Friday, January 7, 2011

Expose SharePoint 2010 Central Administration out of the job server

We tried to access the central administration of a Test server(Windows 2008 R2, IIS 7.5) from a client machine by adding proper host entries and providing the right port number and we were able to access the central administration. But soon we realized that the hyperlinks end up in a ASP.NET authorization error.

After tweaking the following authorization settings IIS 7.5 admin console, we were able to expose the links

Open inetmgr and select ASP.NET Authorization

Expand the central administration node and Select the _admin node and you can see a "Deny" rule, remove the deny rule and add a "Allow" rule

Repeat the same for _vti_adm node

Do an IISReset and good to go, 

Even after this some buttons from the Ribbon were disable for e.g;,Create application, Extend application 

Switching off the User account control solves the issue, start -> search for UAC and do the following change

Instructions provided above relaxes the security on SharePoint Server and shouldn't be applied on test,stage or production servers.


No comments: