2009년 4월 7일 화요일 오후 3:39I have installed Sharepoint (MOSS 2007) on a MS Win 2003 Server with SP2. It is a one server installation. I have been able to create a few site collections for internal team members. Right now we want to create a site collection which internal as well as external users can access and use based on permissions allocated to them.
1. Is it possible for the site collection being created for the internal and external users to have its own domain name (example: www.domainname.com as opposed to servername/sites/partnername)
2. Is it possible for external users to access the site collection and use it based on permissions allocated to them that and how would I go about doing that.
3. How would I go about seting up the authentication process since the external users don't belong to our AD hierarchy. (I have heard mention of a tool called External Collaboration Toolkit for Sharepoint. Is this capable of doing the trick?)
- 편집됨 Mike Walsh FIN 2009년 4월 7일 화요일 오후 6:45 Last line removed. Don't ask for quick responses in forum posts. If you are in a hurry ring MS Customer Support Services.
2009년 4월 8일 수요일 오후 6:301 - When setting up SharePoint you have a few different ways you can refer to a top level site collection. You can refer to it by servername and port, or you can use DNS. DNS is definitely my preference and is needed for systems with multiple web front ends. If you want to have the system support both internal and external, you will need to setup two web applications, with two addresses. You can have one with an internal address for your internal people, and one external.
2 - External users would only have access to the sites and content you give them access to.
3 - There are a bunch of options so I would move slowly and do lots of research. I'm not very comfortable opening up internal servers to external users, but it can be done securely if you have good people. If you don't want to include the users in Active Directory, another option would be to use Forms Based Authentication for the external users.
I haven't implemented FBA yet. For the extranets I've worked with I've always had a "public" AD domain where the accounts would live which is seperate from the "private" AD structure on the inside of the network.
SharePoint Developer | Administrator | Evangelist -- Twitter -- Blog - http://nextconnect.blogspot.com
2009년 4월 10일 금요일 오후 9:56Thanks for the response.
Based on additional research I have opted to extend my Sharepoint site and create an external site. For the external site I will implement FBA and use the External Collaboration Toolkit for Sharepoint to provide authentication through Active Direction Application Mode (ADAM) which would provide the necessary separation from internal AD Hierarchy.
Thanks once again for the response.
2012년 3월 30일 금요일 오후 1:57
You can go with FBA(Form based authentications)
2012년 6월 19일 화요일 오후 4:16
Great stuff here ...
are there any white papers or site that go into the steps and processes?