Error after SharePoint upgrade, Solution

Recently, the SharePoint website of a company where the classmate is located is suspended after patching (login is not allowed, login page is not displayed, and LDAP authentication is used). Then, after he drummed it out, under my coercion (no temptation), I sent some of his notes about Sharepoint to me and posted them here to show you that some people may encounter similar problems.

They use wss3.0 + LDAP authentication and HTTPS encrypted transmission, which is mainly used for document management without any self-developedCode.

The first is about the crash (the notes are as follows ):

A minor fault occurred two days ago, and the problem description is much more complicated than the solution ..
You can see the logon page at the beginning, but when you log on, you will encounter an error, saying that you cannot find the default page. Then you can see that there is a Sharepoint upgrade in winows update and it will run. After the machine is restarted, The SharePoint service will be suspended...
The only solution you can think of is to run the SharePoint Configuration Wizard, but step 1 will say that the spadmin service has not started, and it is very sad. Drop it.
Someone needs to use it today, so he has to dig his head and find that the Configuration Wizard has passed. Alas, Microsoft cannot understand things, but the website is still unable to get up, it just changed the IIS configuration, and then repaired several times with the Configuration Wizard. Finally, the login page can appear, but I cannot log on. After studying it for half a day, it is estimated that the LDAP configuration is faulty. A check is to overwrite the Web. config of the above 2, so we can recover it...
Now, you may have replaced some configurations after the upgrade ..

Then there is a question about how wss3.0 uses LDAP authentication:

Follow the steps on the Internet, but make some changes. For details, refer to this webpage:
Http://www.sharepointblogs.com/helloitsliam/archive/2006/08/15/10027.aspx
Here we will only discuss the specific practices
1. copy a Microsoft copy from a machine with moss2007 installed. office. server. place the DLL file on the desktop. In the c: \ Program Files \ common files \ microsoft shared \ Web Server Extensions \ 12 \ ISAPI directory, drag the file to the C: \ WINDOWS \ Assembly directory, be sure to drag in ..
2. Modify the Web. config file of the SharePoint Management Center website and web website. The default file is c: \ Inetpub \ wwwroot \ WSS \ virtualdirectories \ 80 (and another Management port)
Add the following lines between <machinekey> and </system. Web>:
<Membership defaultprovider = "ldapdemomembership">
<Providers>
<Add name = "ldapdemomembership" type = "Microsoft. office. server. security. ldapmembershipprovider, Microsoft. office. server, version = 12.0.0.0, culture = neutral, publickeytoken = 71e9bce111e9429c "Server =" XXX. xxx. XXX "Port =" 389 "usessl =" false "usednattriiner =" false "usernameattribute =" uid "usercontainer =" ou = xxx, Dc = xxx, Dc = xxx, dc = xxx "userfilter =" (objectclass = *) "Scope =" subtree "otherrequireduserattri
Butes = "uid, CN"/>

</Providers>
</Membership>
Save and close. Note that usednattribute = "false" is important. Many of the materials you search for are not mentioned. Otherwise, you will not be able to connect.
3. Open the Management Center of SharePoint (you can choose Start> Management Tools>) and applyProgramManage, verify the provider, edit the existing default verification, and select the form for verification type. here you need to open the anonymous permission (note that you can disable it later ), the membership provider must be consistent with the one added earlier, such as ldapdemomembership. You do not need to fill in role management. Enable client integration at the bottom and save the settings.
4. manually add an Administrator Account (which can be deleted later), Application Management, web application policy, add users, and select the default region (or your own website region ), this means that the user should be able to identify all users on the LDAP server and give them full control permissions.
5. access the web site of SharePoint. A logon box is displayed. log on to the website with the account you just added the permission. Click "website operations" on the upper right, "website Settings", and "anonymous permissions" in "Advanced permission settings. Then go back and close the anonymous access opened in step 4. In this way, LDAP authentication is required, but by default, the user has the permission of a visitor. By changing the access permission of a Sharepoint website, the permissions of common users can be restricted (which is already very low ).

HTTPS settings:

Control Panel, add and delete the Windows component, first add the certificate service, just give a name.
Manage your server, manage this application server, and perform attributes, Directory Security, and server certificate on both the sharepointweb client and the background management website to generate a TXT file.
Change the port number of the default website, such as 8080.
Access http: // localhost: 8080/certsrv in the browser, apply for a certificate, apply for a certificate in advanced mode, and use base64 ..., copy the part of the TXT file between in and end and submit it.
Management tool, Certificate Authority, pending application, change the Id just now to issue the certificate.
Log on to the localhost URL and check the status of the pending certificate application. You can download the DER-encoded certificate and save it.
Go back to the starting server website attributes, select the server certificate, process the pending requests, and install the certificate.
After that, you can access HTTPS. Finally, in the Directory Security Section, the editor requires secure channel and 128-bit encryption.

I copied them all in the original text. Am I too lazy ....

After preparing to complete the serialization at hand, you can start to write a topic for customizing the list fields, or you may want to know about the development aspects (except for the workflow -. -) You can also mention Dongdong, uh-huh.