• No results found

Quest Site Administrator 4.4

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Quest Site Administrator 4.4"

Copied!
36
0
0

Loading.... (view fulltext now)

Download now ( 36 Page )

Full text

(1)

 

Quest

®

Site Administrator

4.4

for SharePoint

(2)

© 2011 Quest Software, Inc. ALL RIGHTS RESERVED.

This guide contains proprietary information, which is protected by copyright. The software described in this guide is furnished under a software license or nondisclosure agreement. This software may be used or copied only in accordance with the terms of the applicable

agreement. No part of this guide may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying and recording for any purpose other than the purchaser's personal use without the written permission of Quest Software, Inc. The information in this document is provided in connection with Quest products. No license, express or implied, by estoppel or otherwise, to any intellectual property right is granted by this document or in connection with the sale of Quest products. EXCEPT AS SET FORTH IN QUEST'S TERMS AND CONDITIONS AS SPECIFIED IN THE LICENSE AGREEMENT FOR THIS PRODUCT, QUEST ASSUMES NO LIABILITY WHATSOEVER AND DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. IN NO EVENT SHALL QUEST BE LIABLE FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION OR LOSS OF INFORMATION) ARISING OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF QUEST HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Quest makes no representations or warranties with respect to the accuracy or completeness of the contents of this document and reserves the right to make changes to specifications and product descriptions at any time without notice. Quest does not make any commitment to update the information contained in this document.

If you have any questions regarding your potential use of this material, contact: Quest Software World Headquarters

LEGAL Dept 5 Polaris Way Aliso Viejo, CA 92656 e-mail: [email protected]

(3)

Trademarks

Quest, Quest Software, the Quest Software logo, Aelita, AppAssure, Benchmark Factory, Big Brother, DataFactory, DeployDirector, ERDisk, Foglight, Funnel Web, I/Watch, Imceda, InLook, IntelliProfile, Internet Weather Report, InTrust, IT Dad, JClass, Jint, JProbe, LeccoTech, LiteSpeed, LiveReorg, NBSpool, NetBase, Npulse, PerformaSure, PL/Vision, Quest Central, RAPS, SharePlex, Sitraka, SmartAlarm, Spotlight, SQL LiteSpeed, SQL Navigator, SQLab, SQL Watch, Stat, Stat!, StealthCollect, Tag and Follow, Toad, T.O.A.D., Vintela, Virtual DBA, Xaffire, and XRT are trademarks and registered trademarks of Quest Software, Inc in the United States of America and other countries. For a complete list of Quest Software’s trademarks, please see

http://www.quest.com/legal/trademark-information.aspx. Other trademarks and registered trademarks used in this guide are property of their respective owners. Quest Site Administrator for SharePoint

Updated – December, 2011 Software version – 4.4

(4)

1 About Quest Software, Inc. 1

Contacting Quest Software . . . 1

Contacting Quest Support . . . 1

2 Quick Start 3 Before You Begin . . . 3

Test Lab Configuration . . . 4

Install SQL Server 2005 . . . 5

Install and Configure SQL Server 2005 Express . . . 6

Configure SQL Server 2005 Express . . . 7

User and Group Accounts . . . 9

Required Permissions . . . 10

Installing Windows SharePoint Services 3.0 . . . 10

Run Setup . . . 10

Run the SharePoint Products and Technologies Configuration Wizard . . . . 10

Installing Site Administrator for SharePoint . . . 12

Installing Information Portal . . . 12

Installing Management Console . . . 13

Case Study . . . 14

Case Study Overview . . . 14

Step 1. Create a Top-Level Site . . . 14

Step 2. Work with Information Portal . . . 16

Step 3. Add a Server Farm . . . 16

Step 4. Add the WSSAdmins Group to the SharePoint Administrators Group . . . . 17

Step 5. Modify the Default Site Filtering and Site Number Limit Settings . . . 18

Step 6. Install and Deploy the Policy Agent . . . 19

Configure Policy Agent Service Account Permissions . . . 20

(5)

Apply a policy . . . 22

Step 8. Configure Data Gathering and E-mail Notifications . . . 22

Step 9. View Built-in the Product Reports . . . 24

Specify Report Server . . . 24

View User Permission Report . . . 25

View Reports . . . 26

Step 10. Create a Custom Report . . . 27

Step 11. Work with Security Explorer . . . 29

Install SharePoint Web Service . . . 29

Search for Permissions . . . 30

(6)

Now more than ever, organizations need to work smart and improve efficiency. Quest Software cre-ates and supports smart systems management products-helping our customers solve everyday IT chal-lenges faster and easier. Visithttp://www.quest.comfor more information.

