might be a moot point, but for high content driven organizations with a small IT force. It is a godsend for IT. IT doesn't know who should be able to see what content, besides how it should be organized. This is the job of the content owners and users. SharePoint site collections offers IT the ability to create a site collection for a project, team, department, document, or whatever the needs are, then assign an owner and hand it off to them. Now IT has time to work on IT related issues and the content owner now has their real estate to start developing. By this I mean, they now have the ability to quickly create libraries, calendars, meetings, wikis, whatever they feel they need to efficiently organize their content in a meaningful manner to the people who will be using it.... THEM. Plus the ability to allow users to either read or contribute to the site. This is huge since the content owners best know who needs to author, read, consume the content, plus how it needs to be organized. IT usually has no clue which then leads IT down a long time consuming road to interpret how the content owner needs it and will probably have to keep changing it constantly since they are the owner. IT has their own work to do as well.

    Posted Jun 25 2007, 08:50 AM by dwollerman with 80 comment(s)
    Filed under: , , , , , , ,

  • SharePoint 2007 Single Sign-On Setup

    I went through and ran through setting up SSO for a test environment to see what all the hype was about. I can't believe that the administration accounts are that confusing to setup. Here are the steps that I took to get the SSO configured and the database created.
    1. Create a domain service account (ex: Demo\sa-ssoadmin)
      • DO NOT ADD ACCOUNT TO ANY DOMAIN GROUPS YET
    2. OPTIONAL: Create a domain security group with "Group Scope" as "Global" and with "Group Type" as "Security". Do not select "Distribution" or "Local Domain" options. (ex: SSO Administrators)
      • Add in the demo\sa-ssoadmin service account
      • OPTIONAL: add in other domain accounts for users who will be administrating the SSO Application Definition files. 
    3. Add the domain security group (SSO Administrators) to the local administrators group on all SharePoint WFE servers.
    4. Log into the WFE server that is running "Central Administration" web site. 
    5. Start the "Microsoft Single Sign-on Service" in the Windows Services MMC.
      • Set to "Automatic"
      • Run the service under a domain service account (ex: Demo\sa-ssoadmin)
      • Start the service
    6. If there are more WFE servers plus servers running Excel Services, Start the Microsoft SSO service on those servers now. If Buisness Data Catalog search is used then also start the SSO Service on the index server as well
      • NOTE: the first server that the service is started on becomes the encryption key server
    7. In SQL, make sure that the domain service account (Demo\sa-ssoadmin) running the Microsoft SSO service has the following roles assigned on SQL Server
      • dbcreator
      • securityadmin 
    8. Remote into the "Encryption Key Server" (Should be the first server that SSO was started) and fire up SharePoint Central Administration
      • Make sure you are logged into Central Administration with a SharePoint Administration account
    9. Navigate to "Central Administration -> Site Settings -> Permissions" and add one of the following with "Read" permissions
      • IF USING GROUP: domain security group (SSO Administrators)
      • IF USING USER: domain service account used to run the service.
    10. Also add the domain service account used to run the service to the Farm's administrators group
    11. Navigate to "Central Administration -> Operations -> Service Accounts" and double check the "Single Sign-on Service" credentials. If not set to the domain account (demo\sa-ssoadmin) then set it up here as well.
    12. Navigate to "Central Administration -> Operations -> Manage Single Sign-On -> Manage Server Settings" to setup SSO for SharePoint
      • Single Sign-On Administrator Account: GROUP: Demo\SSO Administrators or USER: Demo\sa-ssoadmin
      • Enterprise Application Definition Administrator Account: GROUP: Demo\SSOAdministrators or USER: Demo\sa-ssoadmin
      • Database Server Name (use netbios\instance naming convention)
      • Database Name
      • Timeout settings (I used Default)
      • Ok

    Once this runs though there should be a database created and one should be able to start configuring the encryption keys and other settings related to SSO for SharePoint. I found a few sites that spell this out, but there was alot of fluff around it, hopefully I dumbed it down enough to get things rolling. I will be posting more information as regard to the configuration of SSO now that the setup has succeeded in the future.

    Posted Jun 25 2007, 08:49 AM by dwollerman with 21 comment(s)
    Filed under: , , ,

  • SharePoint Database Growth Rates

    I am not sure about everyone else, but I have seen SharePoint databases grow out of control. This happens especially when you have people install SharePoint that don't maintain or even understand SQL Server 2005. I have seen configuration databases around 12GB where 11GB+ of that is all log file.

    A lot of this is because the configuration and content databases are set to a Full Recovery model by default and full backups do not automatically truncate log files. I have seen where you can set the databases to a "Simple" recovery model, but this limits the customer in case they want to do transaction log backups or log shipping.

    I haven't came up with a fool proof plan as of yet, but what I have found out is that one can free up space if need be manually. After a full backup you can shrink and truncate the log file to any size you need with the following command.

    dbcc shrinkfile (<LOGICAL LOG FILE NAME>,<SIZE IN MB>,truncateonly)

    Also, be sure to change the growth rates on the log file. By Default they are set to 10%,Limited to 2TB. The 10% adds up quickly on transaction heavy databases such as the configuration database. I would specify a set size instead of a percentage.

    Posted Jun 25 2007, 08:47 AM by dwollerman with 8 comment(s)
    Filed under: , , , ,

  • Caution: User Profile Image

    I came across a weird thing the other day and wanted to share it. I was working with a my site and uploaded a large image for my user profile image. When it updated my profile, it did what I expected it to do. It put the image into a picture library and the library created a small and medium thumbnail of that image. The weird thing was that any reference to that image as part of my user profile (my site, people search, or public profile page) the system displays the large image I uploaded, just scaled.

    Ok, so this isn't that big of a deal. But as a lot of people are aware, users don't usually understand to scale their images down before using them in applications. So the problem with this is you can potentially have a people search where there are numerous results, but the images being downloaded to the results screen are the full sized user profile image being scaled to a thumbnail size. My thought is why can't it just reference the thumbnail it created in the picture library automatically. I am sure the page will load and the images will just be slow to render on the screen, but this could be misread to think that SharePoint is responding slowly. 

     

    Posted Jun 25 2007, 08:44 AM by dwollerman with 4 comment(s)
    Filed under: , , , ,
Need SharePoint Training? Attend a SharePoint Bootcamp!
Posts (c) their respective authors. Everything else (c) 2007 SharePoint Experts