January 20th, 2005 by obts
From: “Joe” <email@example.com>
Subject: Extranet access with NT Domain
Date: Mon, 17 Jan 2005 17:53:09 -0800
We have Sharepoint Portal Server 2003 working for inside developers via our intranet on our NT domain.
Can we give access to our clients via the internet/browswer without making them members of our domain?
I see mention of an article about extranet access using Active Directory but does that mean our Domain Controller must be later than NT? It is currently NT though the Sharepoint “box” is on the same domain. Am I running Active Directory if I have Sharepoint Server on the
Win2K3 server box?
What is the easiest way for me to allow clients to get onto their project sites without allowing them full domain access and without allowing them access to other Sharepoint sites besides their own single project site?
Must I use ISA Server and SSL as the article presents or can I forego that?
From: “Steve Smith” <firstname.lastname@example.org>
Subject: Re: Extranet access with NT Domain
Date: Tue, 18 Jan 2005 21:05:00 -0000
Hi Joe , I will try and answer as many as possible.
Sharepoint is happy in an NT domain. If you want external users to gain access to sharepoint from the outside world without having domain accounts you will have to buy the Sharepoint external connector license ( about $ 30,000 I believe ? ) so therefore you may well find it financialy better to create a user account in your domain.
In order to publish the sharepoint server securely to the extranet / Internet you can use ISA server in Bridging mode along with Link Translation. You can find a guide on this on www.isaserver.org . I would also recommend that if you are going to do this then create another Virtual Server in IIS and extend it to your portal in Sharepoint central admin this way you can set Basic authentication with SSL on the IIS virtual server that the ISA server will send the requests to. Leave the default sharepoint virtual server on windows authentication.
You will also have to configure your alternate URL’s in sharepoint admin for the external address or your search results will not show https when searching from the external Virtual server.
In order to give your clients access to only certain sites use Site group permissions roles to give them the access only to the sites you wish in Sharepoint.
I hope this answers most of your questions