If you have a SharePoint 2010 development environment setup in Windows 8 but you donâ€™t have Active Directory you can still configure User Profiles in your SharePoint server. The process is very painstaking so get a cup of coffee, roll up your sleeves and read with full attention!
Installing and configuring AD LDS
From the Windows features list, turn on Active Directory Lightweight Directory Services.
Before we proceed with the installation, we will need to create a couple of Windows accounts as we will be needing them later. Remember to uncheck â€œUser must change password at next logonâ€ and check â€œPassword never expiresâ€.
Once the installation is done, navigate to Administrative Tools and run the setup wizard.
Click Next to begin the installation of AD LDS. We will have to create a unique instance since we do not have an instance created.
We will have to provide a unique name for the instance and this name cannot contain any spaces.
The LDAP and SSL port number must be available and not used by any other application. Take a note of these port numbers because we will need them later.
Create an application directory partition with a proper partition name and then proceed to specify the locations to store the data.
Instead of using the default Network Service account, we will use one of the user accounts that we created earlier. When you click Next, you are prompted to run the account as a service, click Yes.
If you are logged in as the administrator, you can keep the default selection as the AD LDS Administrator otherwise you will have to specify an account with administrative privileges.
The last step is to decide which LDIF files to import. For SharePoint, and for AD LDS replication, we have to import the following files:
Once the setup is complete, fire the ADSI editor using the command adsiedit.msc. In the left panel, right click on ADSI Edit and select Connect To. Provide a friendly name for the connection and under Connection Point type in the partition name which we created earlier during the installation. Under Computer type in the server name in the format Full_Computer_Name:LDS_Port. If youâ€™re unsure about the full computer name, right click on My Computer to get it.
Click once on the connection name and then the naming container to get the following structure.
Right click on the container and create a new object of class type container with the value User.
Under the User container, we will add our SharePoint users. Right click on the User container, and create a new object of class User and enter the full name of the user. In my case its â€œSharePoint Test User 1â€. Right click on the user and select Reset Password.
Now we need set certain properties for the user which will be later imported into SharePoint User Profile. I suggest the following properties be updated with appropriate values:
- displayName: SharePoint Test User 1
- department: Information Technology
- msDS-UserAccountDisabled: FALSE
- msDS-UserDontExpirePassword: TRUE
- msDS-UserPasswordNotRequired: FALSE
- telephoneNumber: 01710000000
- title: Software Engineer
- userPrincipalName: sp1 (Cannot contain spaces)
Similarly, you can add other users as needed. Click on the Roles container and edit the member property of the Reader role. Add the second Windows account that we created earlier here. Remember to hit Apply in the properties dialogue.
Congratulations! Your AD LDS is now ready to be used with SharePoint! In Part 2 of this series we will create a new web application and configure Forms Based Authentication and connect it to AD LDS.