Contacting Quest Software

E-mail:[email protected]

Mail: Quest Software, Inc. World Headquarters 5 Polaris Way

Aliso Viejo, CA 92656 USA

Web site:http://www.quest.com

Refer to our Web site for regional and international office information.

Contacting Quest Support

Quest Support is available to customers who have a trial version of a Quest product or who have purchased a Quest product and have a valid maintenance contract. Quest Support provides unlimited 24x7 access to SupportLink, our self-service portal. Visit SupportLink athttp://support.quest.com.

(7)

From SupportLink, you can do the following:

• Retrieve thousands of solutions from our online Knowledgebase • Download the latest releases and service packs

• Create, update and review Support cases

View the Global Support Guide for a detailed explanation of support programs, online services, contact information, policies, and procedures. The guide is available at:http://support.quest.com.

(8)

Before You Begin

This section describes the test environment required for our case study, how to install and configure SQL Server 2005, SQL Server 2005 Express, Windows SharePoint Services 3.0, Site Administrator for SharePoint, and the requirements for proper deployment.

(9)

Test Lab Configuration

For the case study, we need a test lab with three computers configured as follows:

COMPUTER CONFIGURATION DESCRIPTION

Domain Controller

(GZ-DC)

Microsoft Windows

Server 2003 SP1

This computer is a domain controller for the GZ-LAB domain and SQL Server which hosts SharePoint databases and Site Administrator configuration database. For instructions on installing SQL Server with Reporting Services, please see the Install

SQL Server 2005section.

SQL Server 2005 with Reporting Services (rec-ommended)

Note: Although you can use Site Admin-istrator for SharePoint with SQL Server 2005 Express Edition, this SQL Server edi-tion does not support ad-hoc model-based reports. Therefore custom reports will not be available in Site Administrator and you will not be able to complete the corre-sponding task in this guide. For instruc-tions on installing and configuring SQL Server 2005 Express Edition, please see the Install and Configure SQL Server 2005 Expresssection.

OR

SQL Server 2005 Ex-press Edition with Re-porting Services

SharePoint server

(GZ-ShPoint2007)

Microsoft Windows

Server 2003 SP1

This computer is a member server in the GZ-LAB domain.

Microsoft Windows

SharePoint Services 3.0

We will deploy Site Administrator for SharePoint on this computer.

(10)

Install SQL Server 2005

Before starting the Microsoft SQL Server 2005 installation, make sure that Microsoft Internet Infor-mation Services (IIS) are installed for SQL Server Reporting Services to work.

To install Microsoft SQL Server 2005 Enterprise Edition, please take the following steps: 1. Log on to GZ-DC.

2. In the main menu of the SQL CD select the Server components, tools, Books Online and samples option under the Install heading.

3. On the End User License Agreement screen, review the terms, select the I accept the licensing terms and conditions check box and click Next to continue the installation.

4. On the Installing Prerequisites page, click Install.

5. When the prerequisites are installed, click Next to run the Microsoft SQL Server 2005 Installa-tion Wizard.

6. On the Welcome screen, click Next.

7. On the System Configuration Check, make sure that your system complies with all system requirements and click Next.

8. On the Registration Information page, specify your name and the company. Click Next. 9. On the Components to Install page, check the SQL Server Database Services and the

Re-porting Services boxes.

10. On the Feature Selection page, click Next. 11. On the Installed Instances page, click OK.

12. On the Instance Name page, select the instance type. If you selected Named Instance type, provide a name for the instance. Click Next.

13. On the Service Account page, check SQL Browser and Server Agent boxes and click Next. 14. On the Authentication Mode page, specify the desired authentication mode and click Next. 15. On the Collation Settings page, configure the collation settings for the instance and click Next. 16. On the Report Server Installation Options page, leave the Install the default configuration

option selected. Click Next.

