Escolar Documentos
Profissional Documentos
Cultura Documentos
Ahead of Times
From inception to SharePoint Server 2010, the product has rightfully succeeded in
bringing advanced features which is coupled with enhanced platform requirements. The
reason to bring in this information on board and share among the masses is to make sure
that the product is being installed, deployed and supported under a controlled
environment so as to get the maximum return from the investment, which is sometime
neglected. So here goes The Best Practices- SharePoint 2010.
The Best Practices for SharePoint 2010 will cover basic and minimum requirements
guidelines, Database topology, SQL Server best practices to be followed, Physical
Architecture of the servers and virtualization support for SharePoint 2010.
www.diaspark.com/SharePoint 3
SharePoint Server 2010 - Technical Requirements
There has been a significant change in the SharePoint framework which is a 64
Bit environment only and there are enough reasons for the new version of the
SharePoint for being 64 Bit. The minimum RAM suggested by the SharePoint
team is 8GB with 80GB Hard Drive. SharePoint 2010 brings in an important
change It doesnt support single level domain names. The operating support is
Windows Server 2008 SP2/R2 64 Bit. There is a complete support for
virtualization of SharePoint 2010.
The reason for looking back at the minimum requirements, even after a long
release of the product itself is because all attributes may affect the migration,
upgrade and part of best practices to manage SharePoint 2010 environment.
Technical Requirements
Database
The SQL Server versions quoted below are best advised, including 80GB Hard
Drive of the SQL Server machine.
Few tips for SQL consideration would include - choosing right SQL Server
version and edition, plan for capacity, design and storage and finally Harden the
SQL Server.
How to harden the SQL Server:
Configure named instances of SQL Server to listen on a nonstandard port
Block UDP port 1434
www.diaspark.com/SharePoint 4
Block TCP port 1433
Configure SQL Server Client aliases on all front-end Web Servers and
application servers in the server farm.
It wont be fair to just add a pointer under Best Practices about capacity
planning. The whole question is how to arrive at an approximate capacity that a
content database can be designed for. The capacity can be arrived at by
determining the database size. Let us take a case in perspective keeping the
following as base.
Until a document is fully deleted from both the first stage and second
stage recycle bin, it occupies space in a content database
Audit data can quickly compound and use large amounts of space in a
content database, especially if view auditing is turned on
If Office web apps are being used, the office web apps cache can
significantly affect the size of a content database. Its Default value is 100
GB.
www.diaspark.com/SharePoint 5
Database size = ((D * V) * S) + (10KB *(L + (V * D)))
It is quite critical to give due importance to Capacity Planning for Service Application
Databases. SharePoint Search crawl should be 0.0.46*(sum of content databases). User
Profile database requires approximately 1MB per user. The new fabulous features of
SharePoint 2010 like Managed Metadata which is directly affected by the number of
content types and keywords used in the system, while Web Analytics is proportionate
to retention period, the daily volume of data being tracked, and the number of site
collections, sites and sub sites. Similarly for other features like Word Automation
Service and Performance Point Recommendation is to allocate 1 GB.
Storage Architecture
Direct Attach Storage (DAS) is a digital storage system that is directly attached
to a server or workstation, without a storage network in between. DAS physical
disk types include Serial Attached SCSI (SAS) and Serial Attached ATA (SATA)
Storage Area Network (SAN): SAN is an architecture to attach remote computer
storage devices (such as disk arrays and tape libraries) to servers in such a way
that the devices appear as locally attached to the operating system.
Network Attached Storage (NAS): A NAS unit is a self-contained computer
that is connected to a network. Its sole purpose is to supply file based data
storage services to other devices on the network.
Note: NAS is only supported for use with the content databases that are configured
to use remote BLOB storage. Any network storage architecture must respond to a
ping within 1 ms and must return the first byte of data within 20 ms.
