'404 Not Found' when trying to browse a newly published Managed Path in SharePoint when accessed using Storage Zones Controller SharePoint Connector

After publishing a new Managed Path in SharePoint, you may find that attempts to access this resource by using Storage Zones Controller SharePoint Connector fail. Upon closer inspection, the Storage Zone Controller log files may contain error messages similar to the following:

ERROR GetParent:: Exception thrown Message(The remote server returned an error: (404) Not Found.) StackTrace( at System.Net.HttpWebRequest.GetResponse()

at Microsoft.SharePoint.Client.SPWebRequestExecutor.Execute()

at Microsoft.SharePoint.Client.ClientContext.GetFormDigestInfoPrivate()

at Microsoft.SharePoint.Client.ClientContext.EnsureFormDigest()

at Microsoft.SharePoint.Client.ClientContext.ExecuteQuery()

at SharePointConnector*Util.SharePointUtility.GetParent(ClientObject spItem))

Related:

  • No Related Posts

Indexing remote SharePoint documents (O365) using WebDAV

I need a solution

Folks,

Good afternoon. Does anyone know how to format Sharepoint URL online (O365) for DLP indexing (IDM) use?

I know and I already use Sharepoint on-premise WebDAV, but I can not do the same with O365 Sharepoint. I’ve read that Sharepoint’s O365 also uses WebDAV for drive mapping.

Has anyone done anything similar that might help?

Thanks!

0

Related:

  • No Related Posts

Favorite Folders and Files

To add a folder or file to your favorites, click the Star icon to the left of the folder or file name.

To view all of your Favorite Folders, click on the Favorites tab in the left navigation menu.

Items in this list can be organized by selecting the gray grips along the right edge of the row. Click and hold to drag to move the file or folder up or down.

Limitations

  • You cannot add a SharePoint folder that is a sub-site (ReadOnly) within your SharePoint Connectors menu.

Related:

  • No Related Posts

ASG | Maximum concurrent client connection limit of 2500 reached

I need a solution

Dear All,

  My customer have ASG S200-30-U500 and they use proxy type Explicit.

We found issue about sometime client access to internet slowly. after i have check eventlog we found message as below,

after i have check this message concern about license for client connection for U500 it have limit 2500

if reached 2500 Proxy will take queue for client access internet because customer config it.

and then i have check why client connection more than ever. We found they  have implement Office 365 OneDrive for Business.

please see Report from Reporter

before have request OneDrive

after implementation OneDrive

for imformation above it make client connection reached limit sizing of device.

My customer have question before extend about license.

They would like to know device can control usage of OneDrive & SharePoint by limited concurrent usage of it either connection or bandwidth.

Please  recommend

Best Regards,

Chakuttha R.

0

Related:

  • No Related Posts

Citrix Content Collaboration Connector SSO for Network Shares and SharePoint on‐prem

Summary of items

  1. SharePoint Configuration
  2. NetScaler (internal load balancer) Configuration
  3. Configure SplitDNS
  4. Configure Citrix Storage Zone
  5. AD Delegation
  6. Browsers

SharePoint Configuration

Set the SPN for the SharePoint service account

Note:

This is a standard SharePoint requirement which references the service account used during the installation of SharePoint itself). The service account used below is usually the one that SharePoint has been initially installed with.

  1. From any server, open CMD (elevate with account with the appropriate SharePoint rights)
  2. Type the following:

SetSPN -S HTTP/SharePoint domainserviceaccountname

SetSPN -S HTTP/SharePoint.domain.com domainserviceaccountname


Note:

KCD work is not required for the Network Connectors, this will be using NTLM.

SharePoint Configuration

  1. On the Central Administration page, under Quick Launch, click Security, and in the General Security section click Specify authentication providers.
  2. On the Authentication Providers page, select the zone for which you want to change authentication settings.
  3. On the Edit Authentication page, and in the Authentication Type section ensure this is set to Windows (selected by default).
  4. In the IIS Authentication Settings section, select Negotiate (Kerberos). Note: If you select Negotiate (Kerberos) you must perform additional steps to configure authentication (below).
  5. Click Save.

