Feeds:
Posts
Comments

Archive for the ‘SQLServerPedia’ Category

Hello Friends,

Sometimes life is so uneasy that you didn’t get time for the work which you like the most. Now those days are gone so I am back.It’s been months I haven’t written anything . I have received lot of mails through blogs and LinkedIn which I tried to reply.
Days are gone and now the pet command “DCPROMO” which is used to install Active directory is now the thing of past. But command can go not the concept.

 

So, How to Install Active Directory in Windows Server 2012?. I will try to provide exact way to install and configure Active Directory in new world.

Screen which comes when we use “dcpromo” to install AD.

dcpromo

This means we need to go to Server Manager to Install AD.

 Steps:

a) How to Install AD.

1) Go to Server Manager.
2) On the server manager page dashboard . Click on  Add roles and features.

server Manager

3) Roles and Features Wizard will open which will allow to add different roles and features in Window server. On the Default page , click next

Before you begin

4) Select Role based or feature-based installation. As we are installing role directly on a particular server and not on any env. remotely.

Installation Type

5)  Current server will come by default. Select the server and click next.

Destination server

6) On the Server Role page select the Active Directory Domain Services. A list of additional things which are required with this will appear, select Add Features.

Add features

7) Select the features like .Net and Group policy Management. Scrolling down you will see the Remote server Administration tool is already selected as it is required with Active directory installation.

Features

 

8) Read the information given in AD DS page and click Next

ADDS

9) Read the DNS  information and click next.

DNS Server

10) Select the restart the destination server check box and click Install.

Add Roles and Features

11) You are also export the Configuration settings which has been defined for future use.

 

12) Once AD DS is installed you can start configuration directly from result page “ Promote this server to domain controller”. It can also be done through Server Manager page.

Results

14) Close the wizard , once installation completes.

 

Steps:

b) How to Configure AD.

 

1) After AD DS role is installed it will be directly displayed on the ‘Server Manager’ page. For completing the configuration open the Notifications Pane by clicking on Notifications icon on the top of the Server Manager. click Promote this server to a domain controller.

Domain Controller

2) As we are creating a new forest . Select the option “Add New Forest” and provide the name of root domain. i.e in my case it is learning.com

Deployment Configuration

3) Select Forest functional level and Domain Functional Level. Here I am considering that all my servers are server 2012 . If there are server less than window server 2012. We should consider for backend Compatibility and level should be considered accordingly.

 

a) As it is the first Domain controller there is no option to check or uncheck . But for future ADC we need to check or uncheck these option as per need.

 

b) Kindly provide the DSRM password. It commonly known as passphrase earlier. Which is used while adding or removing any additional domain controller to have administrator authentication.

Note: Kindly note the password for future perspective.

Domain controller Option

4) Read the below Warning and click Next. This warning is basically because of the Authoritative Zones which need to be created in DNS explicitly.

DNS Option

5) Provide the Netbios name of your domain in the field required. i.e Learning for our case.

Netbios name

6) Specify the location of below NTDS and Sysvol file. By Default it is C: Drive.

ADDS path

7) Read and acknowledge the below information before clicking Next.

ADDS Review

8) You can also view the script as what will be done during installation. Same can be done with power shell also.

Script ADDS

9) After the prerequisite check. Click on Install.

Prerequisite

10) After the installation is completed Successfully. Server will be Restarted and your Active Directory Domain Services is installed and configured on Windows Server 2012.

 

Hope I was able to describe the content correctly based on my knowledge and learning.

If you liked this post, do like on Facebook at :https://www.facebook.com/Ashishsharepointblog

Feel free to Rate and provide feedback if you find post useful

Hope this help
Ashi

Read Full Post »

Hello Friends,

It’s been months I haven’t written anything as I was busy with lot of stuff. There are many things to write but starting with topic for which I got many mails from lot of friends through blogs and linked in.

As we all are aware with Claim based in SharePoint 2010 and different option/ways of Authentication( Ldap, Sql, Federation). Claim is the technology of today, In SharePoint 13 Microsoft even removed the Classic  Mode and made it the days of past. Today we will discuss with the form based with LDAP Authentication.

 I will try to provide and exact way to configure Form based authentication in Claim Based Authentication in SharePoint. To enable a form based , web application should be created in Claim based mode only.

Steps:

Creating a Claims based web application using GUI

  • Go to Application Management in Central admin
  • Go to Manage Web Applications and create a new web application
  • In the option select Claims Based Authentication mode

web app creation1-Ashish Banga

  • In claim authentication types select Enable Windows Authentication and select NTLM
  • In authentication type section for  form based configuring select Enable ASP.NET Membership provider name.

    Note: Membership provider and Role manager name which you provide in this section will be used in everywhere for web config and enabling it. So give it properly and note it for reference.

