zettelkasten/OneNoteExport/Kommunikationstechnologie/Sharepoint/Infrastruktur/102_Workflow Manager Farm.md

Workflow Manager Farm

Donnerstag, 13. Juni 2019

14:08

 

Wird Installiert mit dem Web Plattform Installer

 

 

Service Account SVC-SPPWorkflowM

 

DNS Name und IP für die VS

BKKSPPWMFARM001 10.96.73.107

 

VS auf dem Kemp ist eingerichtet "Workflow Farm Prod" WICHTIG PORT 12290 nutzen !!!!!

 

 

Installation des Workflow Client auf allen SP Servern sowie der Webinstaller muss auch auf allen SP Servern rauf.

 

 

 

SQL Alias SPP-Workflow

 

SQL Instanz bkksppsql001\sqlexsppconfig

 

Farm Passwort

Tausend2003#

 

 

 

{width="3.8020833333333335in" height="4.125in"}

 

Aus <http://www.harbar.net/images/www_harbar_net/Windows-Live-Writer/Wor.End-to-End-Configuration-using-auto-_3D9/2a_2.png>

Ergebnis für die Konfiguration:

 

 

{width="4.947916666666667in" height="5.4375in"}

 

{width="4.385416666666667in" height="4.072916666666667in"}

 

{width="4.083333333333333in" height="1.5208333333333333in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:11

 

 

 

 

 

 

Hier die Powershell Befehle dazu :

 

# To be run in Workflow Manager PowerShell console that has both Workflow Manager and Service Bus installed.

 

# Create new SB Farm

$SBCertificateAutoGenerationKey = ConvertTo-SecureString -AsPlainText -Force -String '***** Replace with Service Bus Certificate Auto-generation key ******' -Verbose;

 

 

New-SBFarm -SBFarmDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=SbManagementDB;Integrated Security=True;Encrypt=False' -InternalPortRangeStart 9000 -TcpPort 9354 -MessageBrokerPort 9356 -RunAsAccount 'bkk-mobiloil\SVC-SPPWorkflowM' -AdminGroup 'BUILTIN\Administrators' -GatewayDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=SbGatewayDatabase;Integrated Security=True;Encrypt=False' -CertificateAutoGenerationKey $SBCertificateAutoGenerationKey -MessageContainerDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=SBMessageContainer01;Integrated Security=True;Encrypt=False' -Verbose;

 

# To be run in Workflow Manager PowerShell console that has both Workflow Manager and Service Bus installed.

 

# Create new WF Farm

$WFCertAutoGenerationKey = ConvertTo-SecureString -AsPlainText -Force -String '***** Replace with Workflow Manager Certificate Auto-generation key ******' -Verbose;

 

 

New-WFFarm -WFFarmDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=WFManagementDB;Integrated Security=True;Encrypt=False' -RunAsAccount 'bkk-mobiloil\SVC-SPPWorkflowM' -AdminGroup 'BUILTIN\Administrators' -HttpsPort 12290 -HttpPort 12291 -InstanceDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=WFInstanceManagementDB;Integrated Security=True;Encrypt=False' -ResourceDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=WFResourceManagementDB;Integrated Security=True;Encrypt=False' -CertificateAutoGenerationKey $WFCertAutoGenerationKey -Verbose;

 

# Add SB Host

$SBRunAsPassword = ConvertTo-SecureString -AsPlainText -Force -String '***** Replace with RunAs Password for Service Bus ******' -Verbose;

 

 

Add-SBHost -SBFarmDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=SbManagementDB;Integrated Security=True;Encrypt=False' -RunAsPassword $SBRunAsPassword -EnableFirewallRules $true -CertificateAutoGenerationKey $SBCertificateAutoGenerationKey -Verbose;

 

Try

{

# Create new SB Namespace

New-SBNamespace -Name 'WorkflowDefaultNamespace' -AddressingScheme 'Path' -ManageUsers 'bkk-mobiloil\SVC-SPPWorkflowM','admin-rko@BKK-MOBILOIL' -Verbose;

 

Start-Sleep -s 90

}

Catch [system.InvalidOperationException]

{

}

 

# Get SB Client Configuration

$SBClientConfiguration = Get-SBClientConfiguration -Namespaces 'WorkflowDefaultNamespace' -Verbose;