NetScaler (internal Load balancer) Configuration

The reason for this configuration is to split the to split the External and Internal traffic. Where AAA authentication is being used for external user authentication to Connectors, AAA is not a necessity for Internal use, especially where Web Access to Network shares/SharePoint SSO are required via web browsers.

Note:

AAA requires a NetScaler Enterprise and above license to use.

If the NetScaler wizard has been used to configure a storage zone, then you would typically see LBVIPs bound to a Content Switch, such as:

_SF_CS_ShareFile = External Content Switch

The External config would typically have:

  • 1 x Content Switch, with Policies, Responders, Callouts.
  • 3 x LBVIP’s
    • ShareFile Data LBVIP
    • Connectors LBVIP with AAA enabled
    • OPTIONS LBVIP.


Note:

If Web Access to Connectors are required then additional configuration is needed in addition to the wizard, which adds the OPTIONS LBVIP to the Content Switch. Please see this article in section “
Configure NetScaler for restricted zones or web access to Connectors ”.

Now we would need an additional configuration to route the internal traffic. This would typically be a Load Balancing virtual server (LBVIP) rather than a Content Switch. In this instruction we are going to:

  • Create the Server(s) – create a connection to all the storage zone controllers within a single Zone.
  • Create a Service Group – group the servers into a group
  • Create an LBVIP – create the Load Balancing virtual server

Create the Server(s)

  1. Log into the NetScaler and browse to:
  1. Click Add.
  2. Create a name eg SZ_Server.
  3. Input the IP Address of the Citrix storage zone controller
  4. Click Create.
  1. Repeat for all storage zone controllers.

Create a Service Group

  1. Log into the NetScaler and browse to:
  1. Click Add.
  2. Create a name eg SZ_Service_Group.
  3. Protocol: SSL
  4. Click OK.
  1. Click on Service Group Members.
  2. Select Server Based option then click on Select Server.
  1. Click the checkboxes on each of the storage zone controller servers and then click Select
  2. Enter Port*: 443.
  1. Click Create.
  2. Click OK to continue
  3. Click Done.

Create an LBVIP

  1. Log into the NetScaler and browse to:
  1. Click Add to create the storage zone LBVIP:
Name: SZ_LB_INTERNAL

Protocol: SSL

IP Address Type: IP Address (this should be internally accessible)
  1. Click OK.
  1. Under Services and Service Groups, click the Virtual Server Service Group Binding option
  2. Select the Service Group created earlier and click Bind.
  1. Click OK.
  2. Attach wildcard certificate.
  1. Click Bind.
  2. Click OK and Done.

Configure SplitDNS

Configure SplitDNS to resolve to the new Internal LBVIP (ie SZ_LB_INTERNAL), which is important as you need to direct traffic internally to the internal load balancing vserver created in the previous step. If this is done via Active Directory in your environment, here are some example below.

Configure DNS in AD

  1. Log into the Domain Controller and open dsa.msc.
  2. Browse to Forward Lookup Zones to find the one which correlates to the StorageZone FQDN (sz.company.com)
  3. Add a New Host (A or AAAA)… and enter the FQDN for the StorageZone.
  4. Enter the IP, this should be the one of the Internal LBVIP (i.e. SZ_LB_INTERNAL) created in the previous section
  5. To test, open CMD from another desktop/server, run ipconfig/flushdns and ping the StorageZone FQDN. Does it resolve to the correct IP?

Configure Citrix Storage Zone

StorageZone Controller IIS changes

Network Connectors only:

  1. Log onto the StorageZone Controller(s) and open IIS.
  2. Click on the Default web site then to the CIFS virtual directory.
  3. Click on Authentication, then ensure Anonymous and Windows Authentication are Enabled.
  4. Right-click on the Windows Authentication option and select Providers.
  5. Highlight NTLM and Move Up to the top of the list. Click OK.
  6. Ensure Basic Authentication is set to Disabled.

