09 April, 2009

Limit SharePoint Designer to Certain Users

For this post, I am going to concentrate on using security permissions to limit access to SPD.

Below is a quick way to limit only certain users the ability to SPD.
-Out-of-the-box, users who have Full Control and Contribute security permissions can open SPD and make changes.
-Assuming you want only users with Full Control access to have access to SPD, the easiest way is to turn off access to the site from SPD for users under the Contribute permission level.
-Open the site
-Select Site Actions > Site Settings.
-Under the “Users and Permissions” group, click the “Advanced permissions” link.
-Select Settings > Permission Levels from the toolbar.
-Click on the Contribute link.
-Under Site Permissions, uncheck the “Use Remote Interfaces - Use SOAP, Web DAV, or SharePoint Designer interfaces to access the Web site.” option.
-Click OK

The issue with the above steps is now any user with Contribute access cannot use SPD. You may have some users who you still want access to SPD but do not want to give Full Control to. For that scenario, you could create a new permission level.

-Open the site
-Select Site Actions > Site Settings.
-Under the “Users and Permissions” group, click the “Advanced permissions” link.
-Select Settings > Permission Levels from the toolbar.
-Click on the Contribute link.
-Scroll to the bottom and click the “Copy Permission Level” button.
-For the Name, type in “Contribute (With SPD)” (without the quotes).
-For the Description, type in “Can view, add, update, and delete. With SPD support.” (without the quotes).
-Under Site Permissions, check the “Use Remote Interfaces - Use SOAP, Web DAV, or SharePoint Designer interfaces to access the Web site.” option.
-Click Create

Now the out-of-the-box Contribute permission level can contain all the users who need contribute access but no SPD. For those users you want to give SPD access to, they can be added to the “Contribute (With SPD)” group. One caveat is if you have other applications access the SharePoint web services for the site, they will no longer work.

This web site has been configured to disallow editing with FrontPage. Contact your web site administrator for more information

To prevent users from changing a Windows SharePoint Services 3.0 site or a SharePoint Server 2007 site, disable the authoring feature in SharePoint Designer 2007 by editing the Onet.xml file. By default, the Onet.xml file for Windows SharePoint Services 3.0 and for SharePoint Server 2007 is in the following folder:
\Program Files\Common Files\Microsoft Shared\Web Server Extensions\12\TEMPLATE\SiteTemplates\\xml

Note: Replace the placeholder with the name of the Windows SharePoint Service that is installed on the server.

For example, if the English (United States) version of Windows SharePoint Services is installed on the server, the SharePoint Team Site site template is located in the following folder:
Drive:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\12\TEMPLATE\SiteTemplates\XML

To do this, follow these steps:
1.On the server that is running Windows SharePoint Services 3.0 or SharePoint Server 2007, locate the site template that you want to modify. Site templates are located in the following folders on the server:
-SharePoint Team Site: Drive:\Program Files\Common Files\Microsoft Shared\Web Server Extentsions\12\Template\SiteTemplates\XML.-Meeting Workspaces: Drive:\Program Files\Common Files\Microsoft Shared\Web Server Extentsions\12\SiteTemplates\MPS\XML

Note Replace the Drive placeholder with the drive where Windows is installed.

2.Right-click the Onet.xml file, click Open With, and then click Notepad.

3.Locate the Project Title tag, and then add the following line:

DisableWebDesignFeatures=wdfopensiteThen, click Save.
The complete Project Title tag is as follows:

4.Restart Internet Information Services (IIS). To do this, follow these steps:

-Click Start, click Run, type cmd, and then click OK.
-At the command prompt, type iisreset computer_name /restart, and then press ENTER.

Note: Replace the computer_name placeholder with the name of the computer that is running IIS.

After you follow these steps, users who try to open a site that is based on the site template that has the DisableWebDesignFeatures=wdfopensite attribute will receive the following message:
 

This web site has been configured to disallow editing with FrontPage. Contact your web site administrator for more information.
 

Warning: Do not edit a Windows SharePoint Services 3.0 site or a SharePoint Server 2007 site by using Microsoft Office FrontPage 2003. If you do this, you run a major risk of corrupting the site. Instead, always use SharePoint Designer 2007 to edit the site.

08 April, 2009

Server Error in '/' Application. The resource cannot be found.

Few Days before, in our project, we faced one issue while browsing the site. Don’t know, what gone wrong but got error message as mentioned below:-

Server Error in '/' Application.
HTTP 404. The resource you are looking for (or one of its dependencies) could have been removed, had its name changed, or is temporarily unavailable. Please review the following URL and make sure that it is spelled correctly
The resource cannot be found.

Even if you have activated the possibility to see errors and trace in SharePoint (Web application web.config --> callstack="true", customerror="off", debug="true") you won't have a precise indication of what ressource is missing.

How to troubleshoot this error message? Here is the answer...
There are two ways by which you can resolve this error message:-

Method: 1
Just right click your page and choose "view source"

Method: 2
Under the root path in IIS configuration, under "Home Directory"under the field "local path". "c:\inetpub\mywebsite\" is not the same as "c:\inetpub\mywebsite" apparently now.

My site came back alive as soon as I removed the trailing backslash so that the path now says "c:\inetpub\mywebsite"

If you have any queries/questions regarding the above mentioned information then please let me know. I would be more than happy to help you as well as resolves your issues, Thank you.

07 April, 2009

Error Scheduling Crawls: Access is Denied (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))

When you set up your SSPs one of the things you will come across is Crawl Scheduling. This comes under Search Settings and allows you to configure Incremental Crawls and Full Crawls to the frequency you would like. For example, Full crawl once a day, Incremental Crawl every 5 minutes of each day.

When we tried to set the schdule incremental crawl, we faced this error message. When we filled out all the information and tried to click on Ok.

When I hit Ok I received the error:
ACCESS is DENIED. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))

Resolution:-
To fix this you need to add the account WSS_WPG to the C:\Windows\Tasks folder on your Index server and apply modify rights.

If you cannot see the Security tab on the Tasks folder you need to open a command prompt and type is:
attrib -s %windir%\tasks

When you right click on the tasks folder having done this you should be able to see the Sharing & Security option.

To remove the option once you have applied the changes to the folder open command prompt again and type:
attrib +s %windir%\tasks

I hope the above steps helps you to resolve this issue. All the Best!

.swf Files Won't Play in IE7

Few days before, when i tried to put shockwave pages (.SWF files) in pageviewer webparts, it did not work. After doing some research and troubleshooting, i compare my two systems: one was using IE 6.0 and other was using IE 7.0

The .SWF files are working fine in the machine where IE 6.0 is present but the problem is with the IE 7.0. I understand this arises from a security "feature" in IE7 that blocks "Cross-Domain" shockwave objects.

I found there's a registry hack that disables this "feature."

Solution for this as mentioned below:-
Create a key named HKLM\Software\Microsoft\Internet Explorer\Main\Feature Control\FEATURE_BLOCK_LMZ_SCRIPT and add a REG_DWORD value to the key of 0 which should show up as 0x000000 (0)

Now my page views with .swfs in them work just fine.

Cheers!!!

Happy SharePoint to all of you…