OFC323OFC323Dot-Com Meets SharePoint: Dot-Com Meets SharePoint: Building an Internet-Facing Building an Internet-Facing Web Site Using Microsoft Web Site Using Microsoft Office SharePoint Server Office SharePoint Server 20072007

OFC323OFC323Dot-Com Meets SharePoint: Dot-Com Meets SharePoint: Building an Internet-Facing Building an Internet-Facing Web Site Using Microsoft Web Site Using Microsoft Office SharePoint Server Office SharePoint Server 20072007Jim MassonJim MassonLead Program ManagerLead Program ManagerMicrosoft CorporationMicrosoft Corporation

AgendaAgenda

A look at an example internet siteA look at an example internet siteThe ABCs of PublishingThe ABCs of PublishingAuthentication and AuthorizationAuthentication and AuthorizationInternet Facing TopologiesInternet Facing TopologiesPerformance and ScalePerformance and Scale

Key topics covered elsewhereKey topics covered elsewhereOFC216OFC216 Using the Web Content Management Features of Using the Web Content Management Features of Microsoft Office SharePoint Server 2007 to Build Great Looking Microsoft Office SharePoint Server 2007 to Build Great Looking SitesSites

Branding and change controlBranding and change controlMulti-lingual publishingMulti-lingual publishingCatch it on the DVDCatch it on the DVD

OFC329OFC329 Migrating Your Content Management Server 2002 Web Migrating Your Content Management Server 2002 Web Sites to Microsoft Office SharePoint Server 2007 Sites to Microsoft Office SharePoint Server 2007 Migration from CMS 2002Migration from CMS 2002

Thursday 1 – 2:15 259 AB Thursday 1 – 2:15 259 AB

Jim MassonJim MassonLead Program ManagerLead Program ManagerOffice SharePoint ServersOffice SharePoint Servers

A Tour Through an Internet Site A Tour Through an Internet Site

Site FeaturesSite Features

VisibleVisibleCustom Look And FeelCustom Look And Feel

Anonymous AccessAnonymous Access

BlogBlog

Content Rollup Content Rollup

NavigationNavigation

Behind the ScenesBehind the ScenesCustom Master PageCustom Master Page

Forms AuthenticationForms Authentication

WSS Blog templateWSS Blog template

Content Query and Table of Contents Web PartsContent Query and Table of Contents Web Parts

Controlled Publishing ProcessControlled Publishing Process

Separate authoring and production environmentsSeparate authoring and production environments

Cached for PerformanceCached for Performance

ABCs of Web Content ABCs of Web Content ManagementManagement

TeamTeam

DivisionDivision

EnterpriseEnterprise

ExtranetExtranet

InternetInternet

IndividualIndividual

Authoring and BrandingAuthoring and Branding

Custom master page provides a shared Custom master page provides a shared look look and feeland feel

Page Layouts control how specific types of Page Layouts control how specific types of content are presentedcontent are presented

All press-releases share a common structureAll press-releases share a common structure

Constrained Editing ControlsConstrained Editing ControlsHTML editor, link, and image controlsHTML editor, link, and image controls

Styles can be separated from contentStyles can be separated from content

Branding EnforcementBranding EnforcementPer web control of available master pages, Per web control of available master pages, page layouts, and web templatespage layouts, and web templates

Controlled PublishingControlled Publishing

Pages are document library itemsPages are document library itemsCheck outCheck out

Draft versionsDraft versions

Simple moderationSimple moderation

Approval workflowsApproval workflows

Custom workflowsCustom workflows

Page and document schedulingPage and document schedulingAuthor can specify when content goes liveAuthor can specify when content goes live

Content DeploymentContent DeploymentControlled release into productionControlled release into production

Jim MassonJim MassonLead Program ManagerLead Program ManagerMicrosoft CorporationMicrosoft Corporation

Controlled PublishingControlled Publishing

Security on Public SitesSecurity on Public Sites

Authentication and AuthorizationAuthentication and AuthorizationCommon patternCommon pattern

Anonymous access siteAnonymous access site

But with a “members area”But with a “members area”

Forms AuthenticationForms Authentication

HardeningHardeningRestricted Reader RoleRestricted Reader Role

Disabling Client IntegrationDisabling Client Integration

Policy enforcementPolicy enforcement

Authentication and Authentication and AuthorizationAuthorization

Several Authentication Methods AvailableSeveral Authentication Methods AvailableWindows, Forms, Web SSOWindows, Forms, Web SSO

