SlideShare uma empresa Scribd logo

Spsnj case study 2014

Transferir como PPTX, PDF
J
Joseph Karam

SharePoint 2010 with ADFS

Tecnologia
1 de 18
Case Study: Transitioning to using Active Directory Federation Services with SharePoint 2010 Joe Karam Princeton University Office of Information Technology SharePoint Saturday New Jersey 2014
New Jersey SharePoint user group • Different SharePoint discussions each month on various topics. Announced on meetup.com • Meets 4th Tuesday of every month • 6pm – 8pm • Microsoft Office (MetroPark) • 101 Wood Ave, Iselin, NJ 08830 • http://www.njspug.com
Thank You Event Sponsors • Diamond & Platinum sponsors have tables here in the Fireside Lounge • Please visit them and inquire about their products & services • Also to be eligible for prizes make sure to get your bingo card stamped
Agenda • introduction to SharePoint & ADFS @Princeton • advantages and concerns with transitioning to ADFS • configuration considerations with ADFS and SharePoint 2010 • issues with migrating data between NTLM and ADFS SharePoint environments • issues with using ADFS and AD Groups • cookie options with ADFS and impact on Office applications • troubleshooting issues with ADFS and user profile services • summary
Princeton SharePoint Implementation • Using SharePoint 2007 since 2008 • Currently migrating to SharePoint 2010 (over 80% complete) • Mostly used for internal department collaborations • Very little student use • Approximately 110 department sites • Approximately 750GB farm size • Some customized sites • Decentralized administration
What is Active Directory Federation Service (ADFS)? • Provides single sign-on to authenticate users to multiple web applications in a single session using token claims. • Allows organizations to provide access to trusted users from different domains. • Domain users and groups are encoded to claim identities • READ: How claims encoding works in SharePoint 2010
Why did Princeton choose ADFS for SP 2010? • Consistent authentication experience for a variety of clients using SharePoint 2010 from on-campus to all over the world • Improve security for authentication with SharePoint • Planning for the future migrating to Office 365 and using with other SSO applications. • Microsoft “encouragement” to use claims based authentication and providing limited support for classic authentication
Princeton SharePoint 2010 Environment • Two virtual ADFS servers • Three virtual SharePoint 2010 front-end servers • Two virtual SharePoint 2010 application servers • SQL Cluster backend with SAN storage • F5 Load Balancer • Firewall • AvePoint DocAve management
Is it an F5 issue? An ADFS issue? A SharePoint issue? • Our first experience with ADFS, SharePoint 2010, and F5 • Microsoft technical support going back and forth between ADFS and SharePoint teams for troubleshooting • Finding a trusted expert to assist us with integrating these services
ADFS Configuration Recommendations • Many useful resources are available • Primarily used Steve Peschka’s guide for configuring ADFS & SharePoint farm • Official Microsoft documentation • Expiration time of token signing certificate between ADFS and SharePoint (x509 certificate) • Determine ADFS session cookie timeout to work properly with SharePoint cookie timeout • Learn how the ForeFront Identity Manager interacts with the User Profile Sync Service in SharePoint 2010
ADFS ClaimsViewer Example
Migrating data between ADFS (SP 2010) and NTLM (SP 2007) • Microsoft AD Claims mapping scripts & tools • Third Party Tools – AvePoint DocAve • Mapping users and groups properly • DOMAINUSER to i:0ǵ.t|adfs 2.0|USER • DOMAINGROUP to c:0-.t|adfs 2.0|GROUP • Ensure AD Groups are listed as “Domain Group”
General Concerns #1 • Search Service Application requires an NTLM web application, but make sure you do not put search site in the Intranet zone. Use extranet, internet, or custom. Outlook uses intranet zone first as default when connecting to SharePoint. • Set session cookies to false (default) to ensure Office applications do not need to re-authenticate (use persistent cookies) • Investigate whether F5 should use source IP address or cookie based persistent type • Test Explorer View and Access DataSheet views to ensure they work properly (hotfix for Access)
General Concerns #2 • Built-in People Picker does not work effectively with ADFS. Build custom people picker or try open source people picker. • InfoPath is not fully supported with ADFS • Incoming email requires changes to properly map users with trusted identity provider • Test email-enabled AD Groups to ensure alerts work properly • “Sign In as Different User” does not work unless closing browser, run-as, or in-private browsing? • Test Macintosh Microsoft Document Connection • Meeting Attendee lists require full email address
Summary • Test, Test, Test – all clients, internal networks, internet, all critical functions • Monitor end-to-end validating ADFS and SharePoint are authenticating users properly • SharePoint 2013 does resolve many issues (especially with cookies) • Just found: A good summary experience from Red Cross
Next Steps? • Upgrading to SharePoint 2013 and Office 365 • Continue the discussion: • jkaram@Princeton.edu • LinkedIn (jkaram) • Yammer (jkaram) • Twitter (@jkaram)
Appendix: Incoming email Commands • Need to have latest CU installed for SP 2010 • Can run either: $w = Get-SPWebApplication $w.Properties["disable-active-directory-resolve"] = "true" $w.Properties["enable-trusted-resolve"] = "true" $w.Update() OR $farm = Get-SPFarm $farm.Properties["disable-active-directory-resolve"] = "true" $farm.Properties["enable-trusted-resolve"] = "true" $farm.Update()
Useful Security Powershell Commands • Get-SPTrustedIdentityTokenIssuer • Get-SPTrustedServiceTokenIssuer • Get-SPClaimProvider • Adding a new relying party trust to existing provider

