docGranjas Sharepoint Server para Escenarios Empresariales
download 
Report Transcription
Granjas Sharepoint Server para Escenarios Empresariales
Granjas Sharepoint Server para Escenarios Empresariales [email protected] Sigue descubriendo 8º Encuentro Danysoft en Microsoft Visual Studio | SQL Server | Sharepoint 3 salas | Madrid 24 Mayo 2011 Agenda Planificación Topologías Lógicas y Físicas Escalabilidad y Rendimiento Seguridad Servicios Sharepoint Gobierno Continuidad de Servicios/Operaciones Importance of Planning the Logical Architecture SharePoint 2010 is designed to map against complex business requirements and processes It broadly maps to six business workloads: Sites Communities or social computing Content management Search Insights or business intelligence Composites Organizing Your Project Structure requirements information: – Categorize functionality: • Functional • Nonfunctional – Identify exceptions Pool common requirements: – Identify commonality – Minimize duplication Validate information: – Ensure customer acceptance – Test against business processes Functional Planning Functional planning should include: Business function Administrative functions Authentication and authorization Legal or regulatory audit requirements Data management Reporting requirements Planning for Nonfunctional Requirements Nonfunctional planning should include: Performance Capacity Scalability Availability Security Manageability Interoperability Business continuity Logical Architecture The logical architecture documents the nonphysical structure of a solution, designed to fulfill business requirements It should: – – – – Map to logical requirements rather than technologies or features Reflect all business functionality necessary to deliver the solution Be recognizable to nontechnical business users Map to integral solution architecture SharePoint 2010 Logical Architecture Components Server farms Service applications Application pools Web applications Zones Content databases Site collections Sites Lists and libraries Items Service Application Architecture SharePoint Foundation 2010 Business Connectivity Services Usage and Health Data Collection Service Office Web Application Services SharePoint 2010 Managed Metadata Service Search Service State Service User Profile Service Access Services Excel Services PowerPoint Service Visio Graphics Service Word Automation Services Microsoft SharePoint Foundation Subscription Settings Service Secure Store Service PerformancePoint Services Web Analytics Additional or third-party services Phisical Architecture? - What’s Up ? SharePoint 2010 Server Roles WFE server Application server Database server Scalability of SharePoint 2010 Server configuration offers ability to scale up Farm topology offers ability to scale out Selecting a Farm Topology Small farm Two or three tiers Medium farm Large farm Three tiers Three tiers Topology for Enterprise Service Farms SharePoint Web Services Service Apps SEARCH Farm A Web App 1 UPS MMS STORE BCS Farm B XLS AXS MMS Farm C BCS Web App 2 Business Group1 Web App 3 Business Group2 Web App 4 Default group Sharepoint Performance Latency The duration between the time a user initiates an action and the time the last byte is transmitted to the client Throughput The number of concurrent requests that a server or server farm can process Data scale The content size and data corpus that the system can host Reliability A measurement of the ability of the system to meet the targets set for the latency and throughput over time Principles of Capacity Planning Domain controller placement WAN capacity Capacity considerations for SQL Server Guidelines for Performance SharePoint 2010 server Server hardware Web server Database server Performance of Web Front End Servers • • • • Renders Web content for client browser May perform application server functions in small farms Processor and memory are key hardware considerations Consider multiple load-balanced WFE servers to increase performance Performance of Application Servers • Different service applications generate different load requirements • Typically, application servers have high CPU and RAM • Consider dedicated servers or even multiple servers for key service applications • Some service applications may also have increased impact on WFE servers Performance of Search Servers • Two search server functions – Crawl – Query • Crawl role has high processor, but moderate memory requirements • Query role has high processor and memory requirements • High impact on database servers Performance of Database Servers • High processor and memory requirements • High disk I/O requirements • Consider disk storage type and profile – DAS – SAN – NAS – RAID configuration • Consider multiple computers running SQL Server for dedicated databases Planning for Remote BLOB Storage for SharePoint 2010 BLOBs include: – – – – Images Audio files Video files Other binary file types Default storage is content databases Remote storage is available Physical Design in a Business Context • • • • • Existing security requirements or policies Existing authentication requirements Firewall policies Current network load and available bandwidth Database server administration and support Additional Topology Considerations • Network location – Internal network – Perimeter network • Antivirus • High availability – WFE servers – Application servers – Database servers Security Architecture in SharePoint 2010 • Service accounts are typically domain accounts • Permission levels group individual permissions to simplify setting security • Site collection and site permissions control user access • Security groups can be SharePoint, Active Directory, or local groups • Permission policies centrally configure and manage permissions • SSL encryption is recommended between the client and the WFE server SSL Planning Factors Web Applications Certificates Port Mappings 443 2718 Authentication Topologies for Multiple Farms Trust Cookie Security token Redirect to partner STS Authentication request Local STS Partner STS Security token request Multi-Mode Authentication SharePoint farm SharePoint Web application SharePoint sites (path) Authentication Method A Authentication = Windows http://internal/page.apsx Authentication Method B Authentication = Form-based https://partner.com/page.aspx SharePoint site collection SharePoint Site Collection Mapping Business Requirements to Social Computing Functionality Tag Business Requirements User Profile Synchronization Social Computing Functionality Consuming Managed Metadata Across Farms • Enterprise scalability • One-way or two-way publishing • Multiple farms publishing or consuming Intranet farm Specialized department farm Business Connectivity Services • Import data from external sources • Augment existing data • Export not supported Enterprise Search Architecture WFE server Index server Index propagation Crawl database Property database Query server Planning Search Federation SharePoint Farm B SharePoint Farm A Bing Query server Business Reasons for FAST Search Why choose FAST search? • The index can increase to 500 million items • You can sort search results by any property • You can provide search relevancy • It supports two-way synonyms • It has visual enhancements • It has grammatical enhancements People Search is still provided by SharePoint search Planning for Excel Services Plan Excel Services architecture: – Excel Calculation Services – Excel Web Services – Excel Web Access Identify the need for Excel Services: – – – – Workbooks shared through browsers BI dashboards Reuse of business logic Report building WFE Excel Web Services Excel Web Access Application Server Excel Calculation Services Database Server Excel data Planning Excel Services Security Plan for access components – Trusted file locations – Trusted data providers – Trusted data connection libraries Plan authentication – Integrated Windows authentication – Secure Store Service authentication – None (unattended service account) Plan communication among servers Planning for PerformancePoint Services PerformancePoint Services components offer tools to create monitoring, reporting, and analysis visualization: When to use PerformancePoint Services: – IT provisioning BI functionality – Self-service provisioning – Establishing company-wide objectives and responsibilities Planning for PowerPivot Architecture components for PowerPivot for SharePoint Environment planning: – Storage – Networking – Processor and memory When to use PowerPivot for SharePoint: – Centralized access and management – Analysis services – Server-side processing Planning PerformancePoint Services Security Authentication – Per-user identity – Unattended user account – Custom data Access components: – Trusted file locations – Trusted data connection libraries – Trusted lists Roles and permissions: – Farm Administrator – Site Collection Administrator – Site Administrator or List and Document Library Contributor The Importance of Planning Governance Prevent portal, team site, and content sprawl Ensure that content quality is maintained during its life cycle Provide a consistently high-quality user experience Establish clear decision-making authority and escalation procedures Ensure that the implementation strategy correctly maps to business requirements Ensure that content is secured and stored to comply with guidelines for records retention What Needs to Be Governed? Metadata? Servers? Profiles? Workflow? Code? Content? Domain? People? Infrastructure? Policy? Guiding Principles for a Governance Plan • Controlled • Permanent • Tightly governed • Site owner accountable Enterprise Sites • Knowledge management • Applications • Permanent • Ad hoc Business Area Sites • Loosely governed • Shared accountability • Knowledge management • Information sharing Department and Team Sites • Temporary • Collaborative Project Team, Meeting, and Document Workspace Sites • Permanent • Personal information Personal My Sites One Size Does Not Fit All • Public/private views Building a Governance Committee Executive stakeholders Financial stakeholders IT leaders Business division leaders Compliance officers Trainers Software development leaders Information workers Information architects or taxonomists Governance of Sandboxed Solutions When should a farm administrator block or unblock a sandboxed solution? When can you transfer a sandboxed solution to the production environment as a fully trusted solution? Who will you allow to deploy sandboxed solutions? Will you dedicate a separate server to running sandboxed solutions? Business Continuity Management Features in SharePoint Server 2010 User-controlled capabilities – Recycle Bin – Versioning – Records Center Administrator-controlled capabilities – Availability – Disaster recovery – Backup and restore Availability and Disaster Recovery Availability – Degree to which SharePoint Server 2010 environment is available and fully operational – Expressed in uptime percentages—for example, 99.999 percent Disaster recovery – Ability to recover from a situation in which a computer running SharePoint Server 2010 becomes unavailable – Hot standby—recover in seconds or minutes – Warm standby—recover in minutes or hours – Cold standby—recover in hours or days Database Availability User requests Web servers Application servers Database servers (clustered or mirrored) SQL Server failover clustering SQL Server high-availability mirroring Farm Availability WFE Application Servers Load Balancers Virtualization … … IT/IS Staff Demo Practica Resumen Escenarios de Granjas Sharepoint en medianos/grandes contextos Aproximación a las Topologías recomendadas Revisión de Conceptos Aplicables Continuidad de Servicios • Te ofrecemos la gama más completa de utilidades de terceros que complementan VSTS • Te asesoramos en la adquisición, renovación y consolidación de licencias software. • Editamos libros especialmente creados por y para desarrolladores. Utilidades Licencias Software Libros • Formación a medida para equipos de desarrollo • Consultorías para la puesta en marcha de tecnologías • Presentaciones técnicas para ayudar a la toma de decisiones Formación Consultoría Presentaciones GRACIAS Para mas información contacte en el coffee break o al finalizar el evento con el equipo Danysoft, en el 902 123146 | [email protected]
