TechNet - Только для профессионалов. Специально для Вас. >
Форумы
>
SharePoint - Collaboration
>
How does ECTS work for remote employees and external users - Partners and Customers?
How does ECTS work for remote employees and external users - Partners and Customers?
- Many people have installed and uninstalled ECTS multiple times before implementing ECTS successfully in their environment. I tried that on my single server installation few months back but I did not explore it much. I haven't tried installing and configuring it for our new SharePoint farm (multi-server farm), which we are going to deploy on Windows Server 2008 but we are looking for some generic Extranet Solution, which can help accessing SharePoint over internet to remote employees with their accounts in AD (NTLM) in intranet as well as other external users such as partners and customers with their accounts in ADAM (LDAP) in DMZ.
Is it possible to allow access to SharePoint over internet to remote employees with their authetication against AD (NTLM) in intranet and to partners and customers with their authentication against ADAM (LDAP with FBA) in DMZ? To visualize this scenario, here is what we want,
Active Directory should be in Intranet
All SharePoint (MOSS 2007) servers including Database Server should be in intranet
ADAM should be in DMZ
ISA Server 2006 with web publishing rules should be in DMZ
Local Employee > Intranet (http://sharepoint.domain.com) > AD (NTLM) > Access to SharePoint
Remote Employee > Internet (https://websp.domain.com) > ISA Server 2006 > AD (NTLM) > Access to SharePoint
Partner or Customer > Internet (https://extranet.domain.com) > ISA Server 2006 > ADAM (FBA with LDAP) > Access to SharePoint
We will have all internal user (Employees local or remote) accounts in Active Directory in intranet and all external user (partners or customers) accounts in ADAM LDAP repository.
What is the best possible way of allowing access to SharePoint to remote employees, partners and customers over internet with above stated servers, tools and technologies?
How good is ADAM to achieve this?
I would truly appreciate your comments.
Thanks
-Brij
Все ответы
- Hi Brij,
If you are still looking for a solution might I suggest you have a look at Epok, Inc.'s product that is designed for extending SharePoint to extranet users.
http://www.epok.net
Thanks,
-bpdiv - Hi,
I think for the local employees you go with AD and windows authentication whereas for external users (clients and partners) use Forms based Authentication (FBA). In this case only thing you need to do is extend the existing webapplication (above stated one) and configure it for FBA and do the url mapping (alternate urls for external users).
AD is good for all purposes but if you face problems for non AD users and feel its tremendous work to be done then switch to FBA.
Manish Patil http://patilmanishrao.wordpress.com Posting is provided "AS IS" with no warranties, and confers no rights.
