SlideShare a Scribd company logo

SharePoint Authentication and Authorization

Download as PPTX, PDF
D
Dan Usher

The document discusses authentication and authorization in SharePoint. It introduces Identity Providers (IP) and Security Token Services (STS) that can authenticate users and issue security tokens. It also discusses how SharePoint uses claims-based authentication to control access to sites, site collections, and content based on a user's claims and group memberships. Examples are provided of configuring authentication in SharePoint and IIS. Contact information is listed for several people at the end.

Technology
1 of 41
Downloaded 18 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
SharePoint Authentication and Authorization
Scott Hoag ciphertxt
Dan Usher usher
Jason Himmelstein sharepointlhorn
introductions
a few ground rules…
SharePoint Authentication and Authorization
Security
http://xkcd.com/109/
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
authorizing authority authority authority authority
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
http://go.spdan.com/cba
SharePoint Authentication and Authorization
http://go.spdan.com/claimsencoding
ASP.NET Authentication Source: http://go.spdan.com/iisauth
Identity Provider SharePoint 2010 Security Token Service aka RP aka IP-STS 1. Resource Requested 2. AuthN Request / Redirect 3. AuthN Request 4. Security Token 5. Security Token Request 6. Service Token 7. Resource Request w/Service Token 8. Resource Sent
Side Story SharePint Anyone?
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
SharePoint Authentication and Authorization
https://sts.domain.com
SharePoint Authentication and Authorization
Web Application / Site Collection Anonymous Secured Site / Site Collection / Content Authentication Content Repository Is In Site Group? Content Does user have claim attribute?
SharePoint Authentication and Authorization
Real World
SharePoint Authentication and Authorization
Questions / Evals
jase@sharepointlonghorn.co dan@spdan.com m @usher @sharepointlhorn www.sharepointdan.com www.sharepointlonghorn.com Scott.hoag@spdelta.com liamcleary@msn.com @ciphertxt @helloitsliam http://psconfig.com www.helloitsliam.com

More Related Content

PPT
Attacking Web Applications
Sasha Goldshtein
 
PPTX
Web Vulnerabilities - Building Basic Security Awareness
Gurpreet Luthra
 
PDF
In graph we trust: Microservices, GraphQL and security challenges
Mohammed A. Imran
 
PDF
Wakanda and the top 5 security risks - JS.everyrwhere(2012) Europe
Alexandre Morgaut
 
PPTX
A2 - broken authentication and session management(OWASP thailand chapter Apri...
Noppadol Songsakaew
 
PPTX
Unmasking You
Joshua Abraham
 
PDF
Pentesting RESTful webservices
Mohammed A. Imran
 
PPTX
Web application security: Threats & Countermeasures
Aung Thu Rha Hein
 
Attacking Web Applications
Sasha Goldshtein
 
Web Vulnerabilities - Building Basic Security Awareness
Gurpreet Luthra
 
In graph we trust: Microservices, GraphQL and security challenges
Mohammed A. Imran
 
Wakanda and the top 5 security risks - JS.everyrwhere(2012) Europe
Alexandre Morgaut
 
A2 - broken authentication and session management(OWASP thailand chapter Apri...
Noppadol Songsakaew
 
Unmasking You
Joshua Abraham
 
Pentesting RESTful webservices
Mohammed A. Imran
 
Web application security: Threats & Countermeasures
Aung Thu Rha Hein
 

Viewers also liked (7)

PPTX
Hampton Road SQL and SharePoint User Group - SharePoint 2013 a Brief Capabili...
Dan Usher
 
PDF
SharePoint Worst Practices - SPSRIC
Dan Usher
 
PDF
2014-04-05 - SPSPhilly - Getting Started with Office 365
Dan Usher
 
PDF
2014-05-17 SPS Baltimore - Worst Practices of SharePoint
Dan Usher
 
PDF
Pitfalls of Migrating to SharePoint 2010 #SPSVB
Dan Usher
 
PDF
2014-02-06 - Getting Started with Office 365
Dan Usher
 
PDF
2014-04-05 - SPSPhilly - Authentication and Authorization
Dan Usher
 
Hampton Road SQL and SharePoint User Group - SharePoint 2013 a Brief Capabili...
Dan Usher
 
