04 May, 2012

blocked file types-SharePoint 2010

File types can be blocked on a per Web application basis or globally.

The settings are made from the operations tab of the central administration web site.

Essentially it is a list of file extensions that are not allowed. SharePoint only checks the extension and then allows/disallows it.

So if you try to upload an exe file and find that it is blocked, you can change the extension to .doc and upload the file. Antivirus checks the file content and decides whether it is a .doc or .exe file.
The default list of disallowed file extensions is as follows:

ade, adp, app, asa, ashx, asmx, asp, bas, bat, cdx, cer, chm, class, cmd, com, cpl, crt, csh, dll, exe, fxp, hlp, hta, htr, htw, ida, idc, idq, ins, isp, its, jse, ksh, lnk, mad, maf, mag, mam, maq, mar, mas, mat, mau, mav, maw, mda, mdb, mde, mdt, mdw, mdz, msc, msi, msp, mst, ops, pcd, pif, prf, prg, printer, pst, reg, rem, scf, scr, sct, shb, shs, shtm, shtml, soap, stm, url, vb, vbe, vbs, wsc, wsf, wsh

What is a Farm Passphrase ?

The farm passphrase is a new security feature in SharePoint Foundation 2010. Similar to a password, it is created as part of the initial creation of a SharePoint farm (or as a part of upgrade). The passphrase is created during PSConfig portion of SharePoint installation. It is then only required for adding additional servers to the farm.

In addition to a somewhat added layer of security, the farm passphrases main function is that it is used to encrypt the credentials for the farm administrator and other “managed accounts.” Using the new managed accounts feature is optional and the details surround its use will be covered in detail in another module. Just Keep in mind that managed accounts are similar to traditional service accounts except they are managed by SharePoint. Because the credentials for these managed accounts can be encrypted by SharePoint, SharePoint also now has the capability to access account credentials and use them. For example when creating a new Web application, an administrator can select and associate a managed account to the Web application without having to know the password for that managed account. Using the encryption key created using the farm passphrase, SharePoint will be able to decrypt the credentials for any managed account. Administrators will thus potentially not have to know the passwords for any accounts managed by SharePoint, which can be a big plus in a least privileged security environment.

is it possible to set up Quota for Subsites in SharePoint 2010 ?


Site quota management is very important to control the resources in site collections. We all know that site quota can applied at the site collection level only in SharePoint Server 2007 but now the question: is it possible to set a storage quota on individual sub-sites within a site collection in SharePoint 2010?

The answer is: the same situation persists in SharePoint 2010 also. Quota templates are applied at the site collection level in SharePoint 2010 as well.

To know the complete details then please refer this: http://technet.microsoft.com/en-us/library/cc263223.aspx


Still if you wants to know how we can calculate the subsite storage then please let me know, Thank you

Site Collection Quotas


When you set a quota limit for storage, you can set two values: a warning value and a maximum value. When a site collection passes the warning limit, an e-mail message is sent to the site administrator and owner notifying them that their site collection is near to their storage quota. E-mail messages are sent daily until the storage level drops below the warning level. When a site collection meets the maximum limit, another e-mail message is sent to the owner and administrator, and no new content can be added to the site collection.
There are 2 important questions based on site quotas, such as:
How to manage quota template?
How to Change an existing quota template?

Let’s see and understand the complete process:
How to create a quota template
1.   Click Start, point to All Programs, point to Administrative Tools, and then click SharePoint Central Administration.

2.   On the Central Administration page, under Component Configuration, click Manage quotas and locks.

3.   On the Manage Quotas and Locks page, click Manage Quota Templates.

4.   On the Manage Quota Templates page, in the Template name area, select create a new quota template.

5.   In the Template to start from box, select a template to base your new template on.

6.   In the New template name box, type the name to use for your new quota template.

7.   In the Storage Limit Values section, select the Limit site storage to a maximum of: MB check box, and then type the amount of storage to allow at a maximum.

8.   Select the Send warning e-mail when site storage reaches MB check box, and then type the amount of storage to allow before sending a warning e-mail message.
9.   When you click OK, the new template is added to the list of available templates, and the page is refreshed.

How to Change an existing quota template?
1.   Click Start, point to All Programs, point to Administrative Tools, and then click SharePoint Central Administration.

2.   On the Central Administration page, under Component Configuration, click Manage quotas and locks.

3.   On the Manage Quotas and Locks page, click Manage Quota Templates.

4.   On the Manage Quota Templates page, in the Template name area, select edit an existing template.

5.   In the Template to modify box, select the quota template you want to change.

6.   Update the options you want to change, and then click OK.

7.   When you click OK, the template is updated, and the page is refreshed.

Please let me know in case of any further queries/questions regarding the above mentioned information. I would be more than happy to help you as well as resolves your issues, Thank you J J

03 May, 2012

Excel Services trusted file locations

How to add a file in excel trusted file locations:
1.   On the SharePoint Central Administration Web site home page
2.   In the Application Management section,
3.   Click Manage service applications.
4.   On the Manage service applications page
5.   Click the Excel Services service application that you want to configure.
6.   On the Manage Excel Services Application page
7.   Click Trusted File Locations.
8.   On the Excel Services Application Trusted File Locations page,
9.   Click Add Trusted File Location.

SharePoint 2010 Redirect Web Part

This is a sandbox web part for SharePoint 2010.

The web part will redirect a user to a given page if that user is effectively part of a SharePoint group. So If a user is in Active Directory group and the AD group is in the given SharePoint group, the user will be redirected.

Please use the following Link

http://sharepointredirect.codeplex.com/

what is a SharePoint redirect what part?The SharePoint redirect Web parts is a SharePoint 2010 sandbox solution. It gives you a Web parts that you can place on any SharePoint page. The web parts will automatically redirects the user to any specified page based on the user's membership to a SharePoint group whether this membership is a direct membership or an indirect membership.

