Nell’iperspazio con Rocket: il Framework Web di Rust!
Building an Extranet with Office 365
1.
2. Paul Papanek Stork
• Principal Architect for BlueChip Consulting
Group
• http://www.bluechip-llc.com
• Contributing Author
• Developer’s Guide to WSS 3.0
• MOSS 2007 Best Practices
• Author
• MCTS: WSS 3.0 Configuration Study Guide (70-631)
• Pro SharePoint 2010 Development for Office 365
• Contact Information
• Email: Paul.Stork@bluechip-llc.com
• Blog: http://dontPaPanic.com/blog
• Twitter: @PStork
3. Agenda
• On-Premise Extranet Challenges
• SharePoint 2013 Licensing Changes
• Office 365 Primer
• PALs vs. CALs
• Designing an Extranet
• Inviting External Users
• Live Demonstration
4. What is an Extranet?
• Intranet Site – Used for collaboration or
dissemination of information to Internal
Users
• Internet Facing Site – Used to Publish
information to Anonymous External
Users
• Extranet Site – Used for collaboration
or sharing of information between
External and Internal Users
5. Who are External Users?
• Internal Users
• Your employees
• Onsite contractors
• Employees of your affilitates
• External Users
• Anyone who isn’t an Internal User
6. On-Premise Extranet Designs
• Edge Firewall – Single Firewall between
SharePoint and Outside Users
• Back to Back Perimeter Network –
Separate SharePoint Farm in a
Perimeter Network
• Split Back to Back Perimeter Network –
Separate SharePoint Farm with Internal
SQL resources
7. On-Premise Challenges
• Infrastructure
• Firewall and DMZ adjustments
• Anti-virus (now that Forefront AV is gone)
• Multiple Authentication Providers
• Internal users - AD
• External users - Forms based Authentication
• Licensing
• External Users require Internet Licensing
• Changed for SharePoint 2013
8. 2013 Licensing Change
• 2007
• Internet License for Enterprise only
• About $40,000
• 2010
• SharePoint 2010 for Internet Sites, Standard
$10,000 retail
• SharePoint 2010 for Internet Sites, Enterprise
Still about $40,000
• 2013
• External Users are FREE!
9. Office 365 Licensing Plans
• P - Small and Midsize Businesses
• E – Enterprise Businesses
• K – Kiosk Worker
• A – Education
• G – Government
• Online Services (ala Carte)
• Office Professional Plus
• Exchange
• SharePoint
• Lync
10.
11. What are PALs?
• Client Access Licenses (CAL)
• One required for each Internal User
• Partner Access License (PAL)
• Allows External User Access – FREE!
• P1 Small – 500 Free
• P2 Midsize – 10,000 Free
• E Subscription – 10,000 Free
12. Typical Extranet Designs
• One Site Collection per Partner
• Easiest to Deploy
• No communication between Partners
• One Site Collection with Partner Sub
Sites
• Root Site can be used for Overall Communication
• Break Security Inheritance on Sub-Sites
• More Complex Design to maintain
13. Important Limits
• Boundaries and Limits vary by
Subscription Type
• E3 Key Boundaries and Limits
• 100GB + 500MB per licensed user total storage
• 100GB Max Quota per site collection
• 3,000 site collections w/ 2,000 sub-sites
• 250MB File Upload limit
• 10,000 PALs for External Users
14.
15. Inviting External Users
• Enable Sharing – Off by Default
• Share Extranet Root
• Read Only
• Site Visitors Group
• Share Company Sub-Site
• Requires Breaking Security Inheritance
• Contribute Permission
• Company Members Group
17. Admin Groups
• By Default three Groups for each Site
Collection
• Site Collection Owners – Full Control
• Site Collection Members – Edit
• Site Collection Visitors – Read Only
• New Sub-Site with Unique Security
• Can create up to 3 additional groups
• 3 Additional Groups can be created
manually
• http://siteUrl/__layouts/15/permsetup.aspx
18.
19. Managing External Users
• Withdraw Invitations
• Site Settings>Users and Permissions>Access
requests and invitations.
• Closing an Anonymous Guest Link
• Delete Guest Link on Open Menu in Library
• Remove External Users
• Configure SharePoint Online Management Shell
• Must be a SharePoint Online Global Admin
• Get-SPOExternalUser -Position 0 -PageSize 30 -
Filter @testsite.com
• Remove-SPOExternal User -UniqueIDs @”GUID”
20. SharePoint Online Management
1. Install PowerShell 3.0
2. Install the SharePoint Online
Management Shell
3. Start>All Programs>SharePoint
Online Management Shell.
4. Connect-SPOService -Url
https://extranetsite.sharepoint.com
-credential AdminId
3.Click Start>All Programs>SharePoint Online Management Shell.
4.Run Connect-SPOService. For example, Connect-SPOService -Url https://contoso-admin.sharepoint.com -credential admin@contoso.com, where:
•Url is the URL of the SharePoint Online Administration Center.
•Credential is the user name to which you want to grant access to the SharePoint Online Administration Center site.
21.
22. Avoiding Pitfalls
• Take advantage of an O365 Trial
• Do a Cost Benefit Analysis
• Name Groups Carefully
• Consider SharePoint Online Only
23. Additional Resources
• Sign-Up for an Office 365 thirty day Trial
http://tinyurl.com/O365trial
• Windows PowerShell for SharePoint Online
http://tinyurl.com/SptOnlinePowerShell
• Manage external sharing for your SharePoint
online environment
http://tinyurl.com/ManageExternalUsers
• SharePoint Online Boundaries and Limits
http://tinyurl.com/SptOnlineLimits