User Profile Sync Setup in SharePoint Server 2010 Beta

User Profile Sync Setup in SharePoint Server 2010 Beta

Rate This
  • Comments 20

This is how I setup user profile sync for SharePoint Server 2010 Beta on my machine. You should not take this as an official guide. But the steps may help if you have been drive crazy. :)

You should also check out TechNet article and the steps on our team blog first, they are more "official". And it's not come from "another MS guy in the wild" like me:)

[Update - we are considering to gather all information and put it back to TechNet article, could be video walkthrough, screenshots, and hope that could help. After that is done, i may remove the content here.]

The following steps in done on Windows Server 2008 R2. But it also applies to Windows Server 2008. The WCF fix for R2 and Win7 is not currently available to public but it will be released in coming days here.

  1. Start with a fresh SharePoint Farm installation, make sure WCF fix (Please refer to my pervious post) is already applied on the machine.
  2. A web application is already created at port 80. A site collection is also created.
  3. Don’t do anything on User Profile Service Application now…If you did, you may need to rebuild the farm. (am i kidding? no… this is beta.)
  4. Click System SettingsManage Services on server.
  5. Start Microsoft SharePoint Foundation User Code Service – this maybe not necessary, but I always do it first.
  6. If you are on Domain Controller, run the following script to make sure User Code Service has the right permission to run.
    $acl = Get-Acl HKLM:\System\CurrentControlSet\Control\ComputerName
    $person = [System.Security.Principal.NTAccount]"Users"
    $access = [System.Security.AccessControl.RegistryRights]::FullControl
    $inheritance = [System.Security.AccessControl.InheritanceFlags]"ContainerInherit, ObjectInherit"
    $propagation = [System.Security.AccessControl.PropagationFlags]::None
    $type = [System.Security.AccessControl.AccessControlType]::Allow
    $rule = New-Object System.Security.AccessControl.RegistryAccessRule($person, $access, $inheritance, $propagation, $type)
    $acl.AddAccessRule($rule)
    Set-Acl HKLM:\System\CurrentControlSet\Control\ComputerName $acl
  7. Start User Profile Synchronization Service. After you click the link, it should show something like this:
    snap0120
  8. Although the service is “Starting”, we can check the timer job if it is running properly. Click MonitoringCheck job status. Now you may find a job “ProfileSynchronizationSetupJob” is running. This may take several minutes to finish. If it finished instantly then something is wrong, you may have to rebuild it again.
    snap0119
  9. When it’s finished, the job will disappear from Running category. Now check Services again, user profile sync service should be “Started”.
    snap0121
  10. Time to setup connection! Click Application ManagementManage service applications. Scroll down to find and click User Profile Service Application. (Hint: you can copy the link to this item and add this to Resource links on Central Administration main page to save time in the future. You can do the same to Search and Managed Metadata.)
  11. It is possible that you get an empty status now. It’s okay.
    snap0122
  12. Click Configure Synchronization Connections.
  13. Oh – why I got this? “An error has occurred while accessing the SQL Server database or the SharePoint Server Search Service. If this is the first time you have seen this message, try again later. If this problem persists, contact your administrator.”
    snap0123
  14. Do a IISRESET in cmd line. Refresh the page,  problem solved.
    snap0124
  15. Now, click Create New Connection.
  16. Fill in your domain information. Choose the users or OU you want to import. Click Ok.
    snap0125  snap0126
  17. The connection you just created should be there. If not, you may need to rebuild. (I’m a bad guy, always telling you bad news.)
    snap0127
  18. Now go back to User Profile Service Application, the numbers should be shown on the side.
    snap0128
  19. You can choose to Start Profile Synchronization now. After some time, the number would change. It depends on the size of the OU you just chose.
    snap0129
  20. Click Manage User Profiles, and try to find a user. Yes, he is there!
    snap0130 

Jie Li

Technical Product Manager, SharePoint

Leave a Comment
  • Please add 2 and 8 and type the answer here:
  • Post
  • User Profile Service Configuration in SharePoint 2010

    sharepoint2010-ups.blogspot.com

  • Hello,

    Do steps 5 and 6 still apply to the non-beta version?

    We do not have a service named:  Microsoft SharePoint Foundation User Code Service  

    We are on a domain controller.

    Thanks!

  • I am doing a SharePoint user profile sync from AD, the process is working fine, from "Synchronization service manager" 2373 profiles were added.

    but only 9 were added to SharePoint.

    i checked AD and found that the 9 accounts have type "USER" and others have "inetOrgPerson". How can i add these marked as "inetOrgPerson" to SharePoint user profile??

    please advice

  • Great article sir!!

    but what about the Form Auth User? these users are from active directory. i want to view my fba form auth user profiles that contain i:0#.f|myprovidername|username. go manage user profiles then find profiles it shows the active directory user. but i want to LDAP fba user profiles. because when i set up FBA Using Ldap provider after login in site and click my profiles then it shows user not found error because fba auth user not sync with in the user profile database.

    so let me know sir how can i sync a LDAP fba user profile in user profile synchronization... Plz Help sir!!!

  • Since it is very naughty to set up SharePoint on a domain controller, I thought I'd offer up how I setup UPS on a non-domain controller:  thestacemeister.tumblr.com/.../configuring-user-profile-synchronization-service

Page 2 of 2 (20 items) 12