Follow me on Twitter @AntonioMaio2

Thursday, April 30, 2015

How to SHARE without POINTing Fingers: A Practical Guide to SharePoint Information Governance


Earlier this month, on April 16, I had the chance to give a session at SharePoint Tech Fest Dallas titled How to SHARE without POINTing Fingers: A Practical Guide to SharePoint Information Governance
 
It was the last session of the conference but we had a great turn out.  I want to thank everyone that attended and I enjoyed all the great questions posed at the end.  There were some requests for the presentation deck which can be found here: A Practical Guide to Information Governance in Microsoft SharePoint 2013.


 
Unfortunately I cannot share the demonstration given here, but if you'd like more information on that please reach out to me directly at antonio.maio @ protiviti.com.
 
Since that session I've posted another article on Information Governance that gives some SharePoint specific topics to focus on. I always like to say that having more information helps you to make better decisions.  That article can be found here:  Information Governance: Keeping it Practical and Where to Start.
 
Some of the main points raised during the presentation were:
  • Keep the process of creating an Information Governance Plan practical.  If a particular topic or set of questions from a governance plan template you've found or downloaded doesn't apply to your company then skip it.  Certainly consider those sections or templates, but be careful not to slow down or cripple the process by debating too much over specific sections.  If you're not sure about a section applying to your organization or not, then just park it and move onto the areas that definitely apply to your organization.  I like to keep in mind the adage that "Some information governance is better than no information governance"!


  • I recommend using a OneNote notebook within SharePoint with questions or questionnaires already listed or pre-populated.  I usually include a seperate section in my OneNote notebook for each of the following governance topics.  The topics used of course need to align with the business needs of the organization (again if a section doesn't make sense then remove it).
    • Overview on Information Governance and on the Process the Organization will follow
    • Operational and IT Management
    • Site Administration and Management
    • Content Management, Policies and Procedures
    • User and Permission Management
    • Training
    • References


  • Using such a OneNote Notebook within SharePoint allows you to do the following:
    • Review specific sections of information governance with your governance committee or working group right within SharePoint.  You can break up the governance planning process into multiple meetings that align with the sections in the OneNote Notebook. 
    • Depending on the size and complexity of the organization each section may need multiple meetings.
    • Answer governance questions, capture notes from the meeting, share governance recommendations and decisions right within the OneNote Notebook right as the meeting progresses.  Share the outcome of the governance commmittee meetings in real time with a larger audience or with the entire organization immediately (either during or immediatly after the meetings).  All that content resides within the OneNote notebook which is already posted to SharePoint and is updated as you take notes within the governance committee meetings.
    • Check off sections and governance policies within the OneNote notebook as they are completed.
    • Highlight questions or sections requiring work to a larger audience, as they are identified within (or immediately after) the governance committee meetings.
    • Share governance decisions and policies with the organization much faster, instead of waiting for a report to be prepared after meetings are concluded.


  • A question I often get is: Do you have any suggestions for how you work with different groups within an organization that differ greatly on opinion related Information Governance topics/policies?
    • This is always tough, when you have individuals as part of the governance discussions and planning process that differ greatly in opinion and are not willing to come to a compromise or hear each other out. 
    • My suggestion is to keep the governance planning process really focussed on addressing the business needs for managing information, sharing information and/or protecting information such that it benefits and aligns with the business.  Information governance plans should not simply conform to or service any particular individual's opinions or comfort level.  In cases of significant or continual disagreement, the discussion often needs to be raised above a particular department or individual's opinions.  Always try to keep the discussion focussed on what the business needs. 
    • One approach is to creating smaller working groups around specific sections or concerns and take particular topics out of the larger governance commitee.  This can allow a particular topic to be debated and researched while the remaining governance planning process continues to progress.
    • Another approach is to designate 1 individual to own a particular topic that might be contentious (a person that is not emotionally or personally attached to the topic) and have them research that topic and come back with impartial recommendations or best practices for the governance commitee or working group to consider.
    • This type of situation also highlights the need to elect a strong leader for the governance planning process.  At some point, if a topic is debated and debated with no resolution, sometimes a decision simply needs to be made by 1 person and everyone needs to try to live with it for some time. That decision could include simply parking that particular topic and moving onto other information governance related topics or decisions.  Ultimately, you want to ensure that the entire information governance planning process is not crippled by 1 particular topic or debate.


Please do reach out if you have any other questions on the process of developing a SharePoint Information Governance Plan.
   -Antonio

Wednesday, April 22, 2015

SharePoint Fest Washington DC: Synchronizing and Managing Identities between AD On Prem and SharePoint Online

Thanks to everyone that attended my session on April 10 at SharePoint Fest Washington DC.  This session focused on synchronizing and managing identities between Active Directory on premise and SharePoint Online.  This is your base case for a hybrid SharePoint deployment.  This post will provide the presentation shown during the session and some of the information discussed.  I've done some research into some of the great questions that were raised during the session, and my very next post here will deal with those questions.

Some of the most sensitive information in our organizations are our identities - the identities of our employees, our partners and of our clients. With the multitude of online services available and the constant public reports about massive identity thefts, businesses are becoming increasingly concerned with protecting the identities that they manage and the identity information that they store. However, how do you effectively product sensitive identity information when moving a collaboration platform like SharePoint to a cloud provider like Office 365? This can present interesting challenges for how we manage those identities - challenges like single sign on, storing sensitive identity information and identity synchronization. In this session we'll explore some these challenges and provide a detailed walk-through of the capabilities and technologies that Microsoft has built to effectively solve these challenges. These technologies will include Active Directory synchronization to Office 365 as well as federation to provide single sign on.

The full presentation deck can be found here:





The overall benefits of synchronizing on premise identities with Office 365 are:
  • Reduced administration costs - Leveraging your already existing on-premises user and group accounts, eliminates the need to manually manage them in your Azure AD, which removes a costly manual operation from your budget
  • Improved productivity - By automating the process of synchronizing user and group accounts, you can significantly reduce the amount of time it takes to make cloud based services accessible for your employees.
  • Increased security - Automated provisioning and de-provisioning of user and group accounts ensures that only those physical entities have access to your corporate assets that really require it as long as they need it.

Please reach out to me if you have any questions related to this process. Enjoy.
   -Antonio