Per Web ApplicationPer Web Application

Forms AuthenticationForms AuthenticationASP.NET 2.0 Membership modelASP.NET 2.0 Membership model

We ship LDAP membership providerWe ship LDAP membership providerAD, ADAM, third party LDAP serversAD, ADAM, third party LDAP servers

Other ASP.NET Providers can also be usedOther ASP.NET Providers can also be usedi.e. SQL Server Provider shipped with ASP.NETi.e. SQL Server Provider shipped with ASP.NET

Anonymous AccessAnonymous Access

Configuring Anonymous AccessConfiguring Anonymous AccessEnabled by central administrator per web Enabled by central administrator per web applicationapplication

Can then be enabled in webs and listsCan then be enabled in webs and listsFor publishing scenarios, must be enabled in the root For publishing scenarios, must be enabled in the root webweb

Subwebs can then require authenticationSubwebs can then require authentication

i.e. members areasi.e. members areas

Rights cappedRights cappedYou simply cannot give anonymous users some rights You simply cannot give anonymous users some rights (i.e. writing to a document library)(i.e. writing to a document library)

HardeningHardening

Restricted Reader roleRestricted Reader roleRestricted Readers can use the siteRestricted Readers can use the site

Can view pages, documents, imagesCan view pages, documents, images

But they can’t use everythingBut they can’t use everythingCan’t call Remote APIsCan’t call Remote APIsCan’t view SharePoint application UICan’t view SharePoint application UICan’t view minor or historical versionsCan’t view minor or historical versions

Disabling Client IntegrationDisabling Client Integration

PolicyPolicyCan constrain maximum access per web Can constrain maximum access per web applicationapplication

Deny all write access via http://site:80Deny all write access via http://site:80ACLs can’t give you back write accessACLs can’t give you back write accessUpdates only via content deployment, or an intranet Updates only via content deployment, or an intranet facing web appfacing web app

Jim MassonJim MassonLead Program ManagerLead Program ManagerMicrosoft CorporationMicrosoft Corporation

Security ConfigurationSecurity Configuration

TopologiesTopologies

FarmsFarmsScale up and down as neededScale up and down as needed

PerformancePerformance

RedundancyRedundancy

Multi-farmMulti-farmStaging environments in different networkStaging environments in different network

ExampleExampleAuthoring in intranet with Active Directory Authoring in intranet with Active Directory authenticationauthentication

Production in perimeter network with forms authProduction in perimeter network with forms auth

Site collections can be deployed Site collections can be deployed between environmentsbetween environments

Authoring FarmAuthoring Farm InternetInternetProduction Production

FarmFarm

Multi-Farm TopologyMulti-Farm Topology

NLB

Web Front End

Internet

Content Content DeploymentDeployment RequestsRequests

Content DeploymentContent Deployment

Paths and jobsPaths and jobsPaths connect source and destination Site CollectionsPaths connect source and destination Site Collections

Jobs control what content is copied whenJobs control what content is copied when

One direction (source -> destination)One direction (source -> destination)Not multi-masterNot multi-master

Incremental by defaultIncremental by defaultIncremental takes changes since last successful Incremental takes changes since last successful deploymentdeployment

Configured by central administratorConfigured by central administratorCan delegate to authors using the “QuickDeploy” job Can delegate to authors using the “QuickDeploy” job

Content fix-upContent fix-upLinksLinks

SecuritySecurity

Jim MassonJim MassonLead Program ManagerLead Program ManagerMicrosoft CorporationMicrosoft Corporation

Content DeploymentContent Deployment

Performance and ScalePerformance and Scale

Internet Publishing ScenariosInternet Publishing ScenariosMostly ReadMostly Read

Many repeat views of the same contentMany repeat views of the same content

Course Grained AccessCourse Grained Access

Good candidate for cachingGood candidate for caching

Improve Scale UpImprove Scale Up

Improve Scale OutImprove Scale Out

CachingCaching

Goal: Make your web site fast Goal: Make your web site fast Minimize work per request in order to increase Minimize work per request in order to increase performance for Internet scaleperformance for Internet scale

Respect permissions and personalizationRespect permissions and personalization

Two main types of cachingTwo main types of cachingNo execution of the web pageNo execution of the web page

Page output cache, disk-based cachePage output cache, disk-based cache

Reduction of number of database round tripsReduction of number of database round tripsPage item cache, navigation node cache, list query Page item cache, navigation node cache, list query cache cache (cross list, single list)(cross list, single list)

