Author of SBS. EBS and Beyond

Author of SBS. EBS and Beyond

Larry Heimendinger has been involved in IT for several generations of computing.  His programming career began while he was in high school and attended a summer program in mathematics sponsored by the National Science Foundation.  In college, he worked at the university computing center and in the Physics High Energy Research lab doing programming.  As a junior and senior, he worked full time while attending school as a programming manager and system analyst.

For almost two decades after college, Larry designed and implemented major, enterprise-wide mainframe systems in banking and finance, insurance, public utilities, transportation, wholesale grocery, transportation, warehousing, and many other industries. He also worked at the United Nations Development Programme as the IT manager.

Larry became involved with PC computing almost as soon as it was available.  He wrote PC applications for banking, accounting and manufacturing and was an early network adopter.  He worked closely with Ashton-Tate in the development and use of dBase.  He then was President and COO of Nantucket Corp, creator of Clipper, a dBase compiler and application development system. He authored two books on programming, one using dBase and the other using Clipper.

Larry has been involved in several start-up companies doing work in embedded systems and network appliances, and he was Chairman of a publicly traded manufacturing firm.

He is a strong advocate of small businesses, especially in their need for IT systems and support.

Larry lives in the Seattle area with his wife and children.  His passionate hobbies are cooking and woodworking, and he remains interested in amateur astronomy and physics with increasing interest in neuroscience.

  1. Dave says:

    Your blog post are great – I am enjoying reading your posts on SBS. I do follow your posts and I have linked to this site from my website:

  2. You have made my day. Thanks for the kind remarks and the following. I will endeavor to do more in 2012.

  3. Selcuk says:

    Your blog seems very interesting and useful for a newcomer to the SBS area as me.
    I will follow your posts from now with big interest.

  4. What a nice and gratifying comment. I am pleased to have you follow my work. Look for some new posts soon.

  5. Thanks for postings these blogs. They were very helpfull!


  6. My pleasure. No one should have to repeat my pain!

  7. Eric Price says:

    I hate to just drop this here, but I didnt see a better spot. Anyway, Im rolling out my first 2011 SBS server with premium addon, and I cant seem to find the SQL 2008 install. Did it come in the same package as the 2011 Premium CAL and 2008 R2 Server DVD? Ive tossed the office, and I see it nowhere. Should I keep looking? Or is the install / addon something else entirely?

  8. Do you have download access on Technet?

  9. Eric Price says:

    I do, but I dont see a SQL 2008 R2 for SBS. It seemed like there was a separate SKU / install for it over the other “regular” versions.

  10. Eric Price says:

    Ah, crisis averted. Found my disks. Somehow, they had found themselves out of the office, into the house, across the entire length of the house, and into my bedside table. 😐 Am I THAT senile already? Im blaming the wife. Or the kids. Possibly the dog.

  11. Possibly the release of Server 2012 with no SBS ever in sight again…..

  12. Adam says:

    Do you plan on posting the next steps for ADFS using SBS 2008?

  13. The short answer is yes. Just been short of time. And truthfully, you have been the first to inquire. I will try and get to it this week. Thanks for the interest.

  14. Adam says:

    Well, it turns out that I am trying to do the EXACT same thing right now and my searching brought me here! I actually tried installing ADFS 2.0 on the SBS server standalone, but since the Default Website is already used by remote web workplace, I did a binding for the new SSL ADFS cert to HTTPS port 444 instead of 443. The install of ADFS went through OK with a warning about the website portion. Will this procedure work? Or will I need to install the ADFS proxy on my other server that is running the single sign on tool?

  15. No it won’t. Specifically ADFS must be installed on a domain controller and the proxy must be installed on a non-domain controller. That is why SBS is not a good choice unless you have a 2nd non-domain controller server as you might with Premium. I don’t think it will work with a single external IP address. 443 traffic is automatic, as I understand it, from Office 365, so no matter how you have SSL set up on IIS7, traffic is going to come in on port 443. So:

    • Two servers, one a DC and one not
    • Two external IP addresses, one for SBS 443 traffic the other for proxy traffic
    • Trust 3rd party certificate using the name of the external DNS address (such as
    • External DNS name like adsf above pointing to external IP address for the proxy server inbound
    • router/firewall configured for two inbound external IP addresses, routing 443 traffic to DC and proxy respectively
    • Be sure and use the same name for ADFS farm server and proxy and trusted SSL cert
    • I will cover more later in a subsequent article.

  16. Adam says:

    The only part I’m still confused about is installing ADFS on the domain controller (SBS server). If you are installing it as a one server ADFS farm, it still asks to select a SSL cert, which by default is the remote web workplace. What do you do to resolve that one portion the process?

  17. Install the cert for IIS 7 on both the DC and non-DC server. The installation will automatically recognize it.

  18. Adam says:

    Sorry for taking up this space for these questions! If I should post somewhere else, let me know. I exported the Fed Service Name cert off the non-SBS server and imported into IIS7 on the SBS under Server Certificates for the server itself. The ADFS install on SBS still doesn’t pick it up though. The SSL cert field is greyed out, and the Fed Service name field allows the selection of other self signed certs, but not the 3rd party cert imported from the other server.

  19. Nope that won’t work. You need to generate the cert request through IIS and then use the request to generate the cert.

  20. Adam says:

    I already did that for the non-SBS server. Generated the request, copied it up to the third party service and then downloaded the SSL cert. Do I have to go through that same process for EACH server using the exact same FQDN to use as the Fed Service Name?

  21. Stephen Nganga says:

    Were you able to get “New SharePoint site Public Access, User Logon” post on setting up a separate external SharePoint site resolved and working?

  22. Stephen

    At least partially. I have a blog entry for how to extend SharePoint, referring to getting past the 10GB limit on SQL. Those steps would work. Caveat. I did not extend this to claims based authorization but did it only for groups of Windows users. In the reply to the forum, however, a reference to articles explaining how to make the URL public and how to set up claims based authentication are mentioned.

  23. Stephen Nganga says:

    Are you referring to this article m”SharePoint Foundation – Database > 10GB; Also How to Create a New Web Application and Site Collection” on your blogs

  24. yes. did that provide what you need?

  25. Stephen Nganga says:

    Yes. I was able to setup the SharePoint site but i can only access the site using the URL(with pot extension) or IP address on the server itself but not from other workstation in the network. I used port 988. How do i resolve this?

    BTW thank you for all your help so Far.

  26. I thought I mentioned in the blog that you have to make sure that port is open on your firewall and forwarding traffic to the server.

  27. Stephen Nganga says:

    You are the Man. I just Kept reading on. I turned of windows firewall on the SBS and it worked. I am about to make changes on the firewall settings. Thanks a bunch.

  28. Kris says:

    I run a small family business together with my father (3rd and 4th generation) We have A mix of blue & white collar workers, all of them more and more relying on: (1) our internal network (warehousing, shop, bookkeeping, engineering, sales),(2) VPN-setups for external work (service guys for technical installations, etc), (3) blackberry’s (sales planning, foremen, ….).

    Yet, since we are only a small business: ( as you would expect 🙂 ) the entire IT department consists of … myself :-)) ..

    Therefore, I cannot begin to tell you how valuable your website/blog is! thank you so much!

  29. You have made my day and validated why I started doing this in the first place. Your description sounds like so many of my clients. If you would like to explore some great things that you can do with SharePoint to extend all of that and lots more, get in touch and let’s explore whether I could assist you. Hope you had a great Thanksgiving.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s