The following tutorial gives a step-by-step guide to set up a crawl account for Aspire. These steps have to be followed on each site that needs to be crawled.
Note |
---|
Any changes to the SharePoint site permission functionality may invalidate this tutorial. The following permissions were last checked on September 29th, 2021. |
Easy Heading Free | ||||
---|---|---|---|---|
|
In order to access SharePoint Rest API, an Active Directory Windows User account with sufficient privileges must be supplied. All urls crawled from the same connector will use the same credentials.
To crawl SharePoint you'll need the following permissions:
This permission will allow the user to read last modification dates of documents and sites and will allow for incremental indexing of SharePoint content.
This permission is required to get all items from the site collection
It is recommended that the account be the site collection administrator.
A prerequisite for crawling SharePoint On Premise is to have a Windows Active Directory account. The domain, username and password for this account will be required below.
The recommended name for this account is "aspire_crawl_account".
This account will need to have sufficient access rights to read all of the documents in SharePoint 2019 that you wish to process. See the previous section for details on what rights will be required for the account in SharePointThe first option is to add the crawl account as Site Administrator, which will grant sufficient permissions to access all items on the site.
To set the rights for your account at the Web Application level, do the following:
If setting up the crawl account as Site Admin is not possible, follow these steps to set a custom Site Permission Level for the account in each Site Collection.
You will need to have an account created in Azure AD available to use this method.
On the Site to crawl, go to the Site Settings / Site Permission / Advanced permissions settings / Permission Levels page and click on Add a Permission Level
On the "Add a Permission Level" page, set a name and description for the new permission.
Set the following List of Permissions:
Set the following Site Permissions:
Leave the Personal Permissions unchecked and click Create.
To set the rights for your "aspire_crawl_axcount" on site collections, do the following:
Assign the new permission to the crawl account. For this, go to Site Settings / Site Permission / Advanced permissions settings / Grant Permissions
On the Invite people section, select the crawl account to assign the permissions to, and on Show Options select the Permission Level you created previously.