Recomendados

MindSurf 2013 - Improving Business Productivity with SharePoint 2013
MindSurf 2013 - Improving Business Productivity with SharePoint 2013MindSurf 2013 - Improving Business Productivity with SharePoint 2013
MindSurf 2013 - Improving Business Productivity with SharePoint 2013Don Donais
 
Training – Introduction to SharePoint Online for Collaboration and Document M...
Training – Introduction to SharePoint Online for Collaboration and Document M...Training – Introduction to SharePoint Online for Collaboration and Document M...
Training – Introduction to SharePoint Online for Collaboration and Document M...Suhail Jamaldeen
 
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-Premise
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-PremiseWebinar: The Slippery Slope of Migrating to SharePoint Online or On-Premise
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-PremiseWithumSmith+Brown, formerly Portal Solutions
 
JAXSPUG April 2016 - Staying in the Know with Office 365
JAXSPUG April 2016 - Staying in the Know with Office 365JAXSPUG April 2016 - Staying in the Know with Office 365
JAXSPUG April 2016 - Staying in the Know with Office 365Scott Hoag
 
The Future of SharePoint - SharePoint 2016
The Future of SharePoint - SharePoint 2016The Future of SharePoint - SharePoint 2016
The Future of SharePoint - SharePoint 2016Don Donais
 
What's New and Different in SharePoint 2013
What's New and Different in SharePoint 2013What's New and Different in SharePoint 2013
What's New and Different in SharePoint 2013Noorez Khamis
 
2012 MindSurf - Augmenting Business Process with SharePoint
2012 MindSurf - Augmenting Business Process with SharePoint2012 MindSurf - Augmenting Business Process with SharePoint
2012 MindSurf - Augmenting Business Process with SharePointDon Donais
 
2014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 20132014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 2013Don Donais
 

Recomendados

MindSurf 2013 - Improving Business Productivity with SharePoint 2013
MindSurf 2013 - Improving Business Productivity with SharePoint 2013MindSurf 2013 - Improving Business Productivity with SharePoint 2013
MindSurf 2013 - Improving Business Productivity with SharePoint 2013Don Donais
 
Training – Introduction to SharePoint Online for Collaboration and Document M...
Training – Introduction to SharePoint Online for Collaboration and Document M...Training – Introduction to SharePoint Online for Collaboration and Document M...
Training – Introduction to SharePoint Online for Collaboration and Document M...Suhail Jamaldeen
 
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-Premise
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-PremiseWebinar: The Slippery Slope of Migrating to SharePoint Online or On-Premise
Webinar: The Slippery Slope of Migrating to SharePoint Online or On-PremiseWithumSmith+Brown, formerly Portal Solutions
 
JAXSPUG April 2016 - Staying in the Know with Office 365
JAXSPUG April 2016 - Staying in the Know with Office 365JAXSPUG April 2016 - Staying in the Know with Office 365
JAXSPUG April 2016 - Staying in the Know with Office 365Scott Hoag
 
The Future of SharePoint - SharePoint 2016
The Future of SharePoint - SharePoint 2016The Future of SharePoint - SharePoint 2016
The Future of SharePoint - SharePoint 2016Don Donais
 
What's New and Different in SharePoint 2013
What's New and Different in SharePoint 2013What's New and Different in SharePoint 2013
What's New and Different in SharePoint 2013Noorez Khamis
 
2012 MindSurf - Augmenting Business Process with SharePoint
2012 MindSurf - Augmenting Business Process with SharePoint2012 MindSurf - Augmenting Business Process with SharePoint
2012 MindSurf - Augmenting Business Process with SharePointDon Donais
 
2014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 20132014 TechFuse - Findability Within SharePoint 2013
2014 TechFuse - Findability Within SharePoint 2013Don Donais
 
Leveraging microsoft’s e discovery platform in your organization
Leveraging microsoft’s e discovery platform in your organizationLeveraging microsoft’s e discovery platform in your organization
Leveraging microsoft’s e discovery platform in your organizationDon Donais
 
SharePoint 2016 : C’est quoi les nouveautés?
SharePoint 2016 : C’est quoi les nouveautés?SharePoint 2016 : C’est quoi les nouveautés?
SharePoint 2016 : C’est quoi les nouveautés?Vlad Catrinescu
 
SharePoint Online vs. On-Premise
SharePoint Online vs. On-PremiseSharePoint Online vs. On-Premise
SharePoint Online vs. On-PremiseEvan Hodges
 