 

# Add WF Host

$WFRunAsPassword = ConvertTo-SecureString -AsPlainText -Force -String '***** Replace with RunAs Password for Workflow Manager ******' -Verbose;

 

 

Add-WFHost -WFFarmDBConnectionString 'Data Source=SPP-Workflow;Initial Catalog=WFManagementDB;Integrated Security=True;Encrypt=False' -RunAsPassword $WFRunAsPassword -EnableFirewallRules $true -SBClientConfiguration $SBClientConfiguration -CertificateAutoGenerationKey $WFCertAutoGenerationKey -Verbose;

 

ERGEBNIS NACH DER Konfiguration :

 

 

{width="3.5208333333333335in" height="1.7708333333333333in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:15

 

 

Farm ist fertig erstell, nun müssen noch andere Server hinzugrfügt werden.

 

[Hinzufügend des 2 Servers zur Farm :]{.underline}

 

 

{width="3.8333333333333335in" height="2.3333333333333335in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:16

 

Hier Punkt 3 wählen Join an Exiting Workflow Manager Farm

 

 

 

{width="3.7916666666666665in" height="3.3125in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:17

 

 

{width="3.8020833333333335in" height="3.3333333333333335in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:19

 

 

{width="3.875in" height="3.4166666666666665in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:20

 

 

 

Summary :

Configuration for Workflow Manager

Management Database SQL Instance        SPP-workflow

Enable SSL connection with SQL Server instance        False

Authentication        Windows Authentication

Management Database Name        WFManagementDB

RunAs Account        bkk-mobiloil\SVC-SPPWorkflowM

RunAs Password        ***********

Certificate Generation Key        ***********

Workflow Manager Outbound Signing Certificate        Auto-generated

Service SSL Certificate        Auto-generated

Encryption Certificate        Auto-generated

Workflow Manager Management Port        12290

HTTP Port        Disabled

Enable firewall rules on this computer        True

Administrators Group        BUILTIN\Administrators

Configuration for Service Bus

Management Database SQL Instance        SPP-workflow

Enable SSL connection with SQL Server instance        False

Authentication        Windows Authentication

Management Database Name        SbManagementDB

RunAs Account        bkk-mobiloil\SVC-SPPWorkflowM

RunAs Password        ***********

Certificate Generation Key        ***********

Farm Certificate        Auto-generated

Encryption Certificate        Auto-generated

HTTPS Port        9355

TCP Port        9354

Message Broker Port        9356

Internal Communication Port Range        9000 - 9004

Enable firewall rules on this computer        True

Administrators Group        BUILTIN\Administrators

 

{width="2.375in" height="2.1354166666666665in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:21

 

 

{width="2.8541666666666665in" height="2.0729166666666665in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:21

 

 

{width="5.625in" height="2.0833333333333335in"}

 

{width="4.96875in" height="0.40625in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:25

 

 

[Hinzufügend des 3 Servers zur Farm :]{.underline}

 

Schritte wie bei 2

 

 

 

{width="3.09375in" height="2.96875in"}

Erfasster Bildschirmausschnitt: 17.06.2019 14:27

 

 

 

 

{width="2.8958333333333335in" height="3.2916666666666665in"}

Erfasster Bildschirmausschnitt: 17.06.2019 14:27

 

 

 

{width="3.03125in" height="2.0625in"}

Erfasster Bildschirmausschnitt: 17.06.2019 14:28

 

 

Summary :

Configuration for Workflow Manager

Management Database SQL Instance        SPP-Workflow

Enable SSL connection with SQL Server instance        False

Authentication        Windows Authentication

Management Database Name        WFManagementDB

RunAs Account        bkk-mobiloil\SVC-SPPWorkflowM

RunAs Password        ***********

Certificate Generation Key        ***********

Workflow Manager Outbound Signing Certificate        Auto-generated

Service SSL Certificate        Auto-generated

Encryption Certificate        Auto-generated

Workflow Manager Management Port        12290

HTTP Port        Disabled

Enable firewall rules on this computer        True

Administrators Group        BUILTIN\Administrators

Configuration for Service Bus

Management Database SQL Instance        SPP-Workflow

Enable SSL connection with SQL Server instance        False

Authentication        Windows Authentication

Management Database Name        SbManagementDB

RunAs Account        bkk-mobiloil\SVC-SPPWorkflowM

RunAs Password        ***********

Certificate Generation Key        ***********

Farm Certificate        Auto-generated

Encryption Certificate        Auto-generated

HTTPS Port        9355

TCP Port        9354

Message Broker Port        9356

Internal Communication Port Range        9000 - 9004

Enable firewall rules on this computer        True

Administrators Group        BUILTIN\Administrators

 

