Sid_F
asked on
Sharepoint 2010 architecture question
I have inherited a network with Sharepoint 2010, two FE's running behind a load balancer with SQL on a seperate server. Internal users access over http and sharepoint is a published application through ISA 2006 for external users who access over HTTPS.
I need to change everyone over to HTTPS but I am unsure what the best plan is and what impact this will have on the user experience. eg will internal users start to get prompted for credentials when opening an office document (persistent cookie issue)... what about cert names and how will I prevent internal users being routed externally as the URL will obviously change to https://sharepoint.mydomain.com so the SSL cert will check out. What about old http links will a simple redirect work.. as you can see I have quite a bit to cover
I have limited knowledge of Sharepoint so I am eager to see how other people are handling internal and external users and HTTPS access.
Thanks
I need to change everyone over to HTTPS but I am unsure what the best plan is and what impact this will have on the user experience. eg will internal users start to get prompted for credentials when opening an office document (persistent cookie issue)... what about cert names and how will I prevent internal users being routed externally as the URL will obviously change to https://sharepoint.mydomain.com so the SSL cert will check out. What about old http links will a simple redirect work.. as you can see I have quite a bit to cover
I have limited knowledge of Sharepoint so I am eager to see how other people are handling internal and external users and HTTPS access.
Thanks
ASKER
Yes that's correct. Thanks
I ironically I am in the process of cleaning up my sharepoint environment as well.
Which has two FE's 1 app server an a clustered DB. The 2 FE's are behind a hardware load balance. The external / internal sites are access via https..
Here is what I have do in my environment to help correct things.
1) Create a test sharepoint environment in lab. You and do a sharepoint farm backup then do any alternate retore to you lab and test all settings before doing them live.
2) Do you have alternate Address mappings? Unfortunalty we do not which is not correct. If you could edit the mapping for your internal clients.
I already assume the certificate is on your sharepoint servers and imported into sharepoint under managed trust
Which has two FE's 1 app server an a clustered DB. The 2 FE's are behind a hardware load balance. The external / internal sites are access via https..
Here is what I have do in my environment to help correct things.
1) Create a test sharepoint environment in lab. You and do a sharepoint farm backup then do any alternate retore to you lab and test all settings before doing them live.
2) Do you have alternate Address mappings? Unfortunalty we do not which is not correct. If you could edit the mapping for your internal clients.
I already assume the certificate is on your sharepoint servers and imported into sharepoint under managed trust
ASKER
I only have to understand the process and the elements involved. Implementation is handled by another person although I would like to get more up to speed using my test server. If I go back to basics for a moment and suppose I have a standard http Sharepoint 2010 setup. Should I be using AAM's to change this over to HTTPS for internal users or am I way off!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks I will see if the AAM's do the trick
ASKER
Thanks
how is the current setup configured? Is the ISA server doing the SSL stuff and talks then internally to SharePoint using HTTP?
Thanks.
Rainer