Follow by MS guide:
- https://learn.microsoft.com/en-us/sharepoint/install/install-sharepoint-server-2016-on-one-server
- https://learn.microsoft.com/en-us/sharepoint/install/account-permissions-and-security-settings-in-sharepoint-server-2016
- Server OS: Windows Server 2022 Datacenter Evaluation
- Update windows
- Rename computer
- Config DNS before join Domain
- Domain DNS server, example: 192.168.133.134
- Public DNS server, example: 8.8.8.8
- Add domain user (follow strictly by MS guide: https://learn.microsoft.com/en-us/sharepoint/install/account-permissions-and-security-settings-in-sharepoint-server-2016)
- A farm admin account, with local administrators permission on each farm server
- This account must have
securityadmin
anddbcreator
on SQL Server - Use this account to perform sharepoint setup
- This account must have
- A farm services account: a normal domain user
- A sql services account: a normal domain user
- A farm admin account, with local administrators permission on each farm server
SQL Server version: SQL Server 2019 Express (https://www.microsoft.com/en-us/download/details.aspx?id=101064)
- Join domain
- Use local administrator account to setup SQL Server
- SQL Server Setup
- Firewall open port 1433
netsh firewall set portopening protocol = TCP port = 1433 name = SQLPort mode = ENABLE scope = SUBNET profile = CURRENT
- In Feature Selection: uncheck "Machine Learning Services ..."
- In Server Configuration > Service Accounts: with "SQL Server Database Engine" section, use a domain user instead of local account
- Firewall open port 1433
- SQL Server Management Studio (https://learn.microsoft.com/en-us/sql/ssms/download-sql-server-management-studio-ssms?redirectedfrom=MSDN&view=sql-server-ver16)
- In Security > Logins: Add new entry with login name is the farm admin account with Server Roles:
securityadmin
anddbcreator
- Right click on current SQL Server instance > Properties > Advanced, change
Max Degree of Parallelism
to1
- In Security > Logins: Add new entry with login name is the farm admin account with Server Roles:
- SQL Server 2019 Configuration Manager:
- SQL Server Network Configuration > Protocols for
<instance>
> TCP/IP: changeEnabled
toYes
. Switch to tab IP Addresses, in IPAll > TCP Dynamic Ports: remove0
value, change TCP Port to1433
. - Restart service
- SQL Server Network Configuration > Protocols for
SharePoint version: 2019 (https://www.microsoft.com/en-us/download/details.aspx?id=57462)
- Join domain
- Login as farm admin to begin setup
- Run "Computer Management" as local admin, add farm admin to local administrators group
- Run
PrerequisiteInstaller.exe
- Run
setup.exe
The exploit works for both Standard and Enterprise editions of SharePoint, but we prefer the Enterprise edition for the demonstration. Please setup the target SharePoint server withSingle-Server Farm
role.- Key:
- Enterprise trial product key: M692G-8N2JP-GG8B2-2W2P7-YY7J6
- Standard trial product key: F2DPD-HPNPV-WHKMK-G7C38-2G22J
- After setting up, reboot server
- Key:
- Run SharePoint Products Configuration Wizard
- Create a new server farm
- In Specify Configuration Database Settings:
- Database server: the sqlserver address
- Username: use the
farm service
account
- In Specify Server Role: use Single Server Farm
- Initial Farm Configuration Wizard
After setting up with SharePoint Products Configuration Wizard, use the Initial Farm Configuration Wizard
to continue setting up the target SharePoint server.
-
For the Service Applications and Services setup page:
- In Service Account section, you can either use an existing managed account, or create a new one if you want.
- In Service Applications and Services section, make sure the
User Profile Service
is selected for installing.
-
For the Create Site Collection step:
- Enter title and description for new site.
- In Web Site Address section: choose the root "/" path for the URL (default).
After the Initial Farm Configuration Wizard
has completed the setup, a new SharePoint site will be created.
To check that the SharePoint server has been configured correctly:
- Visit the SharePoint site URL,
- Login to SharePoint site, if the home page is shown, then the setup is done.
Apply latest security patch for target sharepoint server
Note:
- After setting up, at least one SharePoint user needs to be logged in to initialize the User Profile Database.
- Take snapshot of both
SQL Server
andSharePoint Server
after the setup is done