17. On the Ready to Install page, click Install.

(11)

19. On the Completing Microsoft SQL Server 2005 Setup page, click Finish. To verify a successful installation of Microsoft SQL Server 2005, perform the following:

1. Select Start | All Programs | Microsoft SQL Server 2005 | Configuration tools | SQL Server Configuration Manager.

2. In the SQL Server Configuration Manager window, double-click the SQL Server 2005 Ser-vices node and make sure the installed serSer-vices are running.

Note: You should configure Reporting Services after Microsoft SQL Server 2005 with Reporting Services has been installed.

Install and Configure SQL Server 2005 Express

To install Microsoft SQL Server 2005 Express Edition with Advanced Services, please take the fol-lowing steps:

1. Log on to GZ-DC.

2. Run the SQL Server 2005 Express setup.

3. On the End User License Agreement screen, review the terms, select the I accept the licensing terms and conditions check box and click Next.

4. On the Installing Prerequisites page, click Install.

5. When the prerequisites are installed, click Next to run the Microsoft SQL Server 2005 Installa-tion Wizard.

6. On the Welcome screen, click Next.

7. On the System Configuration Check, make sure that your system complies with all system requirements and click Next.

(12)

9. On the Feature Selection page, click the icon next to Reporting Services and select Entire feature will be installed on local hard drive from the shortcut menu. Click Next.

10. On the Authentication Mode page, specify the desired authentication mode and click Next. 11. On the Report Server Installation Options page, leave the Install the default configuration

option selected. Click Next.

12. On the Error and Usage Report Settings page, click Next. 13. On the Ready to Install page, click Install.

Note: Unlike built-in the product reports, which are available for all SQL Server ver-sions, custom reports will not be available for Microsoft SQL Server 2005 Express.

Configure SQL Server 2005 Express

Site Administrator for SharePoint requires network protocols and the SQL Server Browser service to be enabled on the SQL server. However, the protocols and the service are disabled in Microsoft SQL Server 2005 Express by default.

To enable the protocols and the service, take the following steps: 1. Log on to GZ- ShPoint2007.

(13)

2. On the Start menu, click All Programs | Microsoft SQL Server 2005 | Configuration tools | SQL Server Configuration Manager.

3. Expand the SQL Server 2005 Network Configuration node, and then select Protocols for InstanceName.

4. Right-click the TCP/IP protocol and select Enable from the shortcut menu. The icon for the protocol will change to show that the protocol is enabled.

5. Restart the SQL Server (InstanceName) service using the Services snap-in. 6. Select the SQL Server 2005 Services node.

7. Right-click the SQL Server Browser service in the right pane and select Properties from the shortcut menu.

8. Go to the Service tab and set the start mode to Automatic.

9. Click OK to apply your changes. 10. Start the SQL Server Browser service.

(14)

User and Group Accounts

Log on to the domain controller (GZ-DC) using the built-in Administrator account. Run the Active Directory Users and Computers snap-in and create the following accounts and groups:

ACCOUNT PURPOSE NOTES

PolicyAgent This account will be

used to run the Pol-icy Agent service on the SharePoint server.

Make sure to grant this account the permis-sions described in the section below.

WSSAdmins This domain group will

be granted rights to man-age the SharePoint in-stallation.

Add the Administrator and PolicyAgent ac-counts to this group.

SalesUsers This domain group will

be used to grant security permissions on a Share-Point site.

To install and manage Site Administrator, use the following account:

ACCOUNT PURPOSE NOTES

Administrator This account will be

used to install Site

Ad-ministrator for

Share-Point in the lab.

Use the default Domain Administrator ac-count.

Make sure the account has local adminis-trator rights on the SharePoint server (GZ-ShPoint2007).

(15)

Required Permissions

The accounts you use to install Site Administrator for SharePoint and run the Policy Agent must have local administrator rights on the SharePoint server (GZ-ShPoint2007).

The PolicyAgent account must also be granted the system privilege to log on as a service on the Share-Point server and full control permissions via the web application policy (for more detailed information about how to grant these rights and about the other permissions required for PolicyAgent account, see the Configure Policy Agent Service Account Permissions section).

Installing Windows SharePoint Services 3.0 Run Setup

To install Windows SharePoint Services 3.0, please take the following steps: 1. Run SharePoint.exe on GZ-ShPoint2007.

Note: You can download the SharePoint.exe file using the following link

http://www.microsoft.com/downloads/details.aspx?FamilyId=D51730B5-48FC-4CA2-B454-8DC2CAF93951&displaylang=en

1. On the Read the Microsoft Software License Terms page, review the terms, select the I accept the terms of this agreement check box, and then click Continue.

