locked
SharePoint Intranet site as Internet and Extranet site RRS feed

  • Question

  • We are having our intranet as SharePoint site. What are the steps that we need to do inorder to make that an internet site and also as an extranet site.

    Can anyone please help me point in the right direction.

    Thanks for thr help.

     

     

    Tuesday, June 14, 2011 7:22 PM

Answers

  • The biggest issue is normally the licensing.  Take a look at the following for more infomratin on the licensing required:

    http://sharepoint.microsoft.com/en-us/buy/Pages/Licensing-Details.aspx

    Other than that you just need to make the sites addressable from the Internet.  Take a look at the Extranet Topology diagram that you can download from this page.  It provides the standard scenarios for how to make SharePoint accessible from the Internet:

    http://technet.microsoft.com/en-us/library/cc263199.aspx

     


    Paul Stork SharePoint Server MVP
    • Marked as answer by Wayne Fan Thursday, June 23, 2011 6:46 AM
    Tuesday, June 14, 2011 7:48 PM
  • Once you have the licensing done, you can do this.  Do also remember there is a different sku for external SharePoint then there is internal. I run www.sharelabs.org and www.sharepoint2010now.com both are external.  Some of the setup you are doing will depend on your firewall you are using.  SharePoint's internal IP address will be different from its external dns.  Also remember you will need a public name registered for external use and a live IP attached to it to make the site run.  The Name and IP sould be set on your external firewall, your firewall will then do what is called port forwarding to your backend SharePoint server.  When you do the SSL it can be resolved on the firewall or on the SharePoint box its your choice.  I think the firewall would be eaiser.  On the firewall in the forwarding settings you will point it at your Front End SharePoint box.

    The next question should be authencation vrs authorization.  Remember IIS does the authencation and SharePoint does the authorization.  Also you will now need to deside if you are going to use AD or claims to authencaticate with.  I will assume claims just for talking.  Claims has different flavors, I would normally choose FBA (Forms based Authencation).  Here you create a database in SQL using a MS utility and its default name is aspnetdb. This will hold your group and username with passwords.  You will have to turn on anonymous access (otherwise they can't get to the log in screen).

    Here is a good blog post on FBA

    http://blog.summitcloud.com/2009/11/forms-based-authentication-sharepoint-2010-fb/

    Good luck,

    Gary


    Gary Newman MCSE, MCT, CCNA MCDBA, MCAD, MCSA MCTS SharePoint 2007 Dev & Admin MCPD SharePoint 2010 Development
    • Marked as answer by Wayne Fan Thursday, June 23, 2011 6:46 AM
    Tuesday, June 14, 2011 8:01 PM

All replies

  • The biggest issue is normally the licensing.  Take a look at the following for more infomratin on the licensing required:

    http://sharepoint.microsoft.com/en-us/buy/Pages/Licensing-Details.aspx

    Other than that you just need to make the sites addressable from the Internet.  Take a look at the Extranet Topology diagram that you can download from this page.  It provides the standard scenarios for how to make SharePoint accessible from the Internet:

    http://technet.microsoft.com/en-us/library/cc263199.aspx

     


    Paul Stork SharePoint Server MVP
    • Marked as answer by Wayne Fan Thursday, June 23, 2011 6:46 AM
    Tuesday, June 14, 2011 7:48 PM
  • Once you have the licensing done, you can do this.  Do also remember there is a different sku for external SharePoint then there is internal. I run www.sharelabs.org and www.sharepoint2010now.com both are external.  Some of the setup you are doing will depend on your firewall you are using.  SharePoint's internal IP address will be different from its external dns.  Also remember you will need a public name registered for external use and a live IP attached to it to make the site run.  The Name and IP sould be set on your external firewall, your firewall will then do what is called port forwarding to your backend SharePoint server.  When you do the SSL it can be resolved on the firewall or on the SharePoint box its your choice.  I think the firewall would be eaiser.  On the firewall in the forwarding settings you will point it at your Front End SharePoint box.

    The next question should be authencation vrs authorization.  Remember IIS does the authencation and SharePoint does the authorization.  Also you will now need to deside if you are going to use AD or claims to authencaticate with.  I will assume claims just for talking.  Claims has different flavors, I would normally choose FBA (Forms based Authencation).  Here you create a database in SQL using a MS utility and its default name is aspnetdb. This will hold your group and username with passwords.  You will have to turn on anonymous access (otherwise they can't get to the log in screen).

    Here is a good blog post on FBA

    http://blog.summitcloud.com/2009/11/forms-based-authentication-sharepoint-2010-fb/

    Good luck,

    Gary


    Gary Newman MCSE, MCT, CCNA MCDBA, MCAD, MCSA MCTS SharePoint 2007 Dev & Admin MCPD SharePoint 2010 Development
    • Marked as answer by Wayne Fan Thursday, June 23, 2011 6:46 AM
    Tuesday, June 14, 2011 8:01 PM