Internet sites will focus on the first typeInternet sites will focus on the first type

Page Output CachePage Output Cache

Serves cached versions of HTML output of Serves cached versions of HTML output of page to userspage to users

Cache one version of the page for each “bucket” Cache one version of the page for each “bucket” of users with unique permissions on the siteof users with unique permissions on the site

Cache is in-memoryCache is in-memory

Most efficient when most users have the Most efficient when most users have the same rights on the sitesame rights on the site

Anonymous users are all in one bucketAnonymous users are all in one bucket

Cache

Request

Master PageNavigation

Page ContentData-Driven

Views

Configuring Output CachingConfiguring Output Caching

Cache Profiles – “How long should things Cache Profiles – “How long should things be held in the cache”?be held in the cache”?

Centrally defined, change in one place takes Centrally defined, change in one place takes effect across site collection instantlyeffect across site collection instantly

Can apply to sites and to page layouts Can apply to sites and to page layouts separately separately

Separate profiles for anonymous users versus Separate profiles for anonymous users versus authenticated usersauthenticated users

Cache Policy – “What profiles can be Cache Policy – “What profiles can be used where?”used where?”

Allow or disallow owners of sites and page Allow or disallow owners of sites and page layouts to choose a “cache profile” of their own layouts to choose a “cache profile” of their own

Centrally controlled per site collectionCentrally controlled per site collection

Cache Logo.jpgGradient.gifStyles.cssScript.js

Disk-Based CachingDisk-Based Caching

Caches page resources on web front-end Caches page resources on web front-end servers for serving to usersservers for serving to users

Images, .css, .js files are retrieved from the database Images, .css, .js files are retrieved from the database once, once, and stored on disk on the web front endand stored on disk on the web front end

Further requests are served from the cache, trimmed Further requests are served from the cache, trimmed based based on securityon security

Configurable: Place on disk to cache, # of megabytes on Configurable: Place on disk to cache, # of megabytes on disk, disk, file extensions to supportfile extensions to support

Call To ActionCall To Action

Install And Use Beta 2Install And Use Beta 2Give Us FeedbackGive Us Feedback

http://blogs.msdn.com/ecmhttp://blogs.msdn.com/ecm

Chalk Talks In The TLCChalk Talks In The TLCThursday 9:45 – 11:00 AMThursday 9:45 – 11:00 AMThursday 2:45 – 4:00 PMThursday 2:45 – 4:00 PM

Related SessionsRelated SessionsOFC216OFC216 Using the Web Content Management Features Using the Web Content Management Features of Microsoft Office SharePoint Server 2007 to Build Great of Microsoft Office SharePoint Server 2007 to Build Great Looking SitesLooking Sites

Catch it on the DVDCatch it on the DVD

OFC329OFC329 Migrating Your Content Management Server Migrating Your Content Management Server 2002 Web Sites to Microsoft Office SharePoint Server 2002 Web Sites to Microsoft Office SharePoint Server 2007 259 AB 2007 259 AB

Thursday 1:00 – 2:15Thursday 1:00 – 2:15

ResourcesResourcesTechnical Chats and Webcastshttp://www.microsoft.com/communities/chats/default.mspx http://www.microsoft.com/usa/webcasts/default.asp

Microsoft Learning and Certificationhttp://www.microsoft.com/learning/default.mspx

MSDN & TechNet http://microsoft.com/msdnhttp://microsoft.com/technet

Virtual Labshttp://www.microsoft.com/technet/traincert/virtuallab/rms.mspx

Newsgroupshttp://communities2.microsoft.com/communities/newsgroups/en-us/default.aspx

Technical Community Siteshttp://www.microsoft.com/communities/default.mspx

User Groupshttp://www.microsoft.com/communities/usergroups/default.mspx

The 2007 Microsoft Office The 2007 Microsoft Office System System Clients. Servers. Clients. Servers. Solutions.Solutions.

Install Beta 2 today! Install Beta 2 today! It’s in your attendee bagIt’s in your attendee bag

Learn more at the Office System TLCLearn more at the Office System TLCDemo Stations / Hands-on-Labs / Chalk-talksDemo Stations / Hands-on-Labs / Chalk-talks

Get more informationGet more informationhttp://www.microsoft.com/office/preview/default.mspxhttp://msdn.microsoft.com/office/

TalkTalk

LabLab

DemoDemo

© 2006 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.

The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation.

MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.