2. On the Choose the installation you want page, click **Advanced. 3. On the Server Type tab, click Web Front End.

4. When you have chosen the correct options, click Install Now.

5. When Setup finishes, a dialog box appears that prompts you to complete the configuration of your server. Be sure that the Run the SharePoint Products and Technologies Configuration Wizard now box is checked.

6. Click Close to start the configuration wizard.

After Setup finishes, you can use the SharePoint Products and Technologies Configuration Wizard to configure Windows SharePoint Services 3.0.

(16)

1. On the Welcome to SharePoint Products and Technologies page, click Next.

2. On the Connect to a server farm page, click No, I want to create a new server farm and click Next.

3. In the Specify Configuration Database Settings dialog box, in the Database server box, enter the name of the computer that is running SQL Server (GZ-DC).

4. In the Database name box, specify the name for your configuration database.

5. On the Completing the SharePoint Products and Technologies Configuration Wizard page, click Next.

6. On the Configuration Successful page, click Finish.

For more information on installing Windows SharePoint Services 3.0, please follow the

link:

http://technet2.microsoft.com/windowsserver/WSS/en/library/700c3d60-f394-4ca9-a6d8-ab597fc3c31b1033.mspx?mfr=true (from the contents select End-to-end deployment scenarios (Windows SharePoint Services)>Deploy in a simple server farm (Windows SharePoint Services)> Deploy and configure the server infrastructure).

(17)

Installing Site Administrator for SharePoint

Installing Information Portal

To install Information Portal, log on to SharePoint server (GZ-ShPoint2007) using your Administra-tor credentials. Run the installation wizard and complete it as follows:

1. On the Welcome page, click Next.

2. On the License Agreement page, read and accept the license agreement. Click Next.

3. On the Configuration Database page, specify the SQL server instance to host the configuration database and the database name to create (QSP_Repository by default).

4. On the Additional Parameters page, specify the account to run Information Portal services. 5. On the Ready to Install Application page, click Next to begin installation.

6. Once installation completes, click Finish to exit the wizard. The Welcome page is automati-cally opened. Now you can start working with Information Portal (see the Step 2. Work with Information Portalsection).

(18)

Installing Management Console

To install Site Administrator for SharePoint, log on to SharePoint server (GZ-ShPoint2007) using your Administrator credentials. Run the installation wizard and complete it as follows:

1. On the Welcome page, click Next.

2. On the License Agreement page, read and accept the license agreement and click Next. 3. On the License page, select either Specify license to specify a valid product license key or Try

Me to use the product for evaluation purposes. Click Next.

4. On the Installation Path page, accept the default installation path or click Browse to specify an alternate installation folder. Click Next.

5. On the Check Your Computer for Prerequisites page, wait while the wizard checks your computer, and then click Next.

6. On the Check the Database Server page, the wizard checks the SQL server used for Informa-tion Portal. If the server passes all tests, click Next.

7. On the Credentials for Report Data Gathering page, specify the credentials for the Adminis-tratoraccount. Click Next.

8. On the Ready to Install page, review the installation options you selected on the previous steps. Click Next to begin installation.

9. Once installation is complete, clear the Run Site Administrator check box and click Finish to exit the wizard.

(19)

Case Study

This chapter presents a case study that illustrates the product’s main functionality.

Case Study Overview

The suggested case study involves the following steps:

1. Create the new top-level site Sales Department on the SharePoint server. 2. Work with Information Portal.

3. Add a Server Farm.

4. Add the WSSAdmins group to the SharePoint Administrators Group.

5. Modify the default site filtering and site number limit settings in the product console. 6. Install and deploy the Policy Agent to the SharePoint server.

7. Create a site policy to enforce the permission level for the SalesUsers group on the Sales De-partment Web site.

8. Configure and run report data gathering from GZ-ShPoint2007. 9. View built-in the product reports on the gathered information. 10. Create a custom report.

11. Work with Security Explorer.

Step 1. Create a Top-Level Site

To create a new top-level SharePoint site named Sales Department with the address http://gz-shpoint2007/sites/sales, take the following steps:

1. Log on to GZ-ShPoint2007 using the Administrator credentials.

2. Open SharePoint Central Administration page (Start | All Programs | Microsoft Office Server | SharePoint 3.0 Central Administration).