{width="2.6041666666666665in" height="2.3020833333333335in"}

 

{width="2.8645833333333335in" height="2.09375in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 14:29

 

 

{width="4.520833333333333in" height="1.9583333333333333in"}

 

{width="4.635416666666667in" height="0.34375in"}

 

get-wffarm :

 

PS C:\Program Files\Microsoft\Web Platform Installer> Get-WFFarm

 

 

FarmType : Workflow

WFFarmDBConnectionString : Data Source=SPP-Workflow;Initial Catalog=WFManagementDB;Integrated

Security=True;Encrypt=False

RunAsAccount : bkk-mobiloil\SVC-SPPWorkflowM

AdminGroup : BUILTIN\Administrators

Hosts : {Name: BKKSPPWM001.bkk-mobiloil.de, Configuration State: HostConfigurationCompleted,

Name: BKKSPPWM002.bkk-mobiloil.de, Configuration State: HostConfigurationCompleted, Name:

BKKSPPWM003.bkk-mobiloil.de, Configuration State: HostConfigurationCompleted}

InstanceDBConnectionString : Data Source=SPP-Workflow;Initial Catalog=WFInstanceManagementDB;Integrated

Security=True;Asynchronous Processing=True;Encrypt=False

ResourceDBConnectionString : Data Source=SPP-Workflow;Initial Catalog=WFResourceManagementDB;Integrated

Security=True;Asynchronous Processing=True;Encrypt=False

HttpPort : 12291

HttpsPort : 12290

OutboundCertificate : Thumbprint: 47F02E208882FAC72F2EF089A4C87B0920A8638D, IsGenerated: True

Endpoints : {https://BKKSPPWM001.bkk-mobiloil.de:12290/, https://BKKSPPWM002.bkk-mobiloil.de:12290/,

https://BKKSPPWM003.bkk-mobiloil.de:12290/}

SslCertificate : Thumbprint: B54E4A4CFAE33EF221D33D25D4D0D01E6688989E, IsGenerated: True

EncryptionCertificate : Thumbprint: B54E4A4CFAE33EF221D33D25D4D0D01E6688989E, IsGenerated: True

 

 

Mit dem IE (Wichtig Admin Modus und User svc-sppworkflowm) auf addresse https://bkksppwm001:12290 Verbinden.

 

Zertifikatserror ignorieren

 

Dann das Zertifikat exportieren.

 

<<SPP-Workflowfarm001.cer>>

 

Auf dem Sharepoint Server BKKSPPAPP001 folgende Befehle ausgeführt :

 

$trustCert = Get-PfxCertificate "D:\SP\Tools\WorkflowManagerFiles\SPP-Workflowfarm001.cer"

 

Ergebnis:

PS C:\Users\admin-rko> $trustCert

 

Thumbprint Subject

---------- -------

B54E4A4CFAE33EF221D33D25D4D0D01E6688989E CN=BKKSPPWM001.bkk-mobiloil.de

 

 

Register-SPWorkflowService -SPSite "https://mobilnet.bkk-mobiloil.de" -WorkflowHostUri "https://bkksppwmfarm001.bkk-mobiloil.de:12290"

 

 

Lief ohne Proleme durch

 

Ergebnis in der CA :

 

 

{width="9.625in" height="1.53125in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 15:23

 

Der unterste Service ist neu "Workflow Service Application Proxy"

 

Wenn man ihn anklickt kommt folgendes :

 

 

{width="4.197916666666667in" height="1.4375in"}

 

Erfasster Bildschirmausschnitt: 17.06.2019 15:24

 

 

Nun kann man mit dem Sharepoint Designer prüfen ob die 2013 Workflows verfügbar sind.

 

 

{width="5.0in" height="3.375in"}