SharePoint Worst Practices - SPSRIC
Dan Usher
 
2014-04-05 - SPSPhilly - Getting Started with Office 365
Dan Usher
 
2014-05-17 SPS Baltimore - Worst Practices of SharePoint
Dan Usher
 
Pitfalls of Migrating to SharePoint 2010 #SPSVB
Dan Usher
 
2014-02-06 - Getting Started with Office 365
Dan Usher
 
2014-04-05 - SPSPhilly - Authentication and Authorization
Dan Usher
 
Ad

Similar to SharePoint Authentication and Authorization (20)

PPTX
Authentication, Authorization, and Identity – More than meets the eye…
Scott Hoag
 
PPTX
SharePoint Saturday Utah - Do you claim to be from the Azure Sky?
Liam Cleary [MVP]
 
PPTX
SharePoint Authentication And Authorization SPTechCon San Francisco
Liam Cleary [MVP]
 
PPTX
SharePoint Saturday Austin - Share point authentication and authorization
Liam Cleary [MVP]
 
PPTX
Understanding SharePoint Apps, authentication and authorization infrastructur...
SPC Adriatics
 
PPTX
SPSBE 2013 Claims for devs
Steven Van de Craen
 
PPTX
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
Scott Hoag
 
PPTX
DD109 Claims Based AuthN in SharePoint 2010
Spencer Harbar
 
PDF
SharePoint Saturday The Conference DC - Are you who you say you are share poi...
Liam Cleary [MVP]
 
PDF
Introduction to claims based authentication in share point 2010
Officience
 
PDF
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Officience
 
PPTX
Share point security 101 sps-ottawa 2012 - antonio maio
AntonioMaio2
 
PPTX
Claim Based Authentication in SharePoint 2010 for Community Day 2011
Joris Poelmans
 
PPTX
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
Dan Usher
 
PPTX
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
Dan Usher
 
PPTX
Claims Based Authentication A Beginners Guide
Phuong Nguyen
 
PPTX
SharePoint 2010 Extranets and Authentication: How will SharePoint 2010 connec...
Brian Culver
 
PPTX
Claims Based Identity In Share Point 2010
Steve Sofian
 
PPTX
How to deploy SharePoint 2010 to external users?
rlsoft
 
PPTX
Securing SharePoint Apps with OAuth
Kashif Imran
 
Authentication, Authorization, and Identity – More than meets the eye…
Scott Hoag
 
SharePoint Saturday Utah - Do you claim to be from the Azure Sky?
Liam Cleary [MVP]
 
SharePoint Authentication And Authorization SPTechCon San Francisco
Liam Cleary [MVP]
 
SharePoint Saturday Austin - Share point authentication and authorization
Liam Cleary [MVP]
 
Understanding SharePoint Apps, authentication and authorization infrastructur...
SPC Adriatics
 
SPSBE 2013 Claims for devs
Steven Van de Craen
 
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
Scott Hoag
 
DD109 Claims Based AuthN in SharePoint 2010
Spencer Harbar
 
SharePoint Saturday The Conference DC - Are you who you say you are share poi...
Liam Cleary [MVP]
 
Introduction to claims based authentication in share point 2010
Officience
 
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Officience
 
Share point security 101 sps-ottawa 2012 - antonio maio
AntonioMaio2
 
Claim Based Authentication in SharePoint 2010 for Community Day 2011
Joris Poelmans
 
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
Dan Usher
 
SharePoint 2010 - Tips and Tricks of the Trade - Avoiding Administrative Blun...
Dan Usher
 
Claims Based Authentication A Beginners Guide
Phuong Nguyen
 
SharePoint 2010 Extranets and Authentication: How will SharePoint 2010 connec...
Brian Culver
 
Claims Based Identity In Share Point 2010
Steve Sofian
 
How to deploy SharePoint 2010 to external users?
rlsoft
 
Securing SharePoint Apps with OAuth
Kashif Imran
 
Ad

More from Dan Usher (20)

