SharePoint Portal Server is capable of crawling a variety of outside content sources and including them in its content index for use in search queries. Any security settings currently assigned to servers, file shares, and databases within your organization are recognized by SharePoint Portal Server. Note, however, that only file-level security settings are enforced, not share-level. When crawling an outside content source within the same domain as the SharePoint Portal Server, the security scheme for the content source is mapped to Windows 2000 security, and is applied when a user searches the index for documents. Users only see documents if they have sufficient security permissions to access them. If the content source is in another domain, do use domain local groups on the target server to secure its content. Users will not be able to view crawled content if the SharePoint Portal Server cannot recognize the local group account used on the target server and the corresponding SIDs ”unique alphanumeric identifiers for each computer, user, and group in a Windows domain. SharePoint Portal server handles security for different types of content sources in a variety of ways. File Shares For file servers, file-level security is enforced at query time by SharePoint Portal Server. Encrypted documents are not crawled. If the file system used on the file share does not have file-level security attributes for SharePoint Portal Server to map security to, share-level security is not enforced in its place. While share-level security is not enforced, a per- path login is assigned for crawling, allowing the server access to content through share-level security. Web Sites No security is enforced at query time for Web site content. While SharePoint Portal Server does specify a per-path login for crawling Web sites, this does not limit the access to information collected from the site in query results. Web sites or Web shares using Secure Socket Layer (SSL) encryption cannot be crawled. |