(20)

3. Go to the Application Management tab and click Create Site Collection in the SharePoint Site Management section.

4. In the Title and Description sections, type Sales Department for the title and provide a de-scription.

5. In the Web Site Address area, specify the following: a)Select /sites/ from the URL path list.

b)Type sales in the URL name field.

6. In the Template Selection section, leave the default Team Site template selected.

7. In the Primary Site Collection Administrator area, type GZ-LABAdministrator and click the Check Names button.

8. Click OK to create the site.

9. On the Top-level Site Successfully Created page, click OK.

10. Expand the GZ-ShPoint2007.SharePoint node, and then right-click the node and select Re-fresh to update the site list.

(21)

Step 2. Work with Information Portal

After you installed Information Portal, take the following steps: 1. On the Welcome page, select Go to Enterprise Report.

2. On the Enterprise page, review information on your entire SharePoint environment.

3. Select the Site Collections link at the top of the screen, and then the Site metrics link next to the sales site. The report for the sales site is displayed.

4. To view all users having access to this site, go back to the Site Collections page, and then select the Site permissions link next to the sales site.

5. Select the Settings link in the right top corner of the screen. Specify the DomainPeter account in the type field of the Access Settings area, and then click Add. The specified account is added to the Information Portal administrators.

Run Information Portal under Peter account in a new Internet Explorer window. The Enterprise report is opened, though Peter account has no rights in the SharePoint environment.

6. To add a new farm to the Information Portal scope, select Add more farms in the Farms section of the Enterprise report. On the Add Farm page, specify server name of the SharePoint farm you want to add in the type box, and then click Add. The farm appears in the Farms section of the Enterprise report.

Step 3. Add a Server Farm

To add an individual server farm to Site Administrator for SharePoint from the Management Console, take the following steps:

1. Right-click the Enterprise SharePoint node and select the Add Farm item from the shortcut menu. The Add Server Farm Wizard runs.

2. On the Welcome page of the wizard, click Next.

3. On the Specify SharePoint Front-End Server page, specify one of the front-end servers in the SharePoint server farm you want to add. Click Next.

Note: You can enter the NetBIOS or DNS name or IP address of the SharePoint front-end

server.

4. On the Scanning Server Farm page, you can see the activities taken and issues encountered during the scan process.Click Next.

(22)

5. On the Completing the Add Server Farm Wizard page, leave the Run Data Gathering now check box selected to enable the data gathering on the newly added server farm after the wizard completes or clear the check box for data gathering to start according to the default scheduling settings. Click Finish to exit the wizard.

The discovered web applications will be displayed in the Site Administrator console under the Enter-prise SharePoint node.

Step 4. Add the WSSAdmins Group to the SharePoint Administrators Group Next, add the WSSAdmins group to the SharePoint Administrator Group, as follows:

1. Right-click the GZ-ShPoint2007.SharePoint node and select Central Administration | Op-erations | Update Farm Administrators Group to open the People and Groups: Farm Ad-ministrators page on the SharePoint Central Administration site.

2. Click New | Add Users to open the Add Users: Central Administration page. On this page, type WSSAdmins in the Group account name field and click OK to save your changes.

(23)

Step 5. Modify the Default Site Filtering and Site Number Limit Settings

Site Administrator for SharePoint provides new Site Filter options, which allow you to filter sites and subsites by the URL path and limit the number of the child sites to be displayed in the Site Administrator console.

For example, you are interested in sites with the URLs containing mysites or sites parts. Take the following steps:

1. Right-click the Enterprise SharePoint node and select the Site Filter Options item from the short-cut menu. The Site Filter and Limit dialog appears.

2. Check the Show only the sites with the URL path matching the following pattern radio button.

3. Specify the pattern in the textbox. (e.g. mysites*;sites*).

Note: Make sure that the specified URL path does not contain domain and port names as these URL parts are not filtered.

4. Specify the number of sites in the Maximum number of sites displayed for a parent box (e.g. 2).

5. Click OK. The Site Administrator console will display only the first 2 sites with the URL path matching the specified pattern (mysites*;sites*).

If you want to return to the default settings, open the Site Filter and Limit dialog and click the Restore Defaults button.

(24)

Note: Note that Site filtering and site number limit are user-defined, so different users can have different settings.

