HLOOV TSHIAB 12/18/07: Saib Paul Liebrand tshooj rau ib co kev zoo kev tshem tawm los yog modifying lub neej ntawd pab pawg npe (koj saib nws saib cov hauv qab no kom zoo).
Txheej txheem cej luam:
SharePoint ruaj ntseg yuav yooj yim rau configure thiab hwj. Txawm li cas los, nws muaj proven tsis yooj yim rau ib co sij hawm ua ntej thawj xibfwb qhwv tes puag ncig ntawd yeej. Tsis tas li ntawd, Kuv pom muaj ib co thawj xibfwb tuaj nkag siab rau hnub Zwj Hli xwb los tau ploj ntawm Friday vim lawv tsis tau ua lus configuration nyob rau lub sij hawm intervening zoo meej. (Kuv yuav coj tau qhov teeb meem no muaj kuv tus kheej lees). No nkag teb chaws blog hopefully qhia ib pab SharePoint ruaj ntseg primer thiab cov ntsiab lus ntawm ib co ruaj ntseg configuration qha.
Lus tseem ceeb:
Cov hauj lwm no yog xyuas los ntawm mus rau ntawm lub box SharePoint ruaj ntseg. Kuv tus kheej kev yog oriented NTXHUAB thaj tsam li no tej zaum yuav muaj ib co NTXHUAB tej khoom no, tab sis kuv ntseeg tias nws yuav yog rau WSS. Kuv cia siab tias leej twg pom cov lus kom raug los omissions yuav taw tes uas hauv cov lus los yog email rau kuv. Kuv mam li ua corrections rooj vag mus ceev.
Fundamentals:
Rau cov hom phiaj ntawm qhov txheej txheem cej luam, muaj plaub siv kev kom ruaj: cov neeg los ib pawg, securable khoom, tso cai ntxiv thiab tej ncaus.
Cov neeg thiab ib pawg cia rau:
- Cov neeg uas ib tug neeg: Rho tawm dhia daim keeb kwm los created hauv SharePoint.
- Tej pawg: Mapped ntawm lub directory los yog tsim nyob rau hauv SharePoint. Pawg no tus sau los ntawm cov neeg. Yog ntiaj teb no nyob rau hauv ib qhov chaw sau tej pawg. Lawv yeej ib txwm tsis "tied" muaj kev tawm tsam securable.
Securable khoom khis cia kom tsawg:
- Chaw
- Daim ntawv qiv
- Yam khoom ntawd npe thiab daim ntawv qiv
- Folders
- Ntau cov chaw BDC.
Muaj lwm yam khoom uas securable, tab sis, koj yuav tau daim duab.
Tso cai ntau ntau: Ib lub nras uas ntau / tej txoj cai uas tsis muaj kawm ntawv uas muaj tej yam li ua/nyeem/rho tawm nkag hauv lub npe.
Ncaus: Los ntawm cov chaw vim inherit cov chaw ruaj ntseg ntawm cov twj paj nruas uas muaj. Ncua lub chaw inherit txoj kev tsocai los ntawm nws niam nws txiv. Daim ntawv qiv ntawm lawv qhov chaw inherit. Hais txog thiab li ntawd.
Cov neeg siv thiab pawg txheeb securable khoom ntawm tso cai ntxiv thiab tej ncaus.
Cov tseem ceeb tshaj plaws Security cai To taub, Ever 🙂 :
- Pawg no cias collections ntawm cov neeg.
- Yog ntiaj teb no nyob rau hauv ib qhov chaw sau tej pawg (i.e. yog tsis muaj zoo li no uas yog ib cov lus sau tseg rau hauv ib qhov chaw tiaj).
- Pab pawg neeg lub npe tsis withstanding, pawg tsis, nyob rau hauv thiab ntawm lawv tus kheej, muaj tej tug theem ntawm kev ruaj ntseg.
- Pawg muaj kev ruaj ntseg hauv lub ntsiab lus teb ib securable hais kwv.
- Koj yuav cob cov qib sib txawv tso cai mus rau cov pab pawg neeg tib yam rau txhua txhua tus kwv securable.
- Web daim ntawv cai trump nov tag nrho (saib hauv qab).
Ruaj ntseg thawj xibfwb poob rau hauv lub hiav txwv los ntawm kev faib pab pawg neeg thiab cov neeg siv yeej ib txwm khi cov axioms los tswj thiab to taub txog cov kev ruaj ntseg configuration.
