none
allow outside users to access sharepoint intranet site

    Question

  • Hi techies,

    I would like to create a new site on Sharepoint, Access to the site is required by both internal and external users, so it means they will be few people outside the  domain that we need to give access to the site.how to achive this.

     

    thanks in advance.

    raju.


    Nag: http://nagaraju-sharepoint.blogspot.com. Posting is provided with no warranties.
    Wednesday, April 07, 2010 11:34 AM

Answers

  • Hi Raju,

    Actually we also had this kind of requirement and then we reolved this by using FBA(Form based authentications).

    Steps for using FBA are as below:

    1>Extend your existing web application to a new port

    2>Configure sql db(using aspnetresql command available within c drive of your sharepoint server machine)

    3>Make changes in web.config of your extended site and your central administration site.

    4>You are ready to give access to external users.

    Here is complete link:

    http://www.codeproject.com/Articles/19055/Form-Authentication-for-MOSS-2007-Site

    Hope this will help you.

    Thanks!!!!!!!!!!!

    Hirwani Jain

    Mark as answer!!!!


    Thursday, June 14, 2012 1:42 PM

All replies

  • Which version of sharepoint are you using?

    Are you requiring authentication from those external users or are you going to allow them to access the site anonymously?

    Security is now going to be a major concern. Placing the SharePoint server into a DMZ on your network is a logical first step. If you are going to allow external users to login (instead of using anonymous access) then you need to decide where those users will reside. You could put them in your company Active Directory, Create a new AD just for external users, or eliminate AD and utilize Forms Auth to store them.

    Also depending on your version (MOSS or WSS) you are going to have some licensing considerations to work through now that you are opening this site up to users outside your company.

    Wednesday, April 07, 2010 12:01 PM
  • Hi thanks for the Quick reply,

                              we are using MOSS 2007,we dont want to give anonymous accesss.we want to use the authentication.

    please can i get any link for the Process of a new sharepoint site for the External users to allow access?

     

    many thanks,

    raju.

     


    Nag: http://nagaraju-sharepoint.blogspot.com. Posting is provided with no warranties.
    Wednesday, April 07, 2010 12:25 PM
  • Here is a decent link that has most of the things you will need to consider in it.

    http://technet.microsoft.com/en-us/library/cc263513.aspx

    Hopefully that will help get you on the right track.

     

    Wednesday, April 07, 2010 2:26 PM
  • You can extend your existing web app and use form authentication with exteded web apps and AD authentication with original web apps. The content will be same on both the sites (both will be linked to same content DB), only url will be different for AD & SQL users .

     some useful links ....

    http://technet.microsoft.com/en-us/library/cc287954.aspx

     http://www.andrewconnell.com/blog/articles/HowToConfigPublishingSiteWithDualAuthProvidersAndAnonAccess.aspx

    http://grounding.co.za/blogs/brett/archive/2008/01/09/setting-up-dual-authentication-on-windows-sharepoint-services-3-0-forms-and-ntlm.aspx



    Thanks
    Ganesh Jat [My Blog | LinkedIn | Twitter ]
    Thursday, April 08, 2010 5:58 AM
  • You really haven't given us enough information to answer the question.  This is a huge topic, and it's not easily answered nor implemented.  There are some major details that you must consider and explain to us first that have nothing to do with SharePoint:

    1) Is your entire internal environment exposed to the Internet?  This alone is a rare thing and very unlikely, and it's the most important part of the question, because external users MUST have access to your network if you're going to let them access your resources.

    2) So, do you have a protected network, or is it exposed openly to the Internet?  If protected, do you have a DMZ network available?

    3) Have you architected your SharePoint farm to utlilize this DMZ with WFEs crossing the domain boundary or with a 2nd farm for content deployment, or does your farm completely reside within the DMZ?

    4) Do you plan to give external users accounts in your internal identity provider?  What is your identity provider...is it Active Directory?  If you don't want to give users accounts in your internal AD, then what method do you intend to use?  Will you create another AD domain in the DMZ and create user accounts there, or will you want to create your own Role and Membership providers using SQL?

    Again, this is a huge topic, but you haven't spent much time at all explaining your situation nor your requirements.  It seems to be quite common for people to spend very little time explaining their situation while expecting anonymous Internet people to give robust answers on a free message board.  It is quite frustrating.


    SharePoint Architect || Microsoft MVP || My Blog
    Thursday, April 08, 2010 6:37 AM
  • Hi,

    I have a smilar requirement for our website. We are using SharePoint 2010 for a client and are building an application which supports Windows(for internal users) & Forms(for external users) using Claims Authentication. Once configured, when we access the site a default screen comes up which asks the user to select between the type of authentication needed.

    Is there anyway we can bypass this screen. What we require is one URL to the site, and if internal users try to access they have to be prompted with a windows authentication dialog box, and if external users try to login they have to be prompted with the sign in screen provided by Form's Authentication.

    Is there a way to acheive this in Sharepoint 2010, without having to extend the web application as it was in MOSS 2007.

    This is a show stopper for us currently, and hence would ask the members in this forum to help us with a solution.

    Thanks & Regards,

    Ganti Rajesh Chandra.


    Raj
    Friday, November 26, 2010 5:12 PM
  • Ganti, this is the pre-2010 forum.  DO not ask 2010 questions embedded within old (or any) pre-2010 questions.
    SharePoint Architect || Microsoft MVP || My Blog
    Planet Technologies || SharePoint Task Force
    Friday, November 26, 2010 5:28 PM
  • Hey Clayton,

    I have checked and there are only 'Pre-2010' forums available. Could you suggest a forum where i can post this question.


    Raj
    Friday, November 26, 2010 5:33 PM
  • Hi Raju,

    Actually we also had this kind of requirement and then we reolved this by using FBA(Form based authentications).

    Steps for using FBA are as below:

    1>Extend your existing web application to a new port

    2>Configure sql db(using aspnetresql command available within c drive of your sharepoint server machine)

    3>Make changes in web.config of your extended site and your central administration site.

    4>You are ready to give access to external users.

    Here is complete link:

    http://www.codeproject.com/Articles/19055/Form-Authentication-for-MOSS-2007-Site

    Hope this will help you.

    Thanks!!!!!!!!!!!

    Hirwani Jain

    Mark as answer!!!!


    Thursday, June 14, 2012 1:42 PM