Note: To view sites displayed in the tree by the URL, right-click the site node and select View Sites By | URL from the short-cut menu.

Step 6. Install and Deploy the Policy Agent

In order for you to use server and site policy, the Policy Agent must be installed on the front-end SharePoint server. Take the following steps to deploy the Policy Agent:

1. Click the Install link on the Policy Manager main page. The Front-End Servers dialog ap-pears.

2. From the list of displayed front-end servers, select portal2. Click Install.

3. In the terminal connection window, specify credentials to log on to the SharePoint server and complete the Policy Agent Installation Wizard, as follows:

a)On the Welcome screen, click Next.

b)On the License Agreement screen, accept license agreement and click Next.

c)On the User Information screen, specify your name and organization, and provide a valid

license. Click Next.

d)On the Select Features screen, click Next.

e)On the Specify Account screen, provide credentials for the GZ-LABPolicyAgent account

and click Next.

f)On the Ready to Install screen, click Next.

g)After the installation is completed, click Finish to exit the wizard and close terminal session. 4. After installation, the name of the front-end server (portal2) will be displayed in the Agent

column on the Policy Manager main page.

5. Back on the Policy Manager main page, click the schedule link. In the Policy Agent Schedule dialog, perform the following:

a)Check the Custom Schedule radio button.

b)Select the Every radio button and set the application interval to one hour so that the policy agent applies the policies to the sites on the SharePoint server every hour.

(25)

Configure Policy Agent Service Account Permissions

The account you use to run the Policy Agent must have local administrator rights on the SharePoint server (GZ-ShPoint2007).

Log on to GZ-ShPoint2007 using the Administrator account. Run the Local Users and Groups snap-in and add PolicyAgent to the Administrators group.

The PolicyAgent account must also be granted the system privilege to log on as a service on the SharePoint server, as follows:

1. Log on to GZ-ShPoint2007 using the Administrator credentials. 2. Run the Local Security Settings snap-in (secpol.msc).

3. Select Security Settings | Local Policies | User Rights Assignment in the console tree. 4. Double-click the Log on as a service policy in the right pane.

5. Add the PolicyAgent account to the list and click OK.

The PolicyAgent account must also be granted full control permissions via the web application policy, as follows:

1. Log on to GZ-ShPoint2007 using the Administrator credentials. 2. Open the SharePoint Central Administration page.

3. Select Application Management | Policy for Web application.

4. Select the http://gz-shpoint2007/ from the Web Application drop-down list. 5. On the Add Users page, select the Full Control option and click Finish. The PolicyAgent account must also have the following permissions:

• db_owner role for the Site Administrator configuration or reporting database • db_owner role for the SharePoint content database

(26)

Step 7. Create and Apply a Site Policy

Now we can create a site policy to enforce the Contribute permission level for the SalesUsers group on the Sales Department Web site.

Create a policy

To create the policy, complete the following steps:

1. Right-click the Policy Manager node and select New from the shortcut menu. 2. In the Create New Policy window, type Test Policy in the name field and click OK. 3. In the Policy Editor window, select the Test Policy | Site | Users and Permissions node.

4. In the right pane, select the Restricted Site Groups entry and click the ... button.

5. Click Add in the Restricted Site Groups window and specify Contribute in the Group name field.

6. Type GZ-LABSalesUsers in the User field and click Add. 7. Click OK to add the users and close the window. Click OK.

8. Back in the Policy Editor, click the Save and Exit button to apply your changes and close the Policy Editor window. The policy you created will be added to the Policy Manager node.

(27)

Link a policy

To link the policy to the site, complete the following steps:

1. Expand the GZ-ShPoint2007.SharePoint node, right-click Sales Department, and select Pol-icy Tasks | Link Existing PolPol-icy from the shortcut menu.

2. In the Choose Policies window select Test Policy and click OK.

Apply a policy

To apply the policy, right-click GZ-ShPoint2007.SharePoint and select Policy Tasks | Apply Now. The Policy Agent begins processing the policy. You have successfully created a site policy and linked it to a Web site. Now if you accidentally remove the SalesUsers group from the site, the policy will put it back in less than an hour. In step 8, we will use the Permission Report to check whether the specified permission level was applied correctly.

