Upload File

sharepoint authentication and authorization

41

Upload: dan-usher

Post on 02-Jul-2015

381 views

Category:

Technology


3 download

Report

DESCRIPTION

SharePoint as a platfor

TRANSCRIPT

Page 1: SharePoint Authentication and Authorization
Page 2: SharePoint Authentication and Authorization

Scott

Hoag

ciphertxt

Page 3: SharePoint Authentication and Authorization

Dan

Usher

usher

Page 4: SharePoint Authentication and Authorization

Jason

Himmelstein

sharepointlhorn

Page 5: SharePoint Authentication and Authorization

introductions

Page 6: SharePoint Authentication and Authorization

a few ground rules…

Page 7: SharePoint Authentication and Authorization
Page 8: SharePoint Authentication and Authorization

Security

Page 9: SharePoint Authentication and Authorization

http://xkcd.com/109/

Page 10: SharePoint Authentication and Authorization
Page 11: SharePoint Authentication and Authorization
Page 12: SharePoint Authentication and Authorization
Page 13: SharePoint Authentication and Authorization
Page 14: SharePoint Authentication and Authorization
Page 15: SharePoint Authentication and Authorization
Page 16: SharePoint Authentication and Authorization
Page 17: SharePoint Authentication and Authorization
Page 18: SharePoint Authentication and Authorization
Page 19: SharePoint Authentication and Authorization
Page 20: SharePoint Authentication and Authorization

authorizing

authority

authority

authority

authority

Page 21: SharePoint Authentication and Authorization
Page 22: SharePoint Authentication and Authorization
Page 23: SharePoint Authentication and Authorization

http://go.spdan.com/cba

http://go.spdan.com/cba
Page 24: SharePoint Authentication and Authorization
Page 25: SharePoint Authentication and Authorization

htt

p:/

/go.s

pdan.c

om

/cla

imsencodin

g

Page 26: SharePoint Authentication and Authorization

Sourc

e:

htt

p:/

/go

.sp

da

n.c

om

/iis

au

th

AS

P.N

ET

Auth

entication

http://go.spdan.com/iisauth
Page 27: SharePoint Authentication and Authorization

1. Resource Requested

2. AuthN Request / Redirect

3. AuthN Request

4. Security Token

5. Security Token Request

6. Service Token

7. Resource Request w/Service Token

8. Resource Sent

Identity Provider

Security Token Service

aka IP-STS

SharePoint 2010

aka RP

Page 28: SharePoint Authentication and Authorization

Side Story

SharePint Anyone?

Page 29: SharePoint Authentication and Authorization
Page 30: SharePoint Authentication and Authorization
Page 31: SharePoint Authentication and Authorization
Page 32: SharePoint Authentication and Authorization
Page 33: SharePoint Authentication and Authorization
Page 34: SharePoint Authentication and Authorization

https://sts.domain.com

https://sts.company.com/
Page 35: SharePoint Authentication and Authorization
Page 36: SharePoint Authentication and Authorization

Anonymous

Authentication

Is In Site Group?

Does user have claim attribute?

Web Application / Site Collection

Secured Site / Site Collection / Content

Content Repository

Content

Page 37: SharePoint Authentication and Authorization
Page 38: SharePoint Authentication and Authorization

Real World

Page 39: SharePoint Authentication and Authorization
Page 40: SharePoint Authentication and Authorization

Questions / Evals

Page 41: SharePoint Authentication and Authorization

[email protected]

@usher

www.sharepointdan.com

[email protected]

@ciphertxt

http://psconfig.com

[email protected]

@sharepointlhorn

www.sharepointlonghorn.com

[email protected]

@helloitsliam

www.helloitsliam.com

mailto:[email protected]
http://www.twitter.com/usher
http://www.sharepointdan.com
mailto:[email protected]
http://www.twitter.com/ciphertxt
http://psconfig.com
mailto:[email protected]
mailto:[email protected]
http://www.twitter.com/sharepointlhorn
http://www.sharepointlonghorn.com
mailto:[email protected]
mailto:[email protected]
mailto:http://www.twitter.com/helloitsliam
mailto:http://www.twitter.com/helloitsliam
mailto:http://www.twitter.com/helloitsliam
http://www.helloitsliam.com

Forms Authentication, Authorization, User Accounts, and ... · PDF fileForms Authentication, Authorization, User Accounts, and Roles :: User-Based Authorization ... ASP.NET makes it

JavaTM Authentication and Authorization Service

Forms Authentication, Authorization, User Accounts, and …download.microsoft.com/.../aspnet_tutorial02_FormsAuth_vb.pdf · Forms Authentication, Authorization, User Accounts, and

SharePoint Saturday Austin - Share point authentication and authorization

Authorization and Authentication in gLite

Forms Authentication, Authorization, User Accounts, and Roles :: …€¦ · Forms Authentication, Authorization, User Accounts, and Roles :: User-Based Authorization Introduction

Authorization, Authentication, And Security

Identification, Authentication and Authorization on the ... · Identification, Authentication and Authorization on the ... these concerns focus on identification, authentication and

Authentication and Authorization (including focussing on ...iamsect.ncl.ac.uk/dissemination/breaking-boundaries/Authentication … · Distributed authentication and authorization

Understanding SharePoint Apps, authentication and authorization infrastructure in SP 2013 / SharePoint Online - Zvonimir Mavretic

SharePoint Authentication And Authorization SPTechCon San Francisco

Configuring Local Authentication and Authorization...Configuring Local Authentication and Authorization • FindingFeatureInformation,page1 • HowtoConfigureLocalAuthenticationandAuthorization,page1

SharePoint 2010 Extranets & Authentication

ESPC15 - Extending Authentication and Authorization

Authentication / Authorization with Drupal...Authentication / Authorization with Drupal Authorization: Drupal LDAP Good BAD Pros • Uses CornellAD Cons • Only applies application

Authentication - University of Southern Californiacsci530l/slides/lab-authentication-color.pdf · authentication != authorization – authorization establishes what user can do once

Authentication, authorization, and security in SharePoint 2013 2013 security overvie… · SharePoint 2013 does not support working with a case-sensitive membership provider. It uses

Authentication, Authorization, and Accounting

Authentication, authorization, and security in SharePoint 2013shareparts.com/Repository/SharePoint 2013 Security Overview.pdf · Authentication, authorization, and security in SharePoint

Authentication and Authorization in gLite

SharePoint Authentication

SharePoint Authorization and Authentication-Controlling Access to Documents and Data

SPC204 Security Problems in SharePoint 2010 Authentication and Authorization

Authentication & Authorization Assaf Gottlieb

SharePoint Saturday Events - Authentication, Authorization and Identity - More Than Meets the eye

Web API authentication and authorization

Authorization and Authentication Infrastructure

Best Practices: Authentication & Authorization Infrastructure€¢Tokens: in modern security standards are all about them. •Decoupling authentication / authorization (OIDC authentication

Authentication and Authorization in Condor

SharePoint 2010 Extranets & Authentication · SharePoint 2010 Security • SharePoint 2010 changes authentication • Uses classic mode and claims based authentication • Classic

Authentication, Authorization, & Identity Management

12. ASP.net Authentication and Authorization

Authentication Authorization and Accounting Configuration ...AAA Authentication General Configuration Procedure 4 RADIUS Change of Authorization 5 Change-of-Authorization Requests

Authentication and authorization

Opensource Authentication and Authorization