SharePoint KCD only or either with Network Connectors:

  1. Click on the CIFS virtual directory, then on Authentication.
  2. Ensure Anonymous and Windows Authentication are Enabled.
  3. Right-click on the Windows Authentication option and select Providers.
  4. Highlight Negotiate and Move Up to the top of the list. Click OK.
  5. Repeat for the SP virtual directory.
  6. Ensure Basic Authentication are Disabled on both.

If using port 80 on your StorageZone Controller for Load Balancing communication, refer to the AD Delegation section.

  1. If using port 443, then on the StorageZone Controller, then right-click the Default Web Site and select Edit Bindings.
  2. Add a new binding on port 443, assign the IP address, and insert a host header (just the first part of your storage zone FQDN, i.e. where FQDN=sz.company.com, then input only sz in the hostheader).

AD Delegation

Changes might need to be actioned on the SZC AD object(s), and all the servers used for Network Shares and SharePoint need to be added.

Example:

Note:

Ensure that any File servers hosting any Network Shares, are added to the delegation as CIFS.

Ensure any SharePoint servers that need to be accessed, are also entered as HTTP.

Browsers

Internet Explorer

  1. Open Internet Options, Security, Local Intranet, Sites, Advanced then enter the following:
Citrix Content Collaboration URL – e.g.: subdomain.sharefile.com

FQDN StorageZone – e.g.: sz.company.com

FQDN of AAAVIP – e.g.: aaavip.company.com

Note: If this is locked down, configure via GPO which will be actioned on the User Configuration.
  1. Open GPMC and select the GPO controlling the behaviour of IE.
  2. Browse to Computer Configuration/Administrative Templates/System/Group Policy and Enabled the policy Configure user group policy loopback processing mode and select Replace.
  3. Then browse to User Configuration/Administrative Templates/Windows Components/Internet Explorer/Internet Control Panel/Security Page and edit the Site to Zone Assignment List as follows:
Note: The number in the Value field denotes the number of the zone. MS breaks them down as follows:

1 – Intranet zone – sites on your local network.

2 – Trusted Sites zone – sites that have been added to your trusted sites.

3 – Internet zone – sites that are on the Internet.

4 – Restricted Sites zone – sites that have been specifically added to your restricted sites.
  1. For external IE browsers, extra configuration is required as follows:
Click on the Internet/Custom Level and ensure that:
  • Miscellaneous/Access data sources across domains is Enabled.
  • User Authentication/Log on/Prompt for Username and Password is selected.
  1. Click OK twice.

Firefox

  1. Launch Firefox. In the Address Bar, instead of typing a URL, enter: about:config
This opens the configuration interface. You may need to agree to a security warning in order to proceed.
  1. Double-click the line labelled automatic-ntlm-auth.trusted-uris and enter the following:
ShareFile site – subdomain.sharefile.com

FQDN StorageZone – sz.company.com

FQDN of AAAVIP – aaavip.company.com

Note: Separate individual URLs with commas, but do not put spaces between them, for example:

subdomain.sharefile.com, sz.company.com

  1. Click OK when you’re finished.
  2. Double-click the line labelled negotiate-auth.trusted-uris.
  3. Enter the same information you entered in step 2 with the URLs separated by commas and with no spaces.
  4. Click OK.

Chrome

This should work. CORS should be enabled by default on Chrome but you can add the plugin to Chrome here .

Related:

  • No Related Posts

Why Integration Matters for Creating Productivity Hubs with Exceptional Worker Experiences

EMC logo


The trends in productivity tools,
improved connectivity, changing work culture and worker expectations have led many organizations to rethink their technology investments. Most enterprises, even those in highly regulated industries (financial and life sciences sectors), have reduced their data center footprint. They’ve moved workloads to the cloud, virtualized desktops, adopted SaaS-based solutions, increased BYOD support and provided flexibility for their workforce to work from anywhere. So, what’s missing? A connected worker experience across enterprise applications – one that’s worker obsessed and totally focused on workforce productivity and sentiment.