  • Click on “OK” button to create the web application.
    web app creation2-Ashish Banga
  • web app creation3-Ashish Banga web app creation4-Ashish Banga
  • Now everybody knows web application is nothing until and unless there is at least a single site collection in it. So first create a site collection for it.
  • Go to CA, Application Management, Create site collections
  • Select the appropriate web application
  • Create a site collection with adding appropriate entries .
  • Now the task remain is to modify different web config files and adding user policy for the web application.
Modifying Web.Config files for the FBA web application , Central Administration and Secure Token Service

Note: All the web config entries for copying are provided at end of blog:

In the below web configs (for all ) 3 entries need to be added as per your entry:
1) one for Membership provider and Role manager name
2) Server name
3) Group Container. If you have access to AD you can find the container easily. Go to the AD . Select a user or a group in the container

AD1-Ashish Banga

AD2-Ashish Banga

Modifying web.config of the web application

  • Open the web.config file  of claim based web application’s
  • Find the <membership> entry. There should be only one membership entry and modification should be done in that only. Duplicity will give error.
  • Put the below XML directly under <Providers> entry
    webconfig-WP1-Ashishbanga
  • Find the <roleManager> entry.
  • Put the below XML directly under <Providers> entry.
    webconfig-WP2-Ashishbanga
  • Put the below entry in the People Picker Wildcards entry
    people picker-Ashishbanga

Modifying web.config of the Central Administration site

  • Open web.config file of  Central Administration site
  • Find the <system.web> entry
  • Put the following XML directly below it
    webconfig-CA-Ashishbanga
  • Put the below entry in the People Picker Wildcards entry
    people picker-Ashishbanga                            

 

Modifying web.config of the Security Token Service (STS) in 14 Hive

  • Open the web.config file  of Security Token Service (STS)
  • Find the </system.net> entry
  • Below full entry need to be added directly below </system.net> entry
    webconfig-secure store-Ashishbanga

Note: If you more than one SharePoint servers hosting Central Administration or the claims based web application then all web config entries need to be changed in all SharePoint servers.

Add a user policy to the web application

  • Go to CA, Application Management, Manage Web Applications
  • Highlight the claims based web application
  • Click on User Policy and select Add Users link
  • Click the Address Book icon. Type the login name to search. There will be two entries for same name one of AD and other for LDAP
  • Select the account from form authentication one in the User section and click the Add button
  • Give the Full Control access by checking that box. then click the Finish button
    LDAP1-Ashish Banga
    LDAP2-Ashish Banga

Now is the time for testing:

Open your web application in the browser. If all things are done fine. It will open like this:

Claim Based application1-Ashish Banga

Now click on sign in:

Claim Based application2-Ashish Banga

Now Your form based authenticated site will open for you:

Claim Based application3-Ashish Banga

Web config entries


Membership entry:
         <add name=”LdapMember” type=”Microsoft.Office.Server.Security.LdapMembershipProvider, Microsoft.Office.Server, Version=14.0.0.0, Culture=neutral, PublicKeyToken=71e9bce111e9429c” server=”server2008.ashish.com” port=”389″ useSSL=”false” userDNAttribute=”distinguishedName” userNameAttribute=”sAMAccountName” userContainer=”OU=CLAIM,DC=ASHISH,DC=COM” userObjectClass=”person” userFilter=”(ObjectClass=person)” scope=”Subtree” otherRequiredUserAttributes=”sn,givenname,cn” />

Role provider entry:
<add name=”LdapRole” type=”Microsoft.Office.Server.Security.LdapRoleProvider,  Microsoft.Office.Server, Version=14.0.0.0, Culture=neutral, PublicKeyToken=71e9bce111e9429c” server=”server2008.ashish.com” port=”389″ useSSL=”false” groupContainer=”OU=CLAIM,DC=ASHISH,DC=COM” groupNameAttribute=”cn” groupNameAlternateSearchAttribute=”samAccountName” groupMemberAttribute=”member” userNameAttribute=”sAMAccountName” dnAttribute=”distinguishedName” groupFilter=”(ObjectClass=group)” userFilter=”(ObjectClass=person)” scope=”Subtree” />

People picker entry:
<PeoplePickerWildcards>
<clear />
<add key=”AspNetSqlMembershipProvider” value=”%” />
<add key=”LdapMember” value=”*”/>
<add key=”LdapRole” value=”*”/>
</PeoplePickerWildcards>

Role Manager key for CA:
<roleManager enabled=”true” defaultProvider=”AspNetWindowsTokenRoleProvider” >

Hope I was able to describe the content correctly based on my knowledge and learning.

