in

Dot Net Mafia

Group site for developer blogs dealing with (usually) .NET, SharePoint 2013, SharePoint 2010, Office 365, SharePoint Online, and other Microsoft products, as well as some discussion of general programming related concepts.

This Blog

Syndication

Tags

Archives

Corey Roth [MVP]

A SharePoint MVP bringing you the latest time saving tips for SharePoint 2013, SharePoint 2010, Office 365, SharePoint Online, MOSS 2007, ASP.NET, LINQ, and Visual Studio 2012.

How to: Properly set permissions on your Search crawl account in SharePoint 2010

When you install SharePoint and configure your Search Service Application, it usually does a pretty good job making sure that your default content access (aka crawl) account has the appropriate permissions to your SharePoint sites.  However, many times, it is necessary to adjust permissions to get this to work.  This could be caused by you simply wanting to change the account that is used or because it is not working for some reason.  For today’s post, we’re specifically talking about setting permissions so that your content access account can properly crawl your SharePoint web applications.  I will also remind you that you never want to use an account with administrator privileges for your crawl account.  If you do, you will have issues with security trimming.

First, verify that the account you are using for crawling is the one you want.  You can view this in the Search Service Application under Default content access account.  You can change your account here if necessary.  Otherwise, just make a note of it.

SearchCrawlAccount

Once you know what account you are dealing with, we can go set the permissions on your web application.  Go back to Central Administration and then click on Manage Web Applications.  Next, you want to select the web application that needs permissions.  Highlight the web application you want and then click the User Policy button.

WebApplications

In this popup, you want to verify that your default content access account is listed.  If you see it there, make sure it has Full Read permissions and nothing else.  If it is not there, click the Add Users button to add your content access account.  On the first step, you will want to pick (All Zones) and then click Next.  On the next screen, enter your account name, choose Full Read and use the default settings for all other options.  Once you are done, your accounts should look something like this.

WebApplicationUserPolicy

Once you are happy with your accounts, click OK.  You then want to go back to the content sources page in your Search Service Application and perform a full crawl.   Performing the full crawl will ensure that security trimming is properly applied when users search your SharePoint site. 

Published Oct 19 2010, 10:35 AM by CoreyRoth
Filed under: , ,

Comments

 

Impact of ‘Draft Item Security’ and ‘Security Trimming’ on Search Results in Sharepoint « Extreme Sharepoint said:

Pingback from  Impact of ‘Draft Item Security’ and ‘Security Trimming’ on  Search Results in Sharepoint « Extreme Sharepoint

November 7, 2011 8:55 AM
 

Impact of ‘Draft Item Security’ and ‘Security Trimming’ on Search Results in Sharepoint said:

Pingback from  Impact of ‘Draft Item Security’ and ‘Security Trimming’ on  Search Results in Sharepoint

July 8, 2012 5:07 AM

Leave a Comment

(required)  
(optional)
(required)  
Add

About CoreyRoth

Corey Roth is an Applications Architect at Infusion specializing in ECM and Search.
2012 dotnetmafia.
Powered by Community Server (Non-Commercial Edition), by Telligent Systems