Bring Enterprise Applications Together Into a Cohesive Worker Experience

Enterprise applications aren’t going away, they’re at the heart of the business and will remain so. That doesn’t mean they should operate in silos. Organizations have a variety of business applications and IT solutions that all too often fall short on worker experience.  Examples of these apps and solutions include:

Typical enterprise apps used by business workers:

  • Payroll apps such as ADP or Paychex
  • HR services powered by Workday, Kronos or Oracle ERP Cloud
  • CRM by Salesforce or Microsoft Dynamics
  • Travel & Expense via SAP Concur
  • ITSM is delivered through ServiceNow or BMC Remedy
  • Collaboration/productivity apps by Microsoft O365, Slack or Google G-Suite

Enterprise platforms used by IT departments:

  • Amazon Web Services or Microsoft Azure hosting servers and custom apps
  • VMware or Hyper-V for virtualization and cloud infrastructure
  • VMware AirWatch or Citrix XenMobile for device management and mobile apps
  • Pivotal Cloud Foundry, Docker, Kubernetes, and others for modernizing legacy apps using microservices architectures

Once enterprise workloads have been containerized, deployed in the cloud and workers are able to use any device and work from anywhere, is this the end game? Of course not, the journey never ends. Adopting purpose-built SaaS solutions have led to newer challenges around business process automation, workflow and integration. It’s resulted in multiple interfaces, security requirements and disconnected worker experiences.

Many corporate intranets and portals either provide a collection of links to other applications or embed content from external sources – neither of which provide an engaging worker experience. Why is that so? The problem is that links take the workers to other locations rather than allowing them to have a cohesive experience within a single portal. Given that content often lives in multiple repositories managed by different vendors, searching or even browsing seamlessly to access the right information is a challenge. It becomes a spaghetti space that is frustrating and time consuming for the workforce. The solution is a unified Digital Workplace that collates information from multiple enterprise applications and provides the ability to perform actions without having to switch context.  This is the difference between a productive, engaging experience and one that simply frustrates the workforce.

Adopting purpose-built SaaS solutions have resulted in multiple interfaces, security requirements and disconnected worker experiences.

iPaaS Becomes the Enabler for Delivering More Productive Worker Experiences

Traditional EAI platforms such as WebSphere, Tibco, BizTalk etc., focused on integration and process automation at the data level and the emphasis wasn’t on the worker experience. The emphasis was on batch processing, message queuing and transforming data between sending and receiving parties or systems. However, these integrations were often complex and expensive deployments requiring specialized skillsets and infrastructure. Depending on the systems, often additional adapters and/or scripting were required for full-scale integration.

The changing landscape of integration in the cloud-first world is no longer about batch processing, ETL jobs, EDI or XML formats. Modern enterprise systems support REST APIs and JSON for data interchange. Major vendors have realized the change – IBM Integration Bus, Microsoft Integration Services and Azure Logic Apps aim to address the integration needs in the cloud. However, the complexities of deployment and challenges around worker experience still exists.

While holistic transaction-focused middleware might still make sense for certain scenarios, the new breed of integration-platform-as-a-service (iPaaS) solutions offer lightweight, plug and play, low code/no code integration that is quick to deploy and easy to manage. Many provide graphical interfaces for orchestrating process automation that empowers knowledge workers with business acumen to create and manage workflows and automation. Dell Boomi has been the leader in the iPaaS space and other players such as Informatica, MuleSoft, SnapLogic etc., offer varying degrees of flexibility and niche feature sets. There’s a lot of consolidation happening in this area with major cloud solution providers such as Salesforce acquiring MuleSoft and Google taking over Apigee to bolster their iPaaS offering.

iPaaS solutions effectively tackle the cloud-to-cloud and on-premises integrations and enable drag-n-drop process automation. However, there is still a void in terms of a seamless, integrated worker experience. A combination of dashboard/portal framework, search engine and cloud-based collaboration tools – working in conjunction with an iPaaS solution forms the foundation to a comprehensive digital workplace and addresses the worker experience issue.

