跨 SharePoint Server 伺服器陣列共用服務應用程式Share service applications across farms in SharePoint Server

摘要:描述在 SharePoint Server 2016 和 SharePoint 2013 中跨伺服器陣列共用服務應用程式相關的程序與警告。Summary: Describes the process and cautions that are involved in sharing service applications across farms in SharePoint Server 2016 and SharePoint 2013.

在 SharePoint Server 中,部分的服務應用程式可以跨伺服器陣列共用。In SharePoint Server, some service applications can be shared across server farms.

透過發佈服務應用程式,可以最佳化資源、避免冗餘,而且不需要安裝專用的企業伺服器陣列,就能在全企業中提供服務。可以在 SharePoint Server 伺服器陣列中發佈下列服務應用程式:By publishing a service application, you can optimize resources, avoid redundancy, and provide enterprise-wide services without installing a dedicated enterprise services farm. You can publish the following service applications in a SharePoint Server farm:

  • Business Data ConnectivityBusiness Data Connectivity

  • Machine TranslationMachine Translation

  • Managed MetadataManaged Metadata

  • User ProfileUser Profile

  • SearchSearch

  • Secure StoreSecure Store

此外,SharePoint 2013 伺服器陣列可以使用 SharePoint Server 2016 伺服器陣列中的服務,但 SharePoint Server 2016 伺服器陣列無法使用 SharePoint 2013 伺服器陣列中的服務。例如, 內容伺服器陣列可以存取 SharePoint Server 2016 伺服器陣列,但 SharePoint Server 2016 內容伺服器陣列無法存取 伺服器陣列。這可讓您升級多重伺服器陣列環境,其中會先升級裝載服務應用程式的伺服器陣列。在這個案例中, 伺服器陣列所體驗的服務應用程式和功能受限於 中可用的服務應用程式和功能。例如,SharePoint 2013 伺服器陣列無法使用 SharePoint Server 2016 伺服器陣列中的機器翻譯服務應用程式,不會受益於任何服務應用程式的新功能。Additionally, a SharePoint 2013 farm can consume services from a SharePoint Server 2016 farm but a SharePoint Server 2016 farm cannot consume services from a SharePoint 2013 farm. For example, a SharePoint 2013 content farm can access a SharePoint Server 2016 farm, but a SharePoint Server 2016 content farm cannot access a SharePoint 2013 farm. This allows for upgrade of multi-farm environments in which a farm hosting service applications is upgraded first. In this scenario, the service applications and features that the SharePoint 2013 farm experiences are limited to those that are available in SharePoint 2013. For example, a SharePoint 2013 farm cannot consume the Machine Translation service application from a SharePoint Server 2016 farm and does not benefit from new features of any service application.

重要事項:Important:

對於 SharePoint 2010 伺服器陣列與 SharePoint 2013 伺服器陣列之間可以共用服務和內容的時間有重大限制。內容類型整合使用 SharePoint Server 中的備份和還原機制,跨網站集合發佈內容類型。而在下列情況下,各種版本之間無法進行備份和還原:There are significant restrictions on when services and content can be shared between a SharePoint 2010 farm and a SharePoint 2013 farm. Content type syndication uses the backup and restore mechanism in SharePoint Server to publish the content types across site collections. And backup and restore does not work across versions in the following scenarios:

  • 在 SharePoint 2010 伺服器陣列與 SharePoint 2013 伺服器陣列之間Between a SharePoint 2010 farm and a SharePoint 2013 farm

  • 2013 伺服器陣列上處於 2010 模式的網站與 2013 伺服器陣列上處於 2013 模式的網站之間Between sites in 2010 mode on a 2013 farm and those in 2013 mode on a 2013 farm

若要了解如何使用這些限制,並在 SharePoint 2010 與 SharePoint 2013 伺服器陣列之間順利共用服務和內容,請瀏覽:如何升級使用內容類型整合的環境 (SharePoint Server 2013)To learn how to work with these restrictions and successfully share services and content between SharePoint 2010 and SharePoint 2013 farms go here: How to upgrade an environment that uses content type syndication (SharePoint Server 2013)

注意

若伺服器陣列分別位於不同網域之中,則 User Profile Service 應用程式會要求這兩個網域相互信任。為使 Business Data Connectivity Service 及 Secure Store Service 應用程式的管理功能可以在使用的伺服器陣列中運作,發佈伺服器陣列的網域必須信任使用伺服器陣列的網域。其他跨伺服器陣列的服務應用程式無需網域彼此信任即可運作。If the server farms are located in different domains, the User Profile service application requires both domains to trust one another. For the Business Data Connectivity service and Secure Store service application administration features to work from the consuming farm, the domain of the publishing farm must trust the domain of the consuming farm. Other cross-farm service applications work without a trust requirement between domains.

User Profile Service 必須和其支援的內容位於相同的資料中心上,因為 User Profile Service 應用程式與「我的網站」、小組網站和社群網站位於相同的位置,才能確保社交功能的效能。The User Profile service must reside in the same datacenter as the content it supports — The performance of social features require the User Profile service application to be located in the same datacenter as My Sites, team sites, and community sites.

如果伺服器陣列包含服務應用程式,並且可發佈服務應用程式,以便其他伺服器陣列可以使用此服務應用程式,這種伺服器陣列稱為「發佈伺服器陣列」。如果伺服器陣列連線至遠端位置,以便使用遠端位置上主控的服務應用程式,這種伺服器陣列稱為「耗用伺服器陣列」。The farm that contains the service application and publishes the service application so that other farms can consume the service application is known as the publishing farm. The farm that connects to a remote location to use a service application that the remote location is hosting is known as the consuming farm.

