Hosting Multiple Domains on SBS 2003 (Part 3)
Well, you use UPN Suffixes.
UPN stands for User Principal Name, which is essentially a fancy computer-lingo'd way of saying: use your e-mail address to log in.
When you enable this, users will be able to go to the Remote Web Workplace and log in using their email address, instead of just their username. Might make it easier to give some users their email address instead of explaining the username versus email address idea.
How to set it up:
- Click on Start, Administrative Tools, Active Directory Domains and Trusts
- In the console that loads, right click on the root node called Active Directory Domains and Trusts and choose Properties
- Add your domain suffixes in in the format domain.com
Now your AD knows that it is the root domain controller responsible for these domains.
Close out this console and go back into Server Management. In the Users snap-in, we need to tell the AD what the primary suffix is for each user:
- Right-click a user and choose Properties
- On the Account tab, change the drop down box for the User logon name to be the suffix you want this user to have. Note it will add the '@' sign for you, if you see 2 '@' signs, you've done the first step wrong
- Choose OK for that user
You'll have to repeat this for all the users in your AD, but when you are finished, you can give your users an email address and a password, they won't need that funky "username".
It made life less confusing for my grandfather, that's for sure. :o)
One last thing. Since SBS shares the AD with all domains, you cannot have two aliases the same, so you should use combination usernames of first and last name, instead of just "dave" or "sean", otherwise user on domain1 might have the "cool" user name, while user on domain2 does not.
Read on to Part 4.
posted by Sean Daniel at
2:32 PM
13 Comments:
Hi,
This doesn't work for me. I've followed the instructions but get the message "The user name or password is incorrect. Verify that CAPS LOCK is not on, and then retype the current user name and password. If you receive this message again, contact your system administrator to ensure that you have the correct permissions to use the Remote Web Workplace." when using the email address. The standard user name still works fine.
Any ideas?
Thanks,
Andrew
By
Anonymous, at 11/22/2005 1:34 AM
Can you send me exact repro steps? It's hard to see what you did from just the error. thanks!
By
Sean Daniel, at 11/25/2005 11:58 AM
Hi,
Sorry about the delay.
Here's what I did - I followed all of the instructions in parts 1, 2 & 3 of this series. All of the steps made sense and seemed to work OK. Sorry, I know this doesn't give you anything new to go on.
I have user id - ABC
with email address - xyz@mydomain.com
On the Accounts tab the user logon name is ABC and the suffix set to @mydomain.com
I can logon the the SBS server with user id ABC and password. However, when I try to access remotely (www.mydomain.com/remote) I can again use the user id ABC and password but I can't use either xyz@mydomain.com or ABC@mydomain.com - I get the error detailed above.
So, any thoughts?
Thanks,
Andrew
By
Anonymous, at 12/20/2005 1:22 AM
Hi Andrew,
Can you log into https://www.mydomain.com/exchange using the ABC@mydomain.com (since that's the account tab you set)? That would help in troubleshooting the issue. thanks!
By
Sean Daniel, at 12/20/2005 8:31 AM
Same problem with me. Userid is FLastname. E-mail is First@domain.tld
I can only login with domain\userid or userid, not with any combination of e-mail address or userid@domain.tld.
I have restored everything back to normal. Might this be a problem with the userid being different than the e-mail address assigned?
--ALeghart
By
aleghart, at 1/24/2006 11:31 AM
I'm having a similar problem. I log into my domain as Josetta, but I can also log in (remotely) as Administrator to see/troubleshoot server issues. Now, when I want to post something to the companyweb, it says it was created by Administrator. How can I change that back to my personal login (Josetta)? I have logged off and back on, but that didn't seem to work. What's going on here?
By
Josetta, at 2/23/2006 11:13 AM
And you're 100% positive that the UPN is setup correctly? This seems strange to me.
By
Sean Daniel, at 2/23/2006 11:30 PM
Sean, no I'm not 100% positive, particularly since I'm not sure what the UPN is, but I will look into it. Thanks for the idea.
By
Josetta, at 2/24/2006 2:26 PM
hopefully you will keep us informed. The UPN information is above as part of the main post.
By
Sean Daniel, at 2/24/2006 5:42 PM
I set up everything properly for multiple web sites and everything works great but is there a way to set it so if a user types http://microsoft.com it goes to the website instead of typing http://www.microsoft.com
By
Rob, at 3/01/2006 11:43 AM
Sure! It's a DNS record setting that you set on with the folks who host the name servers of your domain. You simply say that no host goes to a certain IP address, and then that works. You'd have to contact your registrar for specific instructions on how to set this up, it's not a setting you make specifically to your SBS server.
By
Sean Daniel, at 3/01/2006 10:24 PM
Since I'm basically a year behind the times, I'm not sure you're going to get this. *crossing fingers*
I followed the steps you outlined here to create 3 websites on my SBS 2003 R2 server. It is a stand alone server out on my DMZ and it's only purpose is to host our 3 websites (3 different domains, one IP). I can hit all 3 sites so I know the host headers are correct. My problem is when I click on the site's description in the SharePoint Administrator I am prompted for a username & password. When I extended the site (FPSE 2002), I used the administrator account. That is the username & password I provide, but after 3 tries I get Error 401.1 - not authorized to view this page. Thus I cannot check or recalculate my server extensions. I created another administrator on the machine and used that username & password with the same results. If I'm typing in the password incorrectly then I've consistantly done it wrong at LEAST 50 times. Any suggestions?
By
Dusk, at 2/02/2007 7:01 AM
Hi Dusk,
First of all, you shouldn't put SBS in the DMZ (I'm surprised you have one). you should simply forward port 80 from your edge firewall to your internal SBS box.
Second of all, it sounds like you're trying to run SharePoint on all of these websites. Before you try externally, do these websites work internally? Are you sure in global admin that you've granted the local administrator access? Just because the admin created the site, doesn't mean the admin has access.
By
Sean Daniel, at 2/05/2007 8:12 AM
Post a Comment
<< Home