驗證 Business Connectivity Services 混合式案例Validate the Business Connectivity Services hybrid scenario

摘要:運作如何驗證 Business Connectivity Services (BCS) 混合式方案。Summary: How to validate the Business Connectivity Services (BCS) hybrid solution is working.

既然您已建立外部清單或 SharePoint Online 中的 sharepoint 部署應用程式,您需要測試置於位置的安全性。將存取並操作外部資料的每一個帳戶必須具有三個屬性:Now that you have created an external list or deployed an app for SharePoint in SharePoint Online, you need to test the security you put in place. Every account that will be accessing and manipulating the external data must have three properties:

  • 必須擁有使用者或更大的權限的 SharePoint Online 網站的外部清單或應用程式的 SharePoint。It must have user or greater permissions to the SharePoint Online site and the external list or app for SharePoint.

  • 其必須為同盟的帳戶。It must be a federated account.

  • 其必須是您用來控制 OData 服務端點存取內部部署全域安全性群組的成員。例如,它必須是ODataGroup的成員。It must be a member of the on-premises global security group that you are using to control access to the OData service endpoint. For example, it must be a member of ODataGroup.

在此程序,您將會開啟 SharePoint Online 網站的外部清單或應用程式 for SharePoint 具有四個不同的帳戶。In this procedure, you will open the SharePoint Online site and the external list or app for SharePoint with four different accounts.

若要驗證 BCS 混合式安全性To validate security on the BCS hybrid

  1. 識別或建立一個帳戶每個如下表所列的帳戶類型。Identify or create one account for each of the account types listed in the following table.
帳戶Account 預期的結果Expected outcome 疑難排解步驟Troubleshooting step
帳戶的Account A
具有應用程式網站/清單權限。Has site/list/app permissions.
同盟。Is federated.
為內部部署的全域安全性群組 ( ODataGroup) 的成員。Is a member of the on-premises global security group ( ODataGroup).
顯示與可編輯的外部資料。External data displayed and editable.
如果外部資料不會顯示或無法加以編輯,請檢查網站權限、 您同盟設定與您的內部全域安全性群組; 的成員資格例如, ODataGroupIf the external data does not display or you cannot edit it, check the site permissions, your federation setup, and the membership of your on-premises global security group; for example, the ODataGroup.
帳戶 BAccount B
沒有應用程式網站/清單權限。Does not have site/list/app permissions.
同盟。Is federated.
為內部部署的全域安全性群組 ( ODataGroup) 的成員。Is a member of the on-premises global security group ( ODataGroup).
不顯示外部資料。External data does not display.
如果外部資料沒有顯示您可以編輯它,檢查應用程式網站/清單權限。If the external data does display and you can edit it, check the site/list/app permissions.
帳戶 CAccount C
具有應用程式網站/清單權限。Has site/list/app permissions.
非同盟 (為 Office 365 帳戶僅)。Is not federated (is an Office 365 account only).
無法新增至內部部署的全域安全性群組 ( ODataGroup)。Cannot be added to the on-premises global security group ( ODataGroup).
不顯示外部資料。External data does not display.
如果外部資料沒有顯示您可以編輯它,檢查您的同盟設定和您內部部署的全域安全性群組 ( Odata 群組) 的成員資格。If the external data does display and you can edit it, check your federation setup and membership of your on-premises global security group ( Odata Group).
帳戶 DAccount D
具有應用程式網站/清單權限。Has site/list/app permissions.
同盟。Is federated.
不是在內部部署的全域安全性群組 ( ODataGroup) 的成員。Is not a member of your on-premises global security group ( ODataGroup).
不顯示外部資料。External data does not display.
如果外部資料沒有顯示您可以編輯它,檢查您內部部署的全域安全性群組 ( ODataGroup) 的成員資格及過時準備 SharePoint 您 OData 服務端點設定您的權限設定Business Connectivity Services 混合式案例的線上環境If the external data does display and you can edit it, check the membership of your on-premises global security group ( ODataGroup) and the permissions that you set on the OData service endpoint that you configure in OBSOLETE Prepare the SharePoint Online environment for the Business Connectivity Services hybrid scenario
  1. 開啟 (使用私人中瀏覽盡可能) 開啟 sharepoint 包含外部清單或應用程式使用每個帳戶中的 SharePoint Online 網站。請務必完全登出並關閉瀏覽器中的傳來測試。Open (by using In-Private browsing if possible) the SharePoint Online site that contains the external list or app for SharePoint by using each of the accounts in turn. Be sure to completely log out and close your browser in between tests.

  2. 如果您沒有看到預期的結果,參照上表中的疑難排解步驟、 修正的問題,並重複所有的四個測試,直到達到預期的結果。If you don't see the expected outcome, refer to the troubleshooting step in the previous table, fix the issue, and repeat all four tests until you achieve the expected outcome.

如果您看到錯誤訊息:If you see the error message:

ResourceBudgetExceeded、 傳送調整流速的狀態碼。在 Microsoft.SharePoint.SPResourceTally.Check (Int32 值) 在 Microsoft.SharePoint.SPAggregateResourceTally.Check (SPResourceKind 種類,Int32 Exception=Microsoft.SharePoint.SPResourceBudgetExceededException: ResourceBudgetExceeded在 Microsoft.SharePoint.Client.SPClientServiceHost.OnBeginRequest() 值)ResourceBudgetExceeded, sending throttled status code. Exception=Microsoft.SharePoint.SPResourceBudgetExceededException: ResourceBudgetExceeded at Microsoft.SharePoint.SPResourceTally.Check(Int32 value) at Microsoft.SharePoint.SPAggregateResourceTally.Check(SPResourceKind kind, Int32 value) at Microsoft.SharePoint.Client.SPClientServiceHost.OnBeginRequest()

您也可以移除節流:You can either remove the throttling:

$webapp = Get-SPWebApplication -Identity http://<URL of your on-premises farm>
$rule = $webapp.AppResourceTrackingSettings.Rules.Get([Microsoft.SharePoint.SPResourceKind]::ClientServiceRequestDuration)
$rule.Remove()

或變更節流值:Or change the throttling value:

$webapp = Get-SPWebApplication -Identity http://<URL of your on-premises farm>
$webapp. AppResourceTrackingSettings.Rules.Add([Microsoft.SharePoint.SPResourceKind]::ClientServiceRequestDuration, 150000, 150000)
$webapp.AppResourceTrackingSettings.WindowCount = 10
$webapp.AppResourceTrackingSettings.WindowSize = [System.TimeSpan]::FromSeconds(30)
$webapp.Update()

其中最好不要小於 150000 表示 150 秒數。where the 150000 means 150 seconds.

另請參閱See also

概念Concepts

部署 sharepoint Business Connectivity Services 混合式解決方案Deploy a Business Connectivity Services hybrid solution in SharePoint