Hom Pitfalls:
- Pab pawg neeg cov npe yees tsi tso cai: Mus rau ntawm lub box, SharePoint nyiaj thiab lub sij txheej pawg uas lawv cov npe teev ib theem ntawm kev ruaj ntseg xam qhovkev. Xav txog rau pawg "Contributor". Ib qho txawv uas ruaj ntseg SharePoint yuav zoo saib ntawd lub npe thiab tias tias pawg neeg yuav "pab txhawb kev pov plob" mus rau lwm qhov chaw/sau/tsev qiv ntawv hauv lub portal. Uas tej zaum yuav muaj tseeb tiam sis tsis tau vim tias cov pab pawg neeg lub npe zoo li yuav tau "contributor". Qhov no tsuas mus rau ntawm lub box muaj tseeb vim hais tias cov pab pawg neeg tau muab daim ntawv tso cai npaum li uas lawv mus ntxiv/hloov/rho tawm kawm ntawm lub hauv paus kawm ntawv enables. Los ntawm ncaus, "contributors cov" pab pawg neeg kuj yuav ntxiv/hloov/rho tawm ntsiab lus ntawm txhua qhov chaw ncua. Ib tug yuav "tawg" qhov ncaus saw thiab pauv kev tso cai lawm ib ncua ntawm tej tus neeg ntawm qhov sib "Contributor" pab tsis tau pab txhawb txhua, tab sis, tsuas nyeem (Piv txwv). Qhov no yuav tsis muaj ib lub tswv yim zoo, obviously, vim nws yuav ruam heev tag.
- Pawg no tsis txhais ntawm ib qhov chaw tiaj. Nws yog ib qho yooj yim uas totaub los ntawm cov neeg interface. Microsoft muaj ib qhov txuas yooj yim rau cov neeg siv/pab pawg neeg tswj ntawm txhua qhov chaw tus "neeg thiab ib pawg" txuas. Nws yog ib qho yooj yim uas ntseeg tias thaum kuv tab tom kawm ntawv "xyzzy" thiab kuv tsim tau ib pab los ntawm xyzzy tus neeg thiab ib pawg txuas uas kuv twb nyuam qhuav yuav tsim cov ib pawg uas tsuas tshwm sim nyob xyzzy. Uas yog tsis tau hais. Kuv twb tau tsim ib pawg rau cov tseem kawm ntawv sau.
- Pawg koom tsis txawv ntawm qhov chaw (i.e. Nws yog ib yam qhov txhia chaw siv rau pawg): Xav txog cov pab pawg neeg "tswv" thiab ob qhov chaw, "HR" thiab "Logistics". Ces yuav tsis xav tias ob dua lwm cov neeg uas yuav muaj cov chaw — tus HR cov tswv tsev thiab tus tswv tsev Logistics. Tus neeg siv interface ua kom yooj yim rau ib tug neeg khiav dej num ruaj ntseg rau mishandle no scenario. Yog hais tias kuv tsis paub zoo, Kuv yuav nkag tau rau neeg thiab ib pawg txog ntawm tus HR chaw, xaiv "tswv lub" pab pawg neeg thiab ntxiv kuv HR tswv rau ntawd. Ib hlis tom qab, Logistics los ntawm kab. Kuv saib cov neeg thiab cov neeg nyob ua ke ntawm lub Logistics site, ntxiv rub tau "tswv lub" ib pab. Kuv pom tus HR tswv muaj thiab tshem nws, xav tias kuv yuav hle nws los ntawm tus tswv tsev rau lub Logistics site. qhov tseeb, Kuv yuav hle nws los ntawm tus tswv neeg ntiaj teb no. Hilarity ensues.
- Failing rau npe pawg raws li ib tug: "Approvers cov" ib pab neeg yog ib tug piv txwv zoo meej. Neeg no pab approve yuav zoo li cas? Lawv yuav pom tau tias qhov twg? Kuv yeej xav tsi neeg Logistics koom tau pom zoo HR cov ntaub ntawv? Tau kawg tsis. Yuav tsum rau npe pawg raws li lawv lub luag hauj lwm nyob rau hauv lub koom haum. Qhov no yuav pab txo kom tias cov kev pab yog muab ib theem tej kev tso cai rau ib qho securable kwv. Lub npe pawg raws cov luag hauj lwm intended. Nyob rau hauv tus HR/Logistics scenario dhau los, Kuv yuav tsum tau tsim ib pawg ob tug tshiab: "HR cov tswv" thiab "Logistics tswv" thiab cob cov paub tab paub xav tso cai ntau ntau rau neb thiab nyiaj yam tsawg kawg nkaus uas rau cov neeg siv cov ua lawv txoj hauj lwm.
Lwm yam chiv keeb uas pab tau:
- Web daim ntawv txoj cai gotcha tus: http://paulgalvin.spaces.live.com/blog/cns!1CC1EDB3DAA9B8AA!255.entry
- Clearinghouse for SharePoint ruaj ntseg: http://www.sharepointsecurity.com/
- Kev mus los ntawm Joel Oleson: http://blogs.msdn.com/joelo/archive/2007/08/23/sharepoint-security-and-compliance-resources.aspx
Yog hais tias koj twb ua nws qhov no kom deb deb:
Thov qhia rau kuv paub tias koj kev xav mentsis ntawm cov lus los sis email rau kuv. Yog koj paub lwm yam chiv keeb zoo, thov koj ua zoo li qub!