PDF
SPS Pittsburgh - Getting Started with Office 365
Dan Usher
 
PDF
SPS NYC - Getting started with Office 365 for IT Pros
Dan Usher
 
PDF
2014 09-20 - SPSNJ - Worst Practices of SharePoint
Dan Usher
 
PDF
2014 09-20 - SPSNJ - Getting Started with Office 365
Dan Usher
 
PDF
SPTechCon 2014 - Boston - Worst practices of SharePoint
Dan Usher
 
PDF
SPTechCon - Boston 2014 - Getting started with Office 365
Dan Usher
 
PPTX
2014 08-15 - Getting Started with Office 365 - Office 365 Ramp Up
Dan Usher
 
PPTX
SPSNYC 2014 - Authentication and Authorization
Dan Usher
 
PPTX
2014 05-19 - getting started with office 365.release
Dan Usher
 
PDF
2014-005-17 SPS Baltimore - Getting Started with Office 365
Dan Usher
 
PPTX
SharePoint Intersections - SP11 - SharePoint and IaaS - The OnPrem in the Cloud
Dan Usher
 
PPTX
SharePoint Intersections - SP10 - Getting Started with Office 365 - Identity,...
Dan Usher
 
PPTX
SharePoint Intersections - SP09 - Introduction to SharePoint 2013 for IT Pros
Dan Usher
 
PDF
2014-03-20 - Baltimore SharePoint Users Group - Getting Started with Office 365
Dan Usher
 
PDF
2014 03-19 - CapArea.net SSIG - Getting Started with Office 365
Dan Usher
 
PDF
2014-03-13 - Getting Started with Office 365 at SUGDC
Dan Usher
 
PDF
2014 02-26 - Princeton SUG presents - Getting Started with Office 365
Dan Usher
 
PDF
2013-09-12 - SUGDC - Office 365 and Hybrid Solutions
Dan Usher
 
PDF
2013-07-24 - CapArea.NET SSIG - SharePoint 2013, A Brief Capability Overview ...
Dan Usher
 
PDF
2014-02-22 - IT Pro Camp - SharePoint 2013, A Brief Overview of Capability
Dan Usher
 
SPS Pittsburgh - Getting Started with Office 365
Dan Usher
 
SPS NYC - Getting started with Office 365 for IT Pros
Dan Usher
 
2014 09-20 - SPSNJ - Worst Practices of SharePoint
Dan Usher
 
2014 09-20 - SPSNJ - Getting Started with Office 365
Dan Usher
 
SPTechCon 2014 - Boston - Worst practices of SharePoint
Dan Usher
 
SPTechCon - Boston 2014 - Getting started with Office 365
Dan Usher
 
2014 08-15 - Getting Started with Office 365 - Office 365 Ramp Up
Dan Usher
 
SPSNYC 2014 - Authentication and Authorization
Dan Usher
 
2014 05-19 - getting started with office 365.release
Dan Usher
 
2014-005-17 SPS Baltimore - Getting Started with Office 365
Dan Usher
 
SharePoint Intersections - SP11 - SharePoint and IaaS - The OnPrem in the Cloud
Dan Usher
 
SharePoint Intersections - SP10 - Getting Started with Office 365 - Identity,...
Dan Usher
 
SharePoint Intersections - SP09 - Introduction to SharePoint 2013 for IT Pros
Dan Usher
 
2014-03-20 - Baltimore SharePoint Users Group - Getting Started with Office 365
Dan Usher
 
2014 03-19 - CapArea.net SSIG - Getting Started with Office 365
Dan Usher
 
2014-03-13 - Getting Started with Office 365 at SUGDC
Dan Usher
 
2014 02-26 - Princeton SUG presents - Getting Started with Office 365
Dan Usher
 
2013-09-12 - SUGDC - Office 365 and Hybrid Solutions
Dan Usher
 
2013-07-24 - CapArea.NET SSIG - SharePoint 2013, A Brief Capability Overview ...
Dan Usher
 
2014-02-22 - IT Pro Camp - SharePoint 2013, A Brief Overview of Capability
Dan Usher
 

Recently uploaded (20)

PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
A Presentation on Artificial Intelligence
memembruh336
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Approach and Philosophy of On baking technology
30anthuong17
 
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Encapsulation theory and applications.pdf
gurumoop
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 

SharePoint Authentication and Authorization