Exploring SharePoint 2013 by Chandu Raj
Exploring SharePoint 2013 by Chandu RajExploring SharePoint 2013 by Chandu Raj
Exploring SharePoint 2013 by Chandu Rajchanduraj1984
 
SharePoint Online (365) vs SharePoint On-Premises
SharePoint Online (365) vs SharePoint On-PremisesSharePoint Online (365) vs SharePoint On-Premises
SharePoint Online (365) vs SharePoint On-PremisesLior Zamir
 
Share point 2010_overview-day 1
Share point 2010_overview-day 1Share point 2010_overview-day 1
Share point 2010_overview-day 1Narayana Reddy
 
OneDrive For Business - What's new for IT Administrators and End-users
OneDrive For Business - What's new for IT Administrators and End-usersOneDrive For Business - What's new for IT Administrators and End-users
OneDrive For Business - What's new for IT Administrators and End-usersLearning SharePoint
 
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...Suhail Jamaldeen
 
Beginners SharePoint introduction
Beginners SharePoint introductionBeginners SharePoint introduction
Beginners SharePoint introductionMelick Baranasooriya
 
Introduction and What is New: Microsoft SharePoint 2013
Introduction and What is New: Microsoft SharePoint 2013Introduction and What is New: Microsoft SharePoint 2013
Introduction and What is New: Microsoft SharePoint 2013David J Rosenthal
 
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012SharePoint Workflows - SharePoint Saturday Twin Cities April 2012
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012Don Donais
 
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveSharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveChirag Patel
 
Introduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael BlumenthalIntroduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael BlumenthalMichael Blumenthal (Microsoft MVP)
 
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015Nicolas Georgeault
 
SharePoint 2010 for Document Compliance
SharePoint 2010 for Document ComplianceSharePoint 2010 for Document Compliance
SharePoint 2010 for Document Compliancentenany
 
SharePoint Overview
SharePoint OverviewSharePoint Overview
SharePoint OverviewAmy Phillips
 
Maximizing Your Office 365 Investments With OneDrive
Maximizing Your Office 365 Investments With OneDriveMaximizing Your Office 365 Investments With OneDrive
Maximizing Your Office 365 Investments With OneDriveNetwoven Inc.
 
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...BIWUG
 
SharePoint 2013 features overview
SharePoint 2013 features overviewSharePoint 2013 features overview
SharePoint 2013 features overviewQasim Mehmood MBA-PM
 
Getting Started with Site Designs and Site Scripts - SPSChi
Getting Started with Site Designs and Site Scripts - SPSChiGetting Started with Site Designs and Site Scripts - SPSChi
Getting Started with Site Designs and Site Scripts - SPSChiDrew Madelung
 
Photography post processing examples
Photography post processing examplesPhotography post processing examples
Photography post processing examplesbenrodol
 
Las vitaminas
Las vitaminasLas vitaminas
Las vitaminasmiguelgamer
 

Mais conteúdo relacionado

Mais procurados

Leveraging microsoft’s e discovery platform in your organization
Leveraging microsoft’s e discovery platform in your organizationLeveraging microsoft’s e discovery platform in your organization
Leveraging microsoft’s e discovery platform in your organizationDon Donais
 
SharePoint 2016 : C’est quoi les nouveautés?
SharePoint 2016 : C’est quoi les nouveautés?SharePoint 2016 : C’est quoi les nouveautés?
SharePoint 2016 : C’est quoi les nouveautés?Vlad Catrinescu
 
SharePoint Online vs. On-Premise
SharePoint Online vs. On-PremiseSharePoint Online vs. On-Premise
SharePoint Online vs. On-PremiseEvan Hodges
 
Exploring SharePoint 2013 by Chandu Raj
Exploring SharePoint 2013 by Chandu RajExploring SharePoint 2013 by Chandu Raj
Exploring SharePoint 2013 by Chandu Rajchanduraj1984
 
SharePoint Online (365) vs SharePoint On-Premises
SharePoint Online (365) vs SharePoint On-PremisesSharePoint Online (365) vs SharePoint On-Premises
SharePoint Online (365) vs SharePoint On-PremisesLior Zamir
 
Share point 2010_overview-day 1
Share point 2010_overview-day 1Share point 2010_overview-day 1
Share point 2010_overview-day 1Narayana Reddy
 
OneDrive For Business - What's new for IT Administrators and End-users
OneDrive For Business - What's new for IT Administrators and End-usersOneDrive For Business - What's new for IT Administrators and End-users
OneDrive For Business - What's new for IT Administrators and End-usersLearning SharePoint
 
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...Suhail Jamaldeen
 
Introduction and What is New: Microsoft SharePoint 2013
Introduction and What is New: Microsoft SharePoint 2013Introduction and What is New: Microsoft SharePoint 2013
Introduction and What is New: Microsoft SharePoint 2013David J Rosenthal
 
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012SharePoint Workflows - SharePoint Saturday Twin Cities April 2012
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012Don Donais
 
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveSharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveChirag Patel
 
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015Nicolas Georgeault
 
SharePoint 2010 for Document Compliance
SharePoint 2010 for Document ComplianceSharePoint 2010 for Document Compliance
SharePoint 2010 for Document Compliancentenany
 
SharePoint Overview
SharePoint OverviewSharePoint Overview
SharePoint OverviewAmy Phillips
 
Maximizing Your Office 365 Investments With OneDrive
Maximizing Your Office 365 Investments With OneDriveMaximizing Your Office 365 Investments With OneDrive
Maximizing Your Office 365 Investments With OneDriveNetwoven Inc.
 