Browser Support
It is interesting to know about the new Browser support. The products do not
support Internet Explorer 6.0 anymore. The support on windows operating system
is for IE7, IE8, and Firefox 3.X.
(More about Browser Planning in SharePoint 2010: http://technet.microsoft.com/
en-us/library/cc263526.aspx)
www.diaspark.com/SharePoint 6
SQL Server-Best Practices Guideline
One of the most important pillars while considering any Best Practices Guidelines is to
factor SQL Server and its components. Following are some important take away:
2. Enough headroom must be available for the databases and log files, plus
enough capacity to keep up the requests
4. Database servers should not be overloaded by using too many databases or data
Indices must be Defragmented and rebuilt daily, if users can absorb the
downtime required to rebuild
More than 25% disk space must be free.
Another instance of SQL must be created for data exceeding 5 TB.
When using SQL Server mirroring, more than 50 databases must not be
stored on a single physical instance of SQL Server
7
www.diaspark.com/SharePoint
5. Monitor the database server (Key performance counters to monitor)
Application Server
Each service represents a separate
application service and that can be
on a dedicated application server
Combined Crawl &
Services with similar usage and Query Servers
Other Application Server and Roles
Database Server
www.diaspark.com/SharePoint 8
SharePoint 2010 Security Best Practices
Security Consideration for a SharePoint 2010 site is little different than any
classic web application, though the purpose is same. The Important factor here
is to understand different accounts and the permissions associated with these
accounts. While the world is moving from hosted to shared or mixed
production environments, it becomes much more critical to tighten the
security.
There are various accounts which fall under SharePoint administrative and services
modules. A quick list is made available at the end of the document as Annexure*.
While two most critical Account types and associated permission is mentioned below.
This account is used to set up each server in the farm by running the
SharePoint Configuration Wizard, the initial Farm Creation Wizard and the
Windows Power Shell, with the following permission set:
9
www.diaspark.com/SharePoint
Farm Service Account or Database Account
The server farm account is the database access account and is used as the
application pool identity for Central Administration, and the process account for
the Microsoft SharePoint Foundation 2010 Timer service. Apart from having
domain user account permissions, on SQL Server following should be considered:
Fine-grained Permission
Best Practices guidelines always try to make a best match between Security and
Performance. Given below are few considerations for SharePoint 2010
environment, especially to avoid fine-grained permission:
Break permission inheritance as infrequently as possible
Groups based on directory membership must be used to assign
permissions
Recommendation: Use SharePoint groups to assign permission to sites,
instead use Domain groups.
Permissions should be assigned at the highest possible level
Documents that require fine-grained permission must be segregated
into different
document libraries
Different document publish level should be used to control access
www.diaspark.com/SharePoint 10
For non-document libraries (lists), ReadSecurity and WriteSecurity
permission levels must be used.
We must ensure that we do not have too many items at the same level
of hierarchy in the document libraries.
