Prepare the on-premises environment for the Business Connectivity Services hybrid scenario
Applies to: SharePoint Server 2013
Topic Last Modified: 2013-12-18
Summary: Learn how to prepare the on-premises account and security group to control access to an OData endpoint for the Business Connectivity Services (BCS) hybrid scenario.
|This documentation is preliminary and subject to change.|
To configure a hybrid SharePoint environment, you need a combination of expert skills and significant hands-on experience with SharePoint Server 2013, SharePoint Online, and related products and technologies. We recommend that you engage Microsoft Consulting Services to provide technical guidance and support during the design and deployment of your hybrid environment.|
For more information about Microsoft Consulting Services, see Microsoft Services.
This example of the Microsoft Business Connectivity Services (BCS) hybrid scenario shows you how to use standard Windows domain security to control access to the on-premises OData service endpoint. You configure one domain account with which to access the OData service endpoint, and one global security group for your federated user accounts. Then, you map the group to the account by using a Secure Store Service target application.
This is Step 1 in the Business Connectivity Services hybrid scenario deployment procedures.
Identify all the user accounts in your on-premises domain that need to use the BCS hybrid solution and make sure that they are federated accounts. You will add these accounts to a domain global security group later in this procedure.
In your on-premises domain, create a service account that will access the OData service endpoint. These procedures use an account named ODataAccount. For more information about how to create a domain-based account, see Create a New User Account in the Windows Server TechNet Library.
In your on-premises domain, create a global security group. These procedures use a group named ODataGroup. For more information about how to create a global security group, see Create a New Group in the Windows Server TechNet Library.
Add the accounts that you identified in step 1 to the ODataGroup. For more information about how to add users to a global security group, see Add a Member to a Group in the Windows Server TechNet Library.
|Link to Step 2 Create an on-premises Secure Store Service target application for the Business Connectivity Services hybrid scenario of the Business Connectivity Services hybrid scenario deployment procedures.|