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...BIWUG
 
Getting Started with Site Designs and Site Scripts - SPSChi
Getting Started with Site Designs and Site Scripts - SPSChiGetting Started with Site Designs and Site Scripts - SPSChi
Getting Started with Site Designs and Site Scripts - SPSChiDrew Madelung
 

Mais procurados (20)

Leveraging microsoft’s e discovery platform in your organization
Leveraging microsoft’s e discovery platform in your organizationLeveraging microsoft’s e discovery platform in your organization
Leveraging microsoft’s e discovery platform in your organization
 
SharePoint 2016 : C’est quoi les nouveautés?
SharePoint 2016 : C’est quoi les nouveautés?SharePoint 2016 : C’est quoi les nouveautés?
SharePoint 2016 : C’est quoi les nouveautés?
 
SharePoint Online vs. On-Premise
SharePoint Online vs. On-PremiseSharePoint Online vs. On-Premise
SharePoint Online vs. On-Premise
 
Exploring SharePoint 2013 by Chandu Raj
Exploring SharePoint 2013 by Chandu RajExploring SharePoint 2013 by Chandu Raj
Exploring SharePoint 2013 by Chandu Raj
 
SharePoint Online (365) vs SharePoint On-Premises
SharePoint Online (365) vs SharePoint On-PremisesSharePoint Online (365) vs SharePoint On-Premises
SharePoint Online (365) vs SharePoint On-Premises
 
Share point 2010_overview-day 1
Share point 2010_overview-day 1Share point 2010_overview-day 1
Share point 2010_overview-day 1
 
OneDrive For Business - What's new for IT Administrators and End-users
OneDrive For Business - What's new for IT Administrators and End-usersOneDrive For Business - What's new for IT Administrators and End-users
OneDrive For Business - What's new for IT Administrators and End-users
 
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...
Build SharePoint Online Workflows and Customize Forms Using Nintex for Office...
 
Beginners SharePoint introduction
Beginners SharePoint introductionBeginners SharePoint introduction
Beginners SharePoint introduction
 
Introduction and What is New: Microsoft SharePoint 2013
Introduction and What is New: Microsoft SharePoint 2013Introduction and What is New: Microsoft SharePoint 2013
Introduction and What is New: Microsoft SharePoint 2013
 
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012SharePoint Workflows - SharePoint Saturday Twin Cities April 2012
SharePoint Workflows - SharePoint Saturday Twin Cities April 2012
 
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-LiveSharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
SharePoint Saturday Paris 2015 Validating SharePoint 2013 Farm Before Go-Live
 
Introduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael BlumenthalIntroduction to SharePoint 2013 by Michael Blumenthal
Introduction to SharePoint 2013 by Michael Blumenthal
 
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015
Sharepoint and office 365 hybrid configuration from A to Z #spstoronto 2015
 
SharePoint 2010 for Document Compliance
SharePoint 2010 for Document ComplianceSharePoint 2010 for Document Compliance
SharePoint 2010 for Document Compliance
 
SharePoint Overview
SharePoint OverviewSharePoint Overview
SharePoint Overview
 
Maximizing Your Office 365 Investments With OneDrive
Maximizing Your Office 365 Investments With OneDriveMaximizing Your Office 365 Investments With OneDrive
Maximizing Your Office 365 Investments With OneDrive
 
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...
Sharepointarchitecturereal worldscenariofundamentals-150419043032-conversion-...
 
SharePoint 2013 features overview
SharePoint 2013 features overviewSharePoint 2013 features overview
SharePoint 2013 features overview
 
Getting Started with Site Designs and Site Scripts - SPSChi
Getting Started with Site Designs and Site Scripts - SPSChiGetting Started with Site Designs and Site Scripts - SPSChi
Getting Started with Site Designs and Site Scripts - SPSChi
 

Destaque

Photography post processing examples
Photography post processing examplesPhotography post processing examples
Photography post processing examplesbenrodol
 
De Rojas Sanchez, Xavier
De Rojas Sanchez, XavierDe Rojas Sanchez, Xavier
De Rojas Sanchez, XavierXavier De Rojas
 
DQ 'Oreo Blizzard' Styleframes
DQ 'Oreo Blizzard' StyleframesDQ 'Oreo Blizzard' Styleframes
DQ 'Oreo Blizzard' StyleframesThe Mill
 
Mechanical/HVAC Engineer
Mechanical/HVAC EngineerMechanical/HVAC Engineer
Mechanical/HVAC EngineerWaqar Sardar
 