Event handlers must be used to control edit permission. We can have an
event handler that registers an event using the
SPEventReceivertype.ItemUpdating and
SPEventReceiverType.ItemUpdated methods, and then use code to
control whether the update should be allowed
AddToCurrentScopeOnly method can be utilized to assign Limited
Access membership within a SharePoint group
11
www.diaspark.com/SharePoint
PLAN UPGRADE
Upgrade your SharePoint V3 Environment
to Service Pack 2
Make sure you dont have any errors on
your current farm
8. Plan the downtime
Run pre-upgrade checkerand
andsend thefor
look communication to end users
potential issues the Environment and perform a test restore
9. Backup
Understand the the
10. During upgrade
upgrade approaches and perform any changes to farm
process, dont
choose one
11. After upgrade review the upgrade status page and resolve the issues f there
Prepare aaretest
anyfarm with actual content
databases and perform
12. Review the sitesthe trial
and subupgrade
sites after upgrade
Make sure you dont have any errors on Plan the downtime and send the
your current farm communication to end users
Run pre-upgrade checker and look for Backup the Environment and perform a
potential issues test restore
Understand the upgrade approaches and During the upgrade process dont
choose one perform any changes to farm
Prepare a test farm with actual content After upgrade review the upgrade status
databases and perform the trial upgrade page and resolve the issues f there are
any
Test Fabulous 40 templates separately Review the sites and sub sites after
before you proceed with the production upgrade
OR MIGRATE
upgrade Plan capacity for SharePoint 2010
environment
Plan the downtime and send the
communication to end users
Backup the Environment and perform a
test restore
During the upgrade process dont
perform any changes to farm
12 status
After upgrade review the upgrade
www.diaspark.com/SharePoint
page and resolve the issues f there are
any
Review the sites and sub sites after
Backup and Restore
Perform Backup and perform the test restore
Larger than 100 GB use differential backup solution, such as Microsoft SQL
Server 2005 or DPM 2010
www.diaspark.com/SharePoint 13
Virtualization Support
Support for SharePoint Server 2010 virtualization includes third-party virtualization
technologies that are hosted or hardware-based, and certified by Microsoft
As of now SVVP partners
CA Technologies
Cisco Systems, Inc.
Citrix Systems, Inc.
Hitachi, Ltd
Novell, Inc.
Oracle, USA Inc.
VMware Inc. Etc.
Note: Licensing of Windows Server, SharePoint and SQL Servers should not be
ignored
Post Installation
Development
Administrative
www.diaspark.com/SharePoint 14
Annexure- I
Account Purpose
SQL Server service The SQL Server service account is used to run SQL Server
account instance used for SharePoint
SharePoint Setup user The Setup user account is used to install SharePoint on
account Server and to run the SharePoint products and Configuration
Wizard.
Server farm account Act as the application pool identity for the SharePoint
or database access Central Administration Website & it also runs the Microsoft
account SharePoint Foundation Workflow Timer Service.
Service Application The application pool account is used for application pool
Pool Account identity for service application
SharePoint Server The SharePoint Server 2010 Search service account is used
Search Service as the service account for the SharePoint Server 2010 Search
account service
Default content The default content access account is used within a specific
access account service application to crawl content
Web application Pool The account will be used for any other web application
account
www.diaspark.com/SharePoint 15
Conclusion
Following Best Practices in any Solutions development has become like a Goes without Saying
step of the entire Development life cycle. Interestingly, it is more critical to understand and
design solution on any Server Technology Framework like SharePoint. The content covered in this
whitepaper is under win-win situation for a standard farm wide solution. Simple though critical
steps mentioned here should be taken and framed according to your requirements and actual
production and live environment. Further, Best Practices for different offerings under SharePoint
should be considered in depth if your solution is around Business Intelligence, or Content etc.
Review more on Best Practices Upgrade or Migrate to SharePoint 2010.
Chandrashekhar is Solutions Architect and a techno manager who brings more than 10 years of
experience working on various technologies and bringing transformation in IT with changing
landscapes into Diaspark s business verticals. Over the years, Chandrashekhar has engaged his
talent onto various platforms with hands on expertise over Microsoft technologies and various
domains like Education, Manufacturing, Health Care, BIFS and many more. He has been
developing and designing SharePoint based solutions from the very initial version of the product.
As an evangelist at the Microsoft Partners Academy he had been involved in framing integrated
Email, Business Collaboration, ERP, CRM etc. based solutions. In addition to his day-to-day work,
Chandrashekhar enjoys writing on varying SharePoint topics and has participated at numerous
technical conferences, such as Ignite 2013
www.diaspark.com/SharePoint 16
To know more about our offerings,
Contact
Read SharePoint Series
Rich Romanik
rich@diaspark.com Do You SharePoint?
Direct: 1.516.942.7098
Mobile: 1.917.365.8700
www.diaspark.com/SharePoint
2010 Diaspark Inc. This white paper is for informational purposes only. WE MAKE NO WARRANTIES,
EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS DOCUMENT.