Chapter 3: Configuration and Operations
Published: February 28, 2008
This chapter describes the administrative tasks necessary to configure and manage the functional components of the External Collaboration Toolkit for SharePoint (ECTS). Configure ECTSThe following actions must be performed to configure the ECTS:
Create SharePoint Groups for Administrative FunctionsThe ECTS solution requires one new SharePoint group to control access to the User Management interface and, optionally, two additional groups that control access to User Creation Workflow and Site Creation Workflow approvals respectively. To create SharePoint groups:
The ECTS provides three different groups to control access so that larger organizations can delegate different operational tasks to different groups of people. For example, approval of external users might be controlled by a member of the partner management group, management of external users might be run by the help desk for password resets, and approvals for site creation could be managed by a system administrator who monitors the health and stability of the SharePoint components. In smaller organizations, it is likely that only a single small group of administrators will be responsible for all three operational tasks. After the groups are created, users or groups from the organization’s Active Directory domain should be added as members to the appropriate SharePoint groups. Add the Configuration Utility Web PartThe Configuration Utility Web Part can be added to any page of the SharePoint site, including, for example, the base URL of the collaboration Web application. If you followed the recommendation in the previous chapter, the base URL would be https://collab. To add the Configuration Utility Web Part to a page:
If you have Full Control permission on the SharePoint site, you can now use the Configuration Utility to configure the ECTS. Use the Configuration Utility to Configure the ECTSThe Configuration Utility Web Part allows you to set the following values that affect the behavior of the solution:
Create the ECTS Management PageThe three remaining administrative component Web Parts are typically installed on the same page, which becomes the Central Administration site for the ECTS solution. If, for example, you created a new collaboration site with the URL https://collab, you could create a new Web Part page by following these steps:
Add Management Web Parts to the ECTS Management PageDepending on the configuration of workflow for user and site creation, you will install the External User Approval and Site Collection Approval Web Parts using the same process as described for the Configuration Utility Web Part. Although it is not strictly necessary for the proper functioning of the ECTS solution, the External User Manager Web Part should be installed to simplify the processes for managing external user accounts. Create the ECTS Home PageThe ECTS solution provides useful tools to help internal users who lead collaboration projects with external users. These tools are provided as Web Parts that can be installed at any location on your site. A typical solution would be to create an ECTS Home page by following the same steps described to create the ECTS Management page. The major difference is that when you set permissions, you should grant permission to the Site Members group, and then all internal users who should be able to create and manage collaboration sites should be members of this group. After you create this page, you should add the Create Site Collection and Site Collection Manager Web Parts. You should provide the base URL for this page, for example https://collab/ECTS, to users in your organization who will use the ECTS solution. From this location the internal users can request new collaboration sites, see the status of pending site requests, and manage sites that are already operational. Administrative OperationsThe following procedures describe the operational processes for site collection creation and user account creation and management. Manage the Site Collection Creation ProcessInternal users use the Create Site Collection Web Part to initiate site collection provisioning in the collaboration SharePoint site. For more information about this component and instructions for how to use it, see Chapter 4, “User Guide.” There are two basic configurations that control how this process works. If site collection workflow is configured, all site requests must be approved by an administrator as described above. If site creation workflow is not configured, the site creation process will take place as soon as the user clicks Create Site on the Create Site Collection Web Part. Approve or Deny Site Collection RequestsWhen a site creation workflow process is initiated, the members of the Site Creation Workflow Approver group will be notified by e‑mail that a request needs to be approved or denied. The URL in the e‑mail message will be the Management URL that you set using the Configuration Utility. When the administrator browses to the management URL, they will see a list of site requests waiting for approval in the Site Collection Approval Web Part. Information presented to the administrator includes the relative site URL, the name of the requester, and any business justification provided by the requester. Under Action, click Approve or Deny to approve or deny the site request. The requester will be notified by e‑mail whether the request was approved or denied. Manage the External User Registration ProcessInternal users use the Add External User link on the People and Groups page to initiate external user registration in the collaboration SharePoint site. There are two basic configurations that control how this process works. If user account creation workflow is configured, all user registration requests must be approved by an administrator as described above. If user account creation workflow is not configured, the user registration process will take place as soon as the user clicks Click here to register the external user’s e‑mail address on the Add External Users Web page. Approve or Deny External User Registration RequestsWhen a user creation workflow process is initiated, the members of the User Account Creation Approver group will be notified by e‑mail that a request needs to be approved or denied. The URL in the e‑mail message will be the Management URL that you set using the Configuration Utility. When the user account approver browses to the management URL, they will see a list of accounts waiting for approval in the External User Approval Web Part. Information presented to the administrator includes the external user e‑mail address and the name of the requester. Click Approve User or Deny User to approve or deny the request. The requester will be notified by e‑mail whether the request was approved or denied. If the request is approved, the user will also be instructed on how to communicate specifics such as the new account password without violating good security practices. Manage External User AccountsCommon management operations for external user accounts are provided through the External User Manager Web part. Through this interface the following operations can be performed:
|
|