CV-Atif_Ashraf-4
CV-Atif_Ashraf-4CV-Atif_Ashraf-4
CV-Atif_Ashraf-4Atif Ashraf
 
De Rojas Sanchez, Xavier
De Rojas Sanchez, XavierDe Rojas Sanchez, Xavier
De Rojas Sanchez, XavierXavier De Rojas
 
Bcfbigpicturepresentation 140911053445-phpapp01(1)
Bcfbigpicturepresentation 140911053445-phpapp01(1)Bcfbigpicturepresentation 140911053445-phpapp01(1)
Bcfbigpicturepresentation 140911053445-phpapp01(1)Saeed Mohammadi
 
14984836 information-system-of-mcb
14984836 information-system-of-mcb14984836 information-system-of-mcb
14984836 information-system-of-mcbWasim Khan
 
Offer cue The marketplace that changes everything
Offer cue The marketplace that changes everythingOffer cue The marketplace that changes everything
Offer cue The marketplace that changes everythingsabbasi001
 
Never give up
Never give upNever give up
Never give upbayuputri
 
Media power point on inception
Media power point on inception Media power point on inception
Media power point on inception benrodol
 

Destaque (20)

Photography post processing examples
Photography post processing examplesPhotography post processing examples
Photography post processing examples
 
Las vitaminas
Las vitaminasLas vitaminas
Las vitaminas
 
De Rojas Sanchez, Xavier
De Rojas Sanchez, XavierDe Rojas Sanchez, Xavier
De Rojas Sanchez, Xavier
 
Appraisal method
Appraisal methodAppraisal method
Appraisal method
 
PPIT Lecture 18
PPIT Lecture 18PPIT Lecture 18
PPIT Lecture 18
 
DQ 'Oreo Blizzard' Styleframes
DQ 'Oreo Blizzard' StyleframesDQ 'Oreo Blizzard' Styleframes
DQ 'Oreo Blizzard' Styleframes
 
Mechanical/HVAC Engineer
Mechanical/HVAC EngineerMechanical/HVAC Engineer
Mechanical/HVAC Engineer
 
Silabus eksponen
Silabus eksponenSilabus eksponen
Silabus eksponen
 
Warm up (1º 2º eso)
Warm up (1º 2º eso)Warm up (1º 2º eso)
Warm up (1º 2º eso)
 
CV-Atif_Ashraf-4
CV-Atif_Ashraf-4CV-Atif_Ashraf-4
CV-Atif_Ashraf-4
 
Future of UX in 10 Years
Future of UX in 10 YearsFuture of UX in 10 Years
Future of UX in 10 Years
 
De Rojas Sanchez, Xavier
De Rojas Sanchez, XavierDe Rojas Sanchez, Xavier
De Rojas Sanchez, Xavier
 
5 ALWAN
5 ALWAN5 ALWAN
5 ALWAN
 
Bcfbigpicturepresentation 140911053445-phpapp01(1)
Bcfbigpicturepresentation 140911053445-phpapp01(1)Bcfbigpicturepresentation 140911053445-phpapp01(1)
Bcfbigpicturepresentation 140911053445-phpapp01(1)
 
Impacto ambiental
Impacto ambientalImpacto ambiental
Impacto ambiental
 
14984836 information-system-of-mcb
14984836 information-system-of-mcb14984836 information-system-of-mcb
14984836 information-system-of-mcb
 
PPIT Lecture 20
PPIT Lecture 20PPIT Lecture 20
PPIT Lecture 20
 
Offer cue The marketplace that changes everything
Offer cue The marketplace that changes everythingOffer cue The marketplace that changes everything
Offer cue The marketplace that changes everything
 
Never give up
Never give upNever give up
Never give up
 
Media power point on inception
Media power point on inception Media power point on inception
Media power point on inception
 

Semelhante a Spsnj case study 2014

Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365Envision IT
 
Introduction and What’s new in SharePoint 2013
Introduction and What’s new in SharePoint 2013Introduction and What’s new in SharePoint 2013
Introduction and What’s new in SharePoint 2013MJ Ferdous
 
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...Envision IT
 
Practical Tips for Migrating SharePoint Customizations to Office 365
Practical Tips for Migrating SharePoint Customizations to Office 365Practical Tips for Migrating SharePoint Customizations to Office 365
Practical Tips for Migrating SharePoint Customizations to Office 365Haniel Croitoru
 
What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013CTE Solutions Inc.
 
