我找不到導入的Active Directory用戶


1

我的DMZ中有一個Sharepoint 2013服務器(非域加入)。然後,我配置了從LAN到此DMZ服務器的Active Directory導入(這樣我們就可以使用域憑據連接到共享點站點)。

導入後,我可以在用戶配置文件服務應用程序中看到用戶配置文件-管理用戶配置文件。(例:)User Backup

現在,我想將此用戶添加到站點。當我轉到"網站設置"-"網站權限"-"授予權限"時,出現以下錯誤:

Add User Error

如何將用戶正確添加到我的網站?我真的希望你們中有人能幫助我。

編輯:我分享我的場景,所以更容易理解。

我的DMZ中有一個Sharepoint 2013服務器(非域加入)。然後,我配置了從LAN到此DMZ服務器的Active Directory導入(這樣我們就可以使用域憑據連接到共享點站點)。該服務器可從Internet訪問,並且該服務器的目標是為企業提供具有OneDrive功能的數據存儲。

1

Unfortunately, providing access to SharePoint OnPremise over the internet is not an easy job. Especially if you want to make it secure and user-friendly.

It is not enough just to get a profile in UserProfile Service. If you want to give access to a SharePoint site, a user must have an account in one of the following things:

  • Active Directory (Requires SharePoint to be domain-joined)
  • FBA Membership provider (Stores Users in SQL-Database or LDAP-Directory instead of AD - requires FBA-configuration. I say FBA is a false friend. It is easy to configure, but has a lot of drawbacks in everyday use)
  • ADFS Federation (Hard to configure)

Unfortunately you didn't describe your scenario, but this might be a solution for you:

  • Optional: Move your SharePoint-Server to your LAN if internal users must have access
  • Join it to your existing ActiveDirectory Domain. Manage your user-accounts there.
  • Publish your SharePoint-Site to the Internet with a reverse-proxy like WebApplicationProxy. WAP includes a proxy-role running in DMZ to achieve security and user-friendly login with a HTML-Form.