本文說明跨伺服器陣列發佈及消耗服務應用程式的所需步驟。這些步驟必須以所列順序執行。This article describes the steps that are required to publish and consume service applications across farms. These steps must be performed in the order listed.

  1. 交換伺服器陣列間的信任憑證。Exchange trust certificates between the farms.

    若要開始,消耗伺服器陣列管理員必須提供兩個信任憑證給發佈伺服器陣列管理員:根憑證與 Security Token Service (STS) 憑證。此外,發佈伺服器陣列管理員必須提供根憑證給耗用伺服器陣列管理員。透過交換憑證,每個伺服器陣列可以知道另一個伺服器陣列為可信任。To start, an administrator of the consuming farm must provide two trust certificates to the administrator of the publishing farm: a root certificate and a security token service (STS) certificate. Additionally, an administrator of the publishing farm must provide a root certificate to the administrator of the consuming farm. By exchanging certificates, each farm acknowledges that the other farm can be trusted.

    如需詳細資訊,請參閱<在 SharePoint Server 中交換伺服器陣列之間的信任憑證>。For more information, see Exchange trust certificates between farms in SharePoint Server.

  2. 在發佈伺服器陣列上,發佈服務應用程式。On the publishing farm, publish the service application.

    在服務應用程式所在的伺服器陣列上,管理員必須明確發佈服務應用程式。沒有明確發佈的伺服器應用程式僅可用於本機伺服器陣列。On the farm on which the service application is located, an administrator must explicitly publish the service application. Service applications that are not explicitly published are available to the local farm only.

    如需詳細資訊,請參閱<在 SharePoint Server 中發佈服務應用程式>。For more information, see Publish service applications in SharePoint Server.

  3. 在使用伺服器陣列上,將權限設為適當的服務應用程式On the consuming farm, set the permission to the appropriate service applications

    您必須將使用伺服器陣列權限授予發佈伺服器陣列上的 Application Discovery and Load Balancing Service Application。完成這項作業後,請將使用伺服器陣列權限授予要使用該權限的已發佈服務應用程式。You must give the consuming farm permission to the Application Discovery and Load Balancing Service Application on the publishing farm. After doing this, give the consuming farm permission to the published service applications that it will be consuming.

    如需詳細資訊,請參閱<在 SharePoint Server 中設定已發佈之服務應用程式的權限>。For more information, see Set permissions to published service applications in SharePoint Server.

  4. 在使用伺服器陣列上,連線至遠端服務應用程式。On the consuming farm, connect to the remote service application.

    在發佈伺服器陣列發佈服務應用程式後,如果知道特定的服務應用程式地址,耗用伺服器陣列管理員可以從耗用伺服器陣列連線至服務應用程式。After the publishing farm has published the service application, an administrator of the consuming farm can connect to that service application from the consuming farm if the address of the specific service application is known.

    如需詳細資訊,請參閱<在 SharePoint Server 中連線至遠端伺服器陣列上的服務應用程式>。For more information, see Connect to service applications on remote farms in SharePoint Server.

    重要

    除非您先在兩個網域之間建立網域層級信任,否則無法在分別位於網域中的伺服器陣列間,共用 User Profile Service 應用程式。You cannot share a User Profile service application across farms that reside in separate domains unless you first establish a domain-level trust between the two domains.

  5. 新增共用服務應用程式至耗用伺服器陣列上的 Web 應用程式 Proxy 群組。Add the shared service application to a Web application proxy group on the consuming farm.

    管理員必須將建立新服務應用程式連線與使用伺服器陣列上本機 Web 應用程式的關聯。只有設定為使用此關聯的 Web 應用程式才可以使用遠端服務應用程式。An administrator must associate the new service application connection with a local Web application on the consuming farm. Only Web applications that are configured to use this association can use the remote service application.

    如需如何設定 Web 應用程式 Proxy 群組連線的資訊,請參閱<從 SharePoint Server 的 Web 應用程式新增或移除服務應用程式連線>。For information about how to configure a Web application proxy group connection, see Add or remove service application connections from a web application in SharePoint Server.

    注意

    新增服務應用程式至 Proxy 群組之前,必須先規劃 Proxy 群組的版面配置,這一點很重要。It's important that you plan the proxy group layout before you add service applications to proxy groups.

  6. 設定發佈與耗用伺服器陣列之間的伺服器對伺服器驗證。Configure server-to-server authentication between the publishing and consuming farms.

    若要允許 Web 應用程式或應用程式服務代替使用者向其他伺服器陣列上的 Web 應用程式要求資源,您必須設定伺服器陣列之間的伺服器對伺服器驗證。如需詳細資訊,請參閱<設定發佈與耗用伺服器陣列之間的伺服器對伺服器驗證>。To allow a web application or an application service to request a resource from a web application on another farm on behalf of a user, you have to configure server-to-server authentication between the farms. For more information, see Configure server-to-server authentication between publishing and consuming farms.

    注意

    向其他伺服器陣列上之應用程式服務要求資源的 Web 應用程式或應用程式服務,不需要伺服器對伺服器驗證。Web applications or application services that request resources from an application service on another farm do not require server-to-server authentication.

另請參閱See also

其他資源Other Resources

如何升級使用內容類型整合的環境 (SharePoint Server 2013)How to upgrade an environment that uses content type syndication (SharePoint Server 2013)