Step 8. Configure Data Gathering and E-mail Notifications

Before configuring data gathering, you should enable e-mail notifications so that the administrator will be informed when data gathering is completed. Take the following steps:

1. Right-click the Report Manager node and select Email Notification from the shortcut menu. 2. In the Email Notification window, select the Send email notification check box and specify

the following:

a)For the From email address, specify [email protected].

b)For the To email address, specify [email protected].

c)For the SMTP Server, specify GZ-ADMIN.

3. Click OK.

Take the following steps to configure report data gathering from GZ-ShPoint2007:

1. Right-click GZ-ShPoint2007.SharePoint and select Data Gathering Tasks | Modify Settings from the shortcut menu. The Report Data Gathering Wizard runs.

(28)

3. On the Enable or Disable Gathering page, select the Enable report gathering for the server option. Select the Start gathering report data when the wizard completes check box to run the gathering process right after you complete the wizard. Click Next.

4. On the Select Data Gathering Computer page, leave the default value to use GZ-ADMIN for report data gathering. Click Next.

5. On the Specify Credentials page, specify credentials for your administrator account. Click Next.

6. On the Set Data Gathering Schedule page, click the Change button and specify a data gather-ing schedule to run the job automatically at another time. Select the Enable extended logggather-ing on SharePoint servers check box to configure SharePoint servers to log additional information from the SharePoint servers. Click Next.

7. On the Completing page, click Finish to exit the wizard.

Data gathering will start when the wizard finishes. To review the progress of report data gathering, select the GZ-ShPoint2007.SharePoint node and go to the Reporting tab:

When data gathering is completed, an e-mail notification will be sent to [email protected]. Note: Note that Site Administrator host should always be on for data gathering to work. Note: Site Administrator provides two types of reports: built-in the product and custom reports.

(29)

Built-in the product reports are defined within Site Administrator. They are created auto-matically and can be viewed right after the data gathering is completed.

Custom reports are defined by the user. Before viewing these reports, you should first create them.

Step 9. View Built-in the Product Reports Specify Report Server

Before you can proceed to viewing reports, you should first specify Report server, as follows: 1. Expand the Report Manager node and browse the console tree for any report (for example,

Enterprise SharePoint at a Glance | Enterprise SharePoint overview). 2. Type GZ-ShPoint2007 in the Report Server field in the right pane.

3. Click Next and wait while the wizard configures reporting settings. 4. When the wizard completes, click Finish to apply your changes.

(30)

View User Permission Report

Now we can check whether the Contribute permission level was applied to the SalesUsers group. First, confirm that data gathering is completed by checking for the e-mail notification sent to [email protected]. Then open the Permission report by taking the following steps:

1. Right-click the Sales Department node and select Permission Report/User Permission Re-port from the shortcut menu.

2. In the right pane, specify GZ-LABSalesUsers in the User or group field, and click Next. 3. On the report page, check that GZ-LABSalesUsers has the Contribute permission level.

(31)

View Reports

You can view any other reports under the Report Manager node. For example, to view the SharePoint server details report, take the following steps:

1. Expand the Report Manager node. Here you can see the list of folders that the reports are stored in.

2. Open the Enterprise SharePoint at a Glance folder and click the Enterprise SharePoint overview report. The report will be displayed in the right pane.

(32)

Step 10. Create a Custom Report

Site Administrator for SharePoint allows you to create custom reports using the Custom Report Wiz-ard.

Note: Note that custom reports will not be available for Microsoft SQL Server 2005

Express Edition.

For example, you want to view a list of people who own site collections on the SharePoint web applications. Take the following steps:

1. Expand the Report Manager node to view a list of folders that the reports are stored in. Right-click the Custom Reports folder and select Create Custom Report to start the Custom Report Wizard.

2. On the Custom Report Information page, specify the following:

a)In the Report Name area, enter the appropriate information (Site Collection Owners). b)In the Report Fields area, select the following fields for custom report: Web Application Name, Site Collection URL, and Site Collection Admin.

(33)

c)Click Next.

3. On the Filtering page, perform the following actions:

a)In the Condition Options area, check the box near the field to enable a filter condition. b)In the Field box, select the Web Application Name field from the drop-down list. c)In the Operator column, select the Equals item from the drop-down list.

d)In the Matching Value text box, enter a value (e.g. Canada Office Portal).

e)Leave the Prompt box checked (default setting) if you want the filter conditions to be dis-played in the result report. Clear the check box to hide filtering conditions in the result report. Click Next.