A direct membership means that the user is directly added to the SharePoint group. An indirect membership means that the user for example belongs to an active directory group and that active directory group is part of the SharePoint group.

installation

This solution is simple. The only file you need is the WSP file. And the only access you need is to be a SharePoint site collection administrator.

Simply navigate to the site collection site settings page link like on solutions. Add a solution by selecting the WSP file. Then activate the solution. Once you do that browse to any page where you want and the Web part and try to insert a web part to the page. Under the custom Web part category you will see the Web part.

configuration

Configuring the web part is easy. Simply edit the web parts and you'll see three main fields to to use. The first one is the SharePoint group name. This is the group that the current user will be tested against and the user will be redirected based on whether they belong to that group or not. The second field is then redirect to page. This is the page to be redirected to event the user belongs to that SharePoint group. The last field is a status field which simply either makes the web part active or inactive.

Uses
This web part is very useful in any SharePoint environment. Espeically in hosted SharePoint environments where uploading server side code is not allowed.

01 May, 2012

Data Refresh Failed

When we use external data connections then the data connection file talks with the excel services by means of authentication. These authentications are of three types:
1.       Windows
2.       None
3.       SSO


In Windows authentication mode, Excel Services attempts to use the Windows identity of the user who is logged on when authenticating with the external data source.
 
In SSO option, The SSO service uses a centralized database to store authentication credentials. Excel Services uses the SSO application ID that is specified for the data connection to request the credentials when authenticating with the data source.
Now the options remains is NONE-Selecting None for the authentication mode in the Excel Services Authentication Settings dialog box causes Excel Services to assume that the connection string contains the user name and password needed to authenticate with the data source. If the connection string requires the use of integrated security, the Excel Services Unattended Account is used for authentication.

To use the None option, we need to have:
Configured the Unattended Account. Excel Services impersonates the Unattended Account when it tries to authenticate with a data source by using either no authentication setting (None), or single sign-on (SSO) when the SSO application is not storing Windows account credentials.

Where is this unattended account we need to specify?
Central Administration
Shared Service provider (SSP
Excel service settings
Unattended account.

Here is the screenshot regarding this: 


If you have any queries / questions regarding the above mentioned information then please let me know.
I would be more than happy to help you as well as resolves your issues, Thank you

30 April, 2012

Create a permission level

How to create a permission level in SharePoint 2010?
  1. Verify that you have one of the following administrative credentials:
· You are a member of the Administrators group for the site collection.
· You are a member of the Owners group for the site.
· You have the Manage Permissions permission.
  1. On the Site Settings page,
  2. Under Users and Permissions,
  3. Click Site permissions.
  4. In the Manage section of the ribbon
  5. Click Permission Levels.
  6. On the toolbar,
  7. Click Add a Permission Level.
  8. On the Add a Permission Level page, in the Name field, type a name for the new permission level.
  9. In the Description field, type a description of the new permission level.
  10. In the list of permissions, select the check boxes to add permissions to the permission level.
  11. Click Create.
That’s it and you are done J
If you have any queries regarding the above mentioned information then please let me know.
I would be more than happy to help you as well as resolves your issues, Thank you

Customize an existing permission level


If you wants to create custom permission level that is a replica or identical to an existing default permission level and you do not need to use the default permission level, you can customize the default permission level.

To customize an existing permission level
  1. Verify that you have one of the following administrative credentials:
·         You are a member of the Administrators group for the site collection.
·         You are a member of the Owners group for the site.
·         You have the Manage Permissions permission.
  1. On the Site Settings page, under Users and Permissions, click Site permissions.
  2. In the Manage section of the ribbon, click Permission Levels.
  3. In the list of permission levels, click the name of the permission level you want to customize.
  4. In the list of permissions, select or clear the check boxes to add permissions to or remove permissions from the permission level.
  5. Click Submit.
That’s it and you are done J J

If you have any queries/questions regarding the above mentioned information then please let me know. I would be more than happy to help you as well as resolves your issues, Thank you

29 April, 2012

Folder permission in sharepoint foundation 2010

If your site contains confidential data and you wants to restrict that data only for certain users and groups then this concept comes into the picture. For this, you need break permissions inheritance, and then edit permissions for the content on its own permissions page.
By default, all sub-sites, lists, and libraries within a site inherit permissions settings from whatever is directly above them in the site hierarchy. For example, a sub-site inherits permissions from the site above it. A list item inherits permissions from the list that it is in. A list inherits permissions from the site is on. In each of these cases, the content from which permissions are inherited is called the parent.
Here are the detailed steps:
1.     Open the list that you want to restrict access to.
2.     On the List Tools tab
3.     Click List to open the gallery of commands specific to the list.
4.     On the ribbon
5.     Click the List Permissions button.

The permissions page for the list opens, with a yellow status bar that explains that the list inherits permission from its parent site.
6.     Click the Stop Inheriting Permissions button.
Note: Now the list is disconnected from the parent site.

Two important things to note:
·         The list still has the same permission settings that it did before. But now, instead of inheriting permissions from the parent, it has its own copy of the parent’s permissions.
·         Changes that you make to the permissions settings for the parent site will not be inherited by this list.

Remove groups or users you don’t want
1.     In the Name section of the permissions page, select the checkboxes for the groups or users who should not have access to this list.
2.     Click Remove User Permissions.
The permissions page updates to show that the group or user no longer has permissions to the list.


Grant access to your Team members:
1. On the permissions page for the list, on the Edit tab, click the Grant Permissions button.
2. Type the name of the group or the individual you want to grant access to in the Users/Groups box.
3. Choose the level of permissions you want the group or individuals to have.
4. Click OK


That's it and You are done J J J