Digital Workplace Platforms Bring Together Enterprise Applications and Solutions for a Cohesive Personalized Experience

Platforms such as ServiceNow provide a flexible layout, navigation scheme, built-in search engine and widgets-based rendering of external content. SharePoint and Office 365 provide all the above stated capabilities, along with additional collaboration, document management, social features, AI/ML based suggestions and native integration with the Office Suite. These platforms, combined with personas and robust worker profiles as key enablers, can be leveraged to integrate with other enterprise systems either via point-to-point integration or through an iPaaS platform to deliver an integrated digital workplace solution.

Productivity Hubs in the Real-world

Slack is another notable example that has combined the collaboration and communication needs into a single chat-based interface. Slack has pioneered the use of bot frameworks to enable integration and submitting actions to other applications without having to leave the Slack channels. For example, it allows workers to schedule a WebEx meeting, book flights or submit expenses in Concur, track projects issues in Jira etc., all within the Slack interface. There’s a bot for everything and the catalog keeps growing.

For organizations already invested in Microsoft technologies, Microsoft Teams offer similar advantages as Slack by providing a consistent worker experience by natively integrating with Exchange, SharePoint Online, OneDrive, Yammer, Office etc. Workers can leverage persistent chat to connect with colleagues, schedule meetings, share screens and collaborate on documents – all within a modern interface. With PowerApps and Flow integration and new features such as support for application pages, rendering SharePoint web parts etc., Teams is truly becoming the productivity hub of choice. Bots and apps frameworks also enable integration with virtual assistants such as Alexa or Cortana for voice-based command execution and will likely support IoT integrations soon.

While bots are great for point-to-point integrations and for performing micro actions within Slack or Teams, advanced workflow automation involving transactions on multiple enterprise applications and decision tree algorithms, can be implemented by leveraging an iPaaS solution such as Dell Boomi. To the right is a conceptual architecture for a digital workplace implementation leveraging industry leading enterprise solutions.

Help the Workforce Realize Their Full Potential

Dell EMC Consulting is a thought leader in Digital Workplace.  We’ve helped organizations transform their worker experiences with modern intranets and collaboration tools by integrating with enterprise applications to deliver consumer grade, personalized hubs and experiences.

We start by engaging with workers and IT stakeholders to:

  • Understand needs and current pain points
  • Identify key personas, journeys and required capabilities
  • Assess the current IT landscape and existing investments
  • Conduct workshops with sponsors and stakeholders to establish a vision
  • Present the technical approach and roadmap to realize the vision
  • Prioritize use cases and formalize program workstreams
  • Design and implement projects to modernize applications and integrate enterprise systems
  • Collaborate with corporate communications on adoption and change management for driving adoption of modern digital workplaces

Looking to modernize your workers’ experiences? Comment below to start the conversation, or contact Dell EMC Sales to learn how our Consulting Services can help.

The post Why Integration Matters for Creating Productivity Hubs with Exceptional Worker Experiences appeared first on InFocus Blog | Dell EMC Services.


Update your feed preferences


   

   


   


   

submit to reddit
   

Related:

  • No Related Posts

SharePoint Online Data Protection: Why It’s Needed Now

EMC logo


Your SharePoint Online data is at risk, despite Microsoft being secure, reliable, and providing a robust uptime SLA.

Microsoft protects against data loss due to infrastructure failures or malicious actions on their side, however, Microsoft cannot adequately protect you against human error or malicious acts on your side. [Read Part 1 and Part 2 of this series for more background.]

The same risks for data loss due to accidental or malicious deletions apply to SharePoint Online content associated in Sites, OneDrive, Groups, and Teams. The native protections Microsoft offers don’t meet the need for fast, accurate recovery in those scenarios, as you’ll learn in part 3 of our Office 365 Data Protection series.

SharePoint Default Retention Times

As we saw in Part 1, folders for email default retention times can be perilously short. Likewise in SharePoint Online, OneDrive and other services that rely on SharePoint as a file store, the length of time that a deleted item is retained can vary based on several factors, but is never longer than 93 days.