4. On the Sorting page, specify the following:

a)Check the box near the field to enable sorting options.

b)In the Field box, select the Site Collection URL field from the drop-down list. c)Select the Descending sorting type. Click Next.

5. On the Preview page, do the following:

a)To preview the result report, click the Preview the custom report button. To return to the Preview page, click the Close the preview dialog button. If you want to modify the filtering or sorting, go to the corresponding pages.

b)Click Next and wait while the wizard generates the report.

6. After the report is generated, you can edit it in the Microsoft Report Builder. Select the Click here to edit this report in Microsoft Report Builder link to open the Microsoft Report Builder.

7. Click Finish to complete the wizard. The report’s node will appear in the tree under the Custom Report folder.

(34)

Step 11. Work with Security Explorer

Security Explorer is a feature of Site Administrator for SharePoint that allows you to view, search and clone permissions. This section illustrates each of these capabilities.

Install SharePoint Web Service

Before you can access the security for a selected SharePoint site, you should first install the Web Service on the target server, as follows:

1. To run Security Explorer, select the Security Explorer node in the Site Administrator for Share-Point console tree, and then click the corresponding link in the right pane.

2. Go to the My Computer (SCORPIONW2K3SD) node in the Navigation pane. 3. The SharePoint Web Service Installation dialog appears.

4. Click Install. The Remote Setup box displays the installation progress. 5. After the installation process is completed, click Close.

(35)

Search for Permissions

Next, you can search for permissions given to the Sam_Parker user. Perform the following steps: 1. Open the Browse tab in the Navigation pane.

2. Expand the My Computer (SCORPIONW2K3SD) node, right-click the Test site, and then select Add to Search Scope from the shortcut menu.

3. Go to the Search tab. In the Group/User box, type Sam_Parker.

4. Go to the SharePoint Search Criteria tab and uncheck the Search for list permissions box.

(36)

Clone Permissions

Now we can clone the discovered permissions to another user. Take the following steps:

1. Select Sam_Parker site permissions in the Permissions pane and then click the Clone button. The Clone SharePoint Permissions dialog appears and displays the path to the selected object and the associated groups and users.

2. In the Source Group or User area, select Sam_Parker.

In the Destination Group or User area, select the guest user to receive the cloned permissions. 3. Click Add. The selected pair displays in the List of users and groups to clone list.

4. Click OK. The Cloning Permissions box displays the progress.

5. After the Cloning Permissions process is completed, click Close. Now the guest user has the same site permissions as Sam_Parker.

References

Download now ( PDF - 36 Page - 607.01 KB )

Related documents

The Social Media Glossary

Online community: A group of people using social media tools and sites on the Internet OpenID: Is a single sign-on system that allows Internet users to log on to many different.

Design and Implementation of the Operation Platform for JiangXi Province Local Tax Security Management

This platform is based on local tax reality, using modern information security theory, fully compliant with national standards, adopting the current most advanced information

GRANDPARENTS FAMILY LAW INFORMATION GUIDE

LawAccess NSW is a free government service that provides legal information, advice and referrals for people who have a legal problem in NSW. You can also get plain language

Abstraction Refinement and Antichains for Trace Inclusion of Infinite State Systems

The main optimization of antichain-based algorithms [1] for checking language inclusion of automata over finite alphabets is that product states that are subsets of already

Mechanisms of maintaining accuracy of protein biosynthesis on the ribosome

Eksperimenti su pokazali da je za mutiranu tRNA Trp , koja nosi supstituciju u D-ruci, smanjena točnost procesa translacije na način da su reakcije koje se odvijaju

Academic Phrasebank

Summarising the findings This study has shown that .... These findings suggest that in general .... One of the more significant findings to emerge from this study is that .... It

Tradition and Transition: The changing fortunes of barkcloth in Uganda. In Society of America Symposium Proceedings. 1012.

Robertson, “Rethinking Material Culture: Ugandan Bark Cloth,” in Textile Society of America 2014 Biennial Symposium Proceedings: New Directions: Examining the Past, Creating

Medicine Shelf Stuff

○ If BP elevated, think primary aldosteronism, Cushing’s, renal artery stenosis, ○ If BP normal, think hypomagnesemia, severe hypoK, Bartter’s, NaHCO3,