Moving to the cloud with Office 365
Moving to the cloud with Office 365Moving to the cloud with Office 365
Moving to the cloud with Office 365Ben Stegink
 
Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017
Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017
Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017Ben Stegink
 
What's new in sharepoint 2016
What's new in sharepoint 2016What's new in sharepoint 2016
What's new in sharepoint 2016Mike Maadarani
 
Team Me Up Scotty SPSOslo w.Extending
Team Me Up Scotty SPSOslo w.ExtendingTeam Me Up Scotty SPSOslo w.Extending
Team Me Up Scotty SPSOslo w.ExtendingThorbjørn Værp
 
How Atrium Health Implemented and Governs Office 365
How Atrium Health Implemented and Governs Office 365How Atrium Health Implemented and Governs Office 365
How Atrium Health Implemented and Governs Office 365Kelly Jones
 
Suresh_Kumar_Mahala [10729857]
Suresh_Kumar_Mahala [10729857]Suresh_Kumar_Mahala [10729857]
Suresh_Kumar_Mahala [10729857]sureshmahala
 
MN Govt IT Symposium - SharePoint 2013 The Next Stage In Evolution
MN Govt IT Symposium - SharePoint 2013 The Next Stage In EvolutionMN Govt IT Symposium - SharePoint 2013 The Next Stage In Evolution
MN Govt IT Symposium - SharePoint 2013 The Next Stage In EvolutionDon Donais
 
HTF - Who Moved My SharePoint (to 2013)
HTF - Who Moved My SharePoint (to 2013)HTF - Who Moved My SharePoint (to 2013)
HTF - Who Moved My SharePoint (to 2013)Theresa Lubelski
 
Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...
Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...
Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...Toni Frankola
 
What SharePoint is My Ferrari?
What SharePoint is My Ferrari? What SharePoint is My Ferrari?
What SharePoint is My Ferrari? Michael Hinckley
 
Ayana_4 years in Sharepoint
Ayana_4 years in SharepointAyana_4 years in Sharepoint
Ayana_4 years in SharepointAyana Banerjee
 
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...Chirag Patel
 

Semelhante a Spsnj case study 2014 (20)

AAK_Resume
AAK_ResumeAAK_Resume
AAK_Resume
 
Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365
 
Introduction and What’s new in SharePoint 2013
Introduction and What’s new in SharePoint 2013Introduction and What’s new in SharePoint 2013
Introduction and What’s new in SharePoint 2013
 
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
 
Practical Tips for Migrating SharePoint Customizations to Office 365
Practical Tips for Migrating SharePoint Customizations to Office 365Practical Tips for Migrating SharePoint Customizations to Office 365
Practical Tips for Migrating SharePoint Customizations to Office 365
 
What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013What's New for IT Professionals in SharePoint Server 2013
What's New for IT Professionals in SharePoint Server 2013
 
Moving to the cloud with Office 365
Moving to the cloud with Office 365Moving to the cloud with Office 365
Moving to the cloud with Office 365
 
Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017
Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017
Implementing and Managing Office 365 - Jacksonville IT Pro Camp 2017
 
Thinakaran
ThinakaranThinakaran
Thinakaran
 
What's new in sharepoint 2016
What's new in sharepoint 2016What's new in sharepoint 2016
What's new in sharepoint 2016
 
Team Me Up Scotty SPSOslo w.Extending
Team Me Up Scotty SPSOslo w.ExtendingTeam Me Up Scotty SPSOslo w.Extending
Team Me Up Scotty SPSOslo w.Extending
 
How Atrium Health Implemented and Governs Office 365
How Atrium Health Implemented and Governs Office 365How Atrium Health Implemented and Governs Office 365
How Atrium Health Implemented and Governs Office 365
 
Suresh_Kumar_Mahala [10729857]
Suresh_Kumar_Mahala [10729857]Suresh_Kumar_Mahala [10729857]
Suresh_Kumar_Mahala [10729857]
 
MN Govt IT Symposium - SharePoint 2013 The Next Stage In Evolution
MN Govt IT Symposium - SharePoint 2013 The Next Stage In EvolutionMN Govt IT Symposium - SharePoint 2013 The Next Stage In Evolution
MN Govt IT Symposium - SharePoint 2013 The Next Stage In Evolution
 
HTF - Who Moved My SharePoint (to 2013)
HTF - Who Moved My SharePoint (to 2013)HTF - Who Moved My SharePoint (to 2013)
HTF - Who Moved My SharePoint (to 2013)
 
Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...
Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...
Prepare for SharePoint 2016 - IT Pro best practices for managing your SharePo...
 
What SharePoint is My Ferrari?
What SharePoint is My Ferrari? What SharePoint is My Ferrari?
What SharePoint is My Ferrari?
 
Ayana_4 years in Sharepoint
Ayana_4 years in SharepointAyana_4 years in Sharepoint
Ayana_4 years in Sharepoint
 
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
Replacing your fileshare with SharePoint 2013 Farm - SharePoint User Group UK...
 
Anatomy of a mail app
Anatomy of a mail appAnatomy of a mail app
Anatomy of a mail app
 

Último

State of the Smart Building Startup Landscape 2024!
State of the Smart Building Startup Landscape 2024!State of the Smart Building Startup Landscape 2024!
State of the Smart Building Startup Landscape 2024!Memoori
 
Oauth 2.0 Introduction and Flows with MuleSoft
Oauth 2.0 Introduction and Flows with MuleSoftOauth 2.0 Introduction and Flows with MuleSoft
Oauth 2.0 Introduction and Flows with MuleSoftshyamraj55
 
Microsoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireMicrosoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireExakis Nelite
 
WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024Lorenzo Miniero
 
Breaking Down the Flutterwave Scandal What You Need to Know.pdf
Breaking Down the Flutterwave Scandal What You Need to Know.pdfBreaking Down the Flutterwave Scandal What You Need to Know.pdf
Breaking Down the Flutterwave Scandal What You Need to Know.pdfUK Journal
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...FIDO Alliance
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfFIDO Alliance
 
Design Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptxDesign Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptxFIDO Alliance
 
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...FIDO Alliance
 
Easier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties ReimaginedEasier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties Reimaginedpanagenda
 
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdfLinux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdfFIDO Alliance
 
Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024Hiroshi SHIBATA
 
(Explainable) Data-Centric AI: what are you explaininhg, and to whom?
(Explainable) Data-Centric AI: what are you explaininhg, and to whom?(Explainable) Data-Centric AI: what are you explaininhg, and to whom?
(Explainable) Data-Centric AI: what are you explaininhg, and to whom?Paolo Missier
 
Intro in Product Management - Коротко про професію продакт менеджера
Intro in Product Management - Коротко про професію продакт менеджераIntro in Product Management - Коротко про професію продакт менеджера
Intro in Product Management - Коротко про професію продакт менеджераMark Opanasiuk
 
Your enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4jYour enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4jNeo4j
 
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdfThe Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdfFIDO Alliance
 
Where to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdfWhere to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdfFIDO Alliance
 
Working together SRE & Platform Engineering
Working together SRE & Platform EngineeringWorking together SRE & Platform Engineering
Working together SRE & Platform EngineeringMarcus Vechiato
 
Structuring Teams and Portfolios for Success
Structuring Teams and Portfolios for SuccessStructuring Teams and Portfolios for Success
Structuring Teams and Portfolios for SuccessUXDXConf
 
Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...
Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...
Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...ScyllaDB
 

Último (20)

State of the Smart Building Startup Landscape 2024!
State of the Smart Building Startup Landscape 2024!State of the Smart Building Startup Landscape 2024!
State of the Smart Building Startup Landscape 2024!
 
Oauth 2.0 Introduction and Flows with MuleSoft
Oauth 2.0 Introduction and Flows with MuleSoftOauth 2.0 Introduction and Flows with MuleSoft
Oauth 2.0 Introduction and Flows with MuleSoft
 
Microsoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - QuestionnaireMicrosoft CSP Briefing Pre-Engagement - Questionnaire
Microsoft CSP Briefing Pre-Engagement - Questionnaire
 
WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024WebRTC and SIP not just audio and video @ OpenSIPS 2024
WebRTC and SIP not just audio and video @ OpenSIPS 2024
 
Breaking Down the Flutterwave Scandal What You Need to Know.pdf
Breaking Down the Flutterwave Scandal What You Need to Know.pdfBreaking Down the Flutterwave Scandal What You Need to Know.pdf
Breaking Down the Flutterwave Scandal What You Need to Know.pdf
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
 
Design Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptxDesign Guidelines for Passkeys 2024.pptx
Design Guidelines for Passkeys 2024.pptx
 
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
 
Easier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties ReimaginedEasier, Faster, and More Powerful – Notes Document Properties Reimagined
Easier, Faster, and More Powerful – Notes Document Properties Reimagined
 
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdfLinux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
Linux Foundation Edge _ Overview of FDO Software Components _ Randy at Intel.pdf
 
Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024Long journey of Ruby Standard library at RubyKaigi 2024
Long journey of Ruby Standard library at RubyKaigi 2024
 
(Explainable) Data-Centric AI: what are you explaininhg, and to whom?
(Explainable) Data-Centric AI: what are you explaininhg, and to whom?(Explainable) Data-Centric AI: what are you explaininhg, and to whom?
(Explainable) Data-Centric AI: what are you explaininhg, and to whom?
 
Intro in Product Management - Коротко про професію продакт менеджера
Intro in Product Management - Коротко про професію продакт менеджераIntro in Product Management - Коротко про професію продакт менеджера
Intro in Product Management - Коротко про професію продакт менеджера
 
Your enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4jYour enemies use GenAI too - staying ahead of fraud with Neo4j
Your enemies use GenAI too - staying ahead of fraud with Neo4j
 
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdfThe Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
 
Where to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdfWhere to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdf
 
Working together SRE & Platform Engineering
Working together SRE & Platform EngineeringWorking together SRE & Platform Engineering
Working together SRE & Platform Engineering
 
Structuring Teams and Portfolios for Success
Structuring Teams and Portfolios for SuccessStructuring Teams and Portfolios for Success
Structuring Teams and Portfolios for Success
 
Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...
Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...
Event-Driven Architecture Masterclass: Engineering a Robust, High-performance...
 

