Thursday, December 16, 2010

PeoplePicker in SharePoint 2010

People Picker in SharePoint 2010


 

The people-picker is a SharePoint interface responsible for querying repositories for identities or groups in order to grant them permission in the SharePoint application. Site administrators and other users use the People Picker Web control to select people and groups when assigning permissions. There are two possible ways to add users, via the checkname or via the browse feature.

The checkname is the icon with a messenger guy and a checkmark :

The browse feature is the book icon:

How to configure SP2010 to resolve accountnames from other domain(s)


 

If there's a full 2-way Trust between the domains account name resolving should be ok by default.

If there's a one-way trust (or a two-way trust with selective authentication; you need to configure additional stuff

First, we set an encryption key (execute this on each server in the farm):

stsadm -o setapppassword -password ******

Second, we register all the domains that need to be searched for account names (this is done per Web Application, not per server)

stsadm -o setproperty -pn peoplepicker-searchadforests -pv "domain:domainB.local;domain:domainA.local,domainA\account,password" -url http://webapplication

Don't forget the " "

Example:

Stsadm –o setproperty –pn peoplepicker-searchadforests –pv "domain:msfthosting.local(source domain);domain:intra.e-office.com(domain you want to search in),e-office\!saTrust,xxxxx" –url https://premium.e-office.com

The account which is used for the domain you want to search in doesn't matter as long as it exists in the domain you want to search in

To check which value has been set for the PeoplePicker-searchadforests

stsadm -o getproperty -pn peoplepicker-searchadforests -url https://premium.e-office.com

Output should be:

<Property Exist="Yes" Value="domain:msfthosting.local;domain:intra.e-office.com,

e-office\!saTrust,*****" />PS C:\Users\admjgr>


 

If you want to remove the value which is defined for the peoplepicker-searchadforests

Stsadm –o setproperty –pn peoplepicker-searchadforests –pv "" -url "name of the URL"

Example: stsadm –o setproperty –pn peoplepicker-searchadforests –pv "" -url https://premium.e-office.com


 


 
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)