Solved

Sharepoint 2010 architecture question

Posted on 2014-01-27
8
314 Views
Last Modified: 2014-05-06
I have inherited a network with Sharepoint 2010, two FE's running behind a load balancer with SQL on a seperate server. Internal users access over http and sharepoint is a published application through ISA 2006 for external users who access over HTTPS.
I need to change everyone over to HTTPS but I am unsure what the best plan is and what impact this will have on the user experience. eg will internal users start to get prompted for credentials when opening an office document (persistent cookie issue)... what about cert names and how will I prevent internal users being routed externally as the URL will obviously change to https://sharepoint.mydomain.com so the SSL cert will check out. What about old http links will a simple redirect work.. as you can see I have quite a bit to cover

I have limited knowledge of Sharepoint so I am eager to see how other people are handling internal and external users and HTTPS access.
Thanks
0
Comment
Question by:Sid_F
  • 4
  • 2
8 Comments
 
LVL 44

Expert Comment

by:Rainer Jeschor
ID: 39814237
Hi,
how is the current setup configured? Is the ISA server doing the SSL stuff and talks then internally to SharePoint using HTTP?
Thanks.
Rainer
0
 
LVL 5

Author Comment

by:Sid_F
ID: 39814334
Yes that's correct. Thanks
0
 
LVL 19

Expert Comment

by:compdigit44
ID: 39900962
I ironically I am in the process of cleaning up my sharepoint environment as well.

Which has two FE's 1 app server an a clustered DB. The 2 FE's are behind a hardware load balance.  The external / internal sites are access via https..

Here is what I have do in my environment to help correct things.

1) Create a test sharepoint environment in lab. You and do a sharepoint farm backup then do any alternate retore to you lab and test all settings before doing them live.

2) Do you have alternate Address mappings? Unfortunalty we do not which is not correct. If you could edit the mapping for your internal clients.

I already assume the certificate is on your sharepoint servers and imported into sharepoint under managed trust
0
The problems with reply email signatures

Do you wish that you could place an email signature under a reply? Well, unfortunately, you can't. That great Exchange/Office 365 signature you've created will just appear at the bottom of an email chain. What a pain! Is there really no way to solve this? Well, there might be...

 
LVL 5

Author Comment

by:Sid_F
ID: 39902729
I only have to understand the process and the elements involved. Implementation is handled by another person although I would like to get more up to speed using my test server. If I go back to basics for a moment and suppose I have a standard http Sharepoint 2010 setup. Should I be using AAM's to change this over to HTTPS for internal users or am I way off!
0
 
LVL 19

Accepted Solution

by:
compdigit44 earned 500 total points
ID: 39903510
I am not an expert in SharePoint by a long shot but I believe this all needs to be done in SharePoint.

See if this link helps: http://www.mssharepointtips.com/tip.asp?id=1102&page=2

Also in my environment our main sharepoint site uses https but redirects to other http sites without issue

THs is a good video on SharePoint 2010 AAM's : http://technet.microsoft.com/en-US/video/dn153778
0
 
LVL 5

Author Comment

by:Sid_F
ID: 39920150
Thanks I will see if the AAM's do the trick
0
 
LVL 5

Author Closing Comment

by:Sid_F
ID: 40044184
Thanks
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

We had a requirement to extract data from a SharePoint 2010 Customer List into a CSV file and then place the CSV file into a directory on the network so that the file could be consumed by an AS400 system. I will share in Part 1 how to Extract the Da…
Lync server 2013 Backup Service Error ID 4049 – After File Share Migration
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now