Spsnj case study 2014

  • 1. Case Study: Transitioning to using Active Directory Federation Services with SharePoint 2010 Joe Karam Princeton University Office of Information Technology SharePoint Saturday New Jersey 2014
  • 2. New Jersey SharePoint user group • Different SharePoint discussions each month on various topics. Announced on meetup.com • Meets 4th Tuesday of every month • 6pm – 8pm • Microsoft Office (MetroPark) • 101 Wood Ave, Iselin, NJ 08830 • http://www.njspug.com
  • 3. Thank You Event Sponsors • Diamond & Platinum sponsors have tables here in the Fireside Lounge • Please visit them and inquire about their products & services • Also to be eligible for prizes make sure to get your bingo card stamped
  • 4. Agenda • introduction to SharePoint & ADFS @Princeton • advantages and concerns with transitioning to ADFS • configuration considerations with ADFS and SharePoint 2010 • issues with migrating data between NTLM and ADFS SharePoint environments • issues with using ADFS and AD Groups • cookie options with ADFS and impact on Office applications • troubleshooting issues with ADFS and user profile services • summary
  • 5. Princeton SharePoint Implementation • Using SharePoint 2007 since 2008 • Currently migrating to SharePoint 2010 (over 80% complete) • Mostly used for internal department collaborations • Very little student use • Approximately 110 department sites • Approximately 750GB farm size • Some customized sites • Decentralized administration
  • 6. What is Active Directory Federation Service (ADFS)? • Provides single sign-on to authenticate users to multiple web applications in a single session using token claims. • Allows organizations to provide access to trusted users from different domains. • Domain users and groups are encoded to claim identities • READ: How claims encoding works in SharePoint 2010
  • 7. Why did Princeton choose ADFS for SP 2010? • Consistent authentication experience for a variety of clients using SharePoint 2010 from on-campus to all over the world • Improve security for authentication with SharePoint • Planning for the future migrating to Office 365 and using with other SSO applications. • Microsoft “encouragement” to use claims based authentication and providing limited support for classic authentication
  • 8. Princeton SharePoint 2010 Environment • Two virtual ADFS servers • Three virtual SharePoint 2010 front-end servers • Two virtual SharePoint 2010 application servers • SQL Cluster backend with SAN storage • F5 Load Balancer • Firewall • AvePoint DocAve management
  • 9. Is it an F5 issue? An ADFS issue? A SharePoint issue? • Our first experience with ADFS, SharePoint 2010, and F5 • Microsoft technical support going back and forth between ADFS and SharePoint teams for troubleshooting • Finding a trusted expert to assist us with integrating these services
  • 10. ADFS Configuration Recommendations • Many useful resources are available • Primarily used Steve Peschka’s guide for configuring ADFS & SharePoint farm • Official Microsoft documentation • Expiration time of token signing certificate between ADFS and SharePoint (x509 certificate) • Determine ADFS session cookie timeout to work properly with SharePoint cookie timeout • Learn how the ForeFront Identity Manager interacts with the User Profile Sync Service in SharePoint 2010
  • 12. Migrating data between ADFS (SP 2010) and NTLM (SP 2007) • Microsoft AD Claims mapping scripts & tools • Third Party Tools – AvePoint DocAve • Mapping users and groups properly • DOMAINUSER to i:0ǵ.t|adfs 2.0|USER • DOMAINGROUP to c:0-.t|adfs 2.0|GROUP • Ensure AD Groups are listed as “Domain Group”
  • 13. General Concerns #1 • Search Service Application requires an NTLM web application, but make sure you do not put search site in the Intranet zone. Use extranet, internet, or custom. Outlook uses intranet zone first as default when connecting to SharePoint. • Set session cookies to false (default) to ensure Office applications do not need to re-authenticate (use persistent cookies) • Investigate whether F5 should use source IP address or cookie based persistent type • Test Explorer View and Access DataSheet views to ensure they work properly (hotfix for Access)
  • 14. General Concerns #2 • Built-in People Picker does not work effectively with ADFS. Build custom people picker or try open source people picker. • InfoPath is not fully supported with ADFS • Incoming email requires changes to properly map users with trusted identity provider • Test email-enabled AD Groups to ensure alerts work properly • “Sign In as Different User” does not work unless closing browser, run-as, or in-private browsing? • Test Macintosh Microsoft Document Connection • Meeting Attendee lists require full email address
  • 15. Summary • Test, Test, Test – all clients, internal networks, internet, all critical functions • Monitor end-to-end validating ADFS and SharePoint are authenticating users properly • SharePoint 2013 does resolve many issues (especially with cookies) • Just found: A good summary experience from Red Cross
  • 16. Next Steps? • Upgrading to SharePoint 2013 and Office 365 • Continue the discussion: • jkaram@Princeton.edu • LinkedIn (jkaram) • Yammer (jkaram) • Twitter (@jkaram)
  • 17. Appendix: Incoming email Commands • Need to have latest CU installed for SP 2010 • Can run either: $w = Get-SPWebApplication $w.Properties["disable-active-directory-resolve"] = "true" $w.Properties["enable-trusted-resolve"] = "true" $w.Update() OR $farm = Get-SPFarm $farm.Properties["disable-active-directory-resolve"] = "true" $farm.Properties["enable-trusted-resolve"] = "true" $farm.Update()
  • 18. Useful Security Powershell Commands • Get-SPTrustedIdentityTokenIssuer • Get-SPTrustedServiceTokenIssuer • Get-SPClaimProvider • Adding a new relying party trust to existing provider