2014-04-05 - SPSPhilly - Authentication and Authorization

Post on 25-May-2015

287 views 1 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

description

n today’s complex market place of corporate partnerships and relationships, sharing information is pertinent to ensuring that business operations are conducted in a secure computing environment with trusted entities being provided access to protected information. In this session, Dan will discuss the basics of authentication and authorization in relation to the SharePoint platform. Further, we will be discussing the technical underpinnings of the SharePoint platform’s processing of a user’s identity dependent on identity provider and authorization settings. As a part of this session we will demonstrate different authentication and authorization configurations that are common place in today’s business settings to include when to use: • Integrated Windows Authentication • Forms Based Authentication using SQL Server • ADFS as a Trusted Identity Provider • Threat Management Gateway with Kerberos (Constrained Delegation using client certs) After attending this session, attendees will have a better grasp of the configuration complexities involved with each scenario as well as the user experience impacts based on the path taken.

Transcript of 2014-04-05 - SPSPhilly - Authentication and Authorization

SPS Philly

Platinum

Gold

Silver Web

http://www.judge.com/
http://www.judge.com/
http://www.k2.com/
http://www.k2.com/
http://www.metalogix.com/
http://www.metalogix.com/
http://mcgladrey.com/content/mcgladrey/en_US/what-we-do/services/technology/erp-and-crm/microsoft-dynamics/microsoft-sharepoint-server-partner.html
http://mcgladrey.com/content/mcgladrey/en_US/what-we-do/services/technology/erp-and-crm/microsoft-dynamics/microsoft-sharepoint-server-partner.html
http://www.metavistech.com/
http://www.metavistech.com/
http://www.captechconsulting.com/
http://www.captechconsulting.com/
http://www.goshengroupllc.com/
http://www.goshengroupllc.com/
http://sharepoint-videos.com/
http://sharepoint-videos.com/

SharePoint User Group

• SharePoint

• End Users

• Administrators

• Architects

• Developers

• IT Pros

• Meetings: 2nd Tuesday of the month, Microsoft Malvern, 5:30-8 pm

WEB: www.TriStateSharePoint.org

EMAIL: info@TriStateSharePoint.org

TWITTER: @tristateSP

Dan Usher

Lead Associate

Booz Allen Hamilton

usher_daniel@bah.com

http://www.sharepointdan.com

http://www.yammer.com/spyam

http://go.spdan.com/kerberos2010

http://go.spdan.com/kerberos2013

http://go.spdan.com/multihopwinrm

http://go.spdan.com/kerberos2010
http://go.spdan.com/kerberos2013
http://go.spdan.com/multihopwinrm

http://xkcd.com/1240/

Security in General

Security in General

Anonymous

Authentication

Is In Site Group?

Does user have claim attribute?

Web Application / Site Collection

Secured Site / Site Collection / Content

Content Repository

Content

So

urc

e: htt

p:/

/go

.sp

dan

.com

/iis

auth

ASP.

NET A

uth

en

tica

tio

n

http://go.spdan.com/iisauth

http://go.spdan.com/cba

http://go.spdan.com/cba

http://go.spdan.com/cba

http://go.spdan.com/cba

htt

p:/

/go

.sp

dan.c

om

/cla

imse

nco

din

g

htt

p:/

/go

.sp

dan.c

om

/cla

imse

nco

din

g

1. Resource Requested

2. AuthN Request / Redirect

3. AuthN Request

4. Security Token

5. Security Token Request

6. Service Token

7. Resource Request w/Service Token

8. Resource Sent

Identity Provider Security Token Service

aka IP-STS

SharePoint 2010aka RP

https://sts.domain.com

https://sts.company.com/

Usher_Daniel@bah.com

@binarybrewery

www.sharepointdan.com

mailto:Usher_Daniel@bah.com
http://www.twitter.com/binarybrewery
http://www.sharepointdan.com

Top related

Forms Authentication, Authorization, User Accounts, and …download.microsoft.com/.../aspnet_tutorial02_FormsAuth_vb.pdf · Forms Authentication, Authorization, User Accounts, and
 Documents
SharePoint Adoption Tactics - SPSPhilly
 Technology
Client authentication and authorization
 Mobile
Password authentication - Santa Monica Collegehomepage.smc.edu/morgan_david/linux/a21-passwords.pdf · authentication != authorization – authorization establishes what user can
 Documents
Authentication and Authorization (including focussing on ...iamsect.ncl.ac.uk/dissemination/breaking-boundaries/Authentication … · Distributed authentication and authorization
 Documents
Authentication & Authorization Assaf Gottlieb
 Documents
Identification, Authentication and Authorization on the ... · Identification, Authentication and Authorization on the ... these concerns focus on identification, authentication and
 Documents
Visual Authentication - A Secure Single Step Authentication for User Authorization
 Technology
Authentication Authorization and Accounting Configuration ...AAA Authentication General Configuration Procedure 4 RADIUS Change of Authorization 5 Change-of-Authorization Requests
 Documents
ESPC15 - Extending Authentication and Authorization
 Software
Authentication and Authorization
 Documents
Authentication Authorization and Accounting Configuration ...
 Documents
Authorization, Authentication, And Security
 Documents
AAI - Authentication and Authorization Infrastructure ... · AAI - Authentication and Authorization Infrastructure Attribute Specification 11 April 2017 Version 1.6
 Documents
Forms Authentication, Authorization, User Accounts, and Roles :: …€¦ · Forms Authentication, Authorization, User Accounts, and Roles :: User-Based Authorization Introduction
 Documents
Authentication / Authorization with Drupal...Authentication / Authorization with Drupal Authorization: Drupal LDAP Good BAD Pros • Uses CornellAD Cons • Only applies application
 Documents
Opensource Authentication and Authorization
 Documents
Authentication, Authorization, Accounting Breakout Session
 Documents
Web API authentication and authorization
 Technology
Introduction to centralized Authentication, Authorization ... · PDF fileIntroduction to centralized Authentication, Authorization and Accounting ... –RADIUS (RFC 2865) –The ...
 Documents

Copyright © 2022 FDOCUMENTS