When an item is deleted in SharePoint Online it is retained in the first stage recycle bin for 30 days. After 30 days, or after a user deletes the item from the first stage recycle bin, it moves to the Site Collection Recycle Bin where it sits for no more than 63 more days for a total of 93 days. If the user has the rights, they can also purge the item from the Second Stage Recycle bin effectively permanently deleting the item before the 93 days has elapsed.

Online Litigation Hold and In-Place Hold

eDiscovery and Litigation holds for data recovery are not the best approach. (Further, In-Place Hold is not currently available for Office 365.) Remember that litigation holds are part of a larger compliance policy and legal retention strategy for the enterprise. Litigation Hold is a business process. The business, with input from the legal team, should define the policy for legal holds.

If every item in a Site Collection is on hold, retention policies will not work on the schedules defined by the business. This could add new risks, because content that should have been destroyed on schedule will be discoverable in legal proceedings. Even if you use these features to preserve your organization’s data, it’s unlikely you’ll be able to rapidly and efficiently restore your data, which is the entire point of having a solid backup AND restore solution.

Use the Right Tool

Backup software for SharePoint Online meets different use cases than Litigation Hold or archive software. Backup software automatically makes a copy of SharePoint data and ensures it’s available so data can be rapidly returned to production in the event of data loss. Litigation Hold is a business process, and using it broadly or improperly for your Site Collections will add legal risk. Archive software provides long-term data retention for data that is no longer actively used.

When planning to rapidly recover from data loss due to accident or malicious acts, SharePoint admins should choose the right tool for the job — third-party backup and recovery software. The advantages are:

  • Backup data is stored in a different, secure location. Although Microsoft’s own data storage is secure, it’s a best practice to distribute risk by distributing the physical location of data stored in a backup. Ideally, the solution will ensure that data is protected at rest with 256-bit AES object-level encryption and in transit is with Secure Socket Layer (SSL) encryption.
  • Recovery is fast and easy. Compared to In-Place and Litigation Hold data recovery, a third-party backup tool automates much of the restore process. When business continuity is at stake, being able to recover lost data in minutes or hours is a much better option than needing days or weeks for recovery.
  • Site structure is preserved and can be recovered. Not all third-party backup and restore software can do this, but it’s vital to reduce recovery time for SharePoint Online admins.
  • A better approach to insider threats. If a malicious insider were to delete key elements of a Site Collection, or even an entire site, how long would it take you to recover? The manual effort needed when using Litigation Hold or archive tools for recovery make purpose-built backup and recovery software is a better approach.

Don’t wait until you experience data loss in SharePoint Online. Prepare now to rapidly restore content associated with Sites, OneDrive, Groups, and Teams  — see how much easier it can be when using Spanning Backup for Office 365.

Learn More About Spanning Backup for Office 365

Update your feed preferences


   

   


   


   

submit to reddit
   

Related:

  • No Related Posts

Citrix Files for Outlook: Connector Sharing

Files stored in Network Share or SharePoint locations may be shared via Citrix Files for Outlook. Once you have attached a file from a certain storage location, there are some limitations when attaching additional files from various storage locations.

Table Notes:

* Only files residing in the same zone can be shared in the same email. Outlook native files are uploaded to a user’s File Box which resides on the user’s default zone.

** Only files from same connector type (Network Share or SharePoint) on the same zone can be shared in the same email.

Location of Files Already Attached to Outlook Message

Outlook Native Attachment

Citrix-Managed Zone

Customer-Managed Zone

Restricted Zone

Connector (Network Share or SharePoint)

Subsequent Outlook Attachments

Outlook Native Attachment

✔*

✔*

✔*

X

Citrix-Managed Zone

✔*

✔*

✔*

X

X

Customer Managed Zone

✔*

✔*

✔*

✔*

X

Restricted Zone

✔*

X

X

X

Connector (Network Share or SharePoint)

X

X

X

X

✔**

Related:

  • No Related Posts