Best Practices

The following are best practices from this chapter:

• For stronger and enterprise-level security solutions, use Kerberos delegation and ensure that all servers reside in the same domain to be used for per-user identity data source connections.
  
  
• Most of the data providers are already listed in SharePoint 2010 Visio Graphics Service settings. Always review the existing list before adding a new data service provider.
  
  
• Keep only those data providers in the Trusted Data Providers list that you think you will use with Visio web drawings.
  
  
• Use low-privileged accounts when configuring unattended service accounts to connect to an external data source.
  
  
• If using windows authentication then External data sources must reside within the same domain as the SharePoint Server 2010 farm or Visio Graphics Services must be configured to use the Secure Store Service. For more information, review planning documentation at http://technet.microsoft.com/en-us/library/cc560988.aspx.