If you liked this post, do like on Facebook at :https://www.facebook.com/Ashishsharepointblog

Feel free to Rate and provide feedback if you find post useful

Hope this help
Ashi

Read Full Post »

Hello Friends,

MOSS2007 is still live and sometime we need to check certain features and that can give learning too. Recently one of my friend was installing MOSS 2007 on his Virtual machine and during the configuration of the “SharePoint Configuration Wizard” he encountered an error while creating a new farm.

Ashish-Sql connec

Error is reflecting that SQL Server cannot be connected to the network, To diagnose it further we check lot of stuff:

  • VMware network settings.
  • IP addresses Provided to the servers were in the same subnet mask.
  • Any specific DNS issue.
  • able to ping IP address from both ends.
  • Non blockage of SQL port 1433 by firewalls.

It was my mistake and didn’t check PS config Diagnostic configuration error log at first in the 12 Hive. After spending some time and checking the log thoroughly. We got a log entry that “Named Pipes” might not be enabled on the SQL Server.

I check the Microsoft sites and there was no need for Named pipes as the connection are made through TCP socket but still I enabled Named Pipes on Sql server.

I tried the things again and this time it run without any error. It was success.

“Named Pipes” can be enabled as:

  1. Go to “SQL Server Configuration Manager”
  2. Go to “SQL Server 2005 Network Configuration”
  3. Go to “Protocols for MSSQLSERVER”
  4. Right-click the “Named Pipes” and “Enable” it.

If you uninstall and install sharepoint again or disable named pipes on same server configuration you will never get the error again. But if you create a new server VM and all configuration it will give same error. I have checked it but not sure why it gives error on new servers. Might be on fresh it needs named pipes to be enabled for a single time.

But nevertheless problem got resolved.

Hope I was able to describe the content correctly based on my knowledge and learning.

If you liked this post, do like on Facebook at: https://www.facebook.com/Ashishsharepointblog

Feel free to Rate and provide feedback if you find post useful

Hope this help
Ashi

Read Full Post »

Hello Friends,

As discussed in my previous blog the new architecture of Service Application in 2010. Let’s today discuss about connecting two different farms: 

Connecting a service between Publishing and Consuming SharePoint farm

 There are some service applications which have the capability to Publish and which can be used by different SharePoint farms. What that actually means:

We all know Search and crawl is the most intensive task in SharePoint. If a company has 2-3 SharePoint farms and every farms runs its own search/index application. It will be very intensive and time consuming task. Instead of running index in every SharePoint Farm:

We can just do the index in one farm and use that publishing service in different farm. It will save lot of resources and will be very less intensive task.

So what to do next:

As we have other farm where some services are hosted locally as that cannot be published or consumed. So they reside in the same farm and we can consume the search application from the other farm. Below are the steps how to consume the publishing service from other farm:

 Note: To publish or consume the service applications, two farms should be in a far trust.

Once the farm-trust is configured, below are the steps:

Publishing a Service Application

a) Go to a publishing server whose service you want to publish and be used in other farms, open Central Administration.

b) Go to Application Management and then move to è Manage service applications.

c) Click to the right of the service application which you want to publish, clicking on application will open it features be sure to click on its right.

d) On the SharePoint Ribbon, click on Publish. Feature.

e) On the next page check the option “Publish this Service Application to other farms” .

f) Now we have to copy the whole url: It will begin with urn: and ends with .svc.

ex: urn:schemas-microsoft-com:sharepoint:service:ac51d6g73agg
96z8a6d89dg45fk972c243dbec93f0c7#authority=urn:uuid:da764
dko856wgbvfk86542564757&authority=https://xyz:2500/Topolo
gy/topology.svc

g) Make it ok and proceed.

h) Again do the same step as step C.

i) On the SharePoint Ribbon, click on Publish. Feature.

j) Provide farm Id of the consuming farm, you can find as:   Get-SPFarm | Select Id

k) Add the same.

l) Click the farm id you entered, for the permission.

Now the part of publishing farm is over, we have to enter the url in the consuming farm to use the service:

a) Go to a Consuming server where publishing service needs to be used, open Central Administration.

b) Go to Application Management and then move to manage service applications.

c) On the SharePoint Ribbon, click on Connect.

d) Pass the URL for the service application you have taken in step (f) of publishing server and press OK.

e) Highlight the service application by clicking on it.

f) Here you have an option to can choose, whether or not to include this service application in the default service application group. Click OK once done.

Now when all the stuff is over you can use the service application of a farm just as a locally hosted service application of your farm.

Hope I was able to describe the content correctly based on my knowledge and learning.

If you liked this post, do like on Facebook at: https://www.facebook.com/Ashishsharepointblog
Feel free to Rate and provide feedback if you find post useful

Hope this help

Ashi

 

Read Full Post »

Older Posts »

Follow

Get every new post delivered to your Inbox.

Join 165 other followers

%d bloggers like this: