SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…

  • 192 views
Uploaded on

In today’s complex market place of corporate partnerships and relationships, sharing information is pertinent to ensuring that business operations are conducted in a secure computing environment with …

In today’s complex market place of corporate partnerships and relationships, sharing information is pertinent to ensuring that business operations are conducted in a secure computing environment with trusted entities being provided access to protected information.

In this session, Dan and Scott will discuss the basics of authentication and authorization in relation to the SharePoint platform. Further, we will be discussing the technical underpinnings of the SharePoint platform’s processing of a user’s identity dependent on identity provider and authorization settings.

As a part of this session we will demonstrate different authentication and authorization configurations that are common place in today’s business settings to include when to use:
• Integrated Windows Authentication
• Forms Based Authentication using SQL Server
• ADFS as a Trusted Identity Provider
• Threat Management Gateway with Kerberos Constrained Delegation using client certs

After attending this session, attendees will have a better grasp of the configuration complexities involved with each scenario as well as the user experience impacts based on the path taken.

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
192
On Slideshare
0
From Embeds
0
Number of Embeds
1

Actions

Shares
Downloads
0
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. who am I? Dan Usher #bb
  • 2. what about this guy? #ct
  • 3. about you
  • 4. housekeeping • Phones silenced, phasers set to stun • Ask questions • Please remember to turn in your filled out bingo cards and event evaluations for prizes. • SharePint is sponsored by Slalom at Whiskey Trader (Between 55th and 56th on 6th Avenue). • Follow SharePoint Saturday New York City on Twitter @spsnyc and hashtag #spsnyc • Do not feed Scott donuts… #bb
  • 5. #bb
  • 6. Security
  • 7. http://xkcd.com/1240/ #ct
  • 8. #ct
  • 9. #bb
  • 10. #ct
  • 11. #bb
  • 12. #bb
  • 13. #ct
  • 14. • The act of authorizing. • Permission or power granted by an authority; • • • • sanction. To give authority or official power to. To give authority for; formally sanction (an act or proceeding). To establish by authority or usage. Sometimes we call it AuthZ. #ct
  • 15. #ct
  • 16. #bb
  • 17. #bb
  • 18. #bb
  • 19. http://go.spdan.com/cba #bb
  • 20. #ct
  • 21. #ct
  • 22. #bb
  • 23. #ct http://go.spdan.com/claimsencoding
  • 24. #bb Source: http://go.spdan.com/iisauth ASP.NET Authentication
  • 25. Identity Provider Security Token Service aka IP-STS 1. 2. 3. 4. 5. 6. 7. 8. SharePoint 2010 aka RP Resource Requested AuthN Request / Redirect AuthN Request Security Token Security Token Request Service Token Resource Request w/Service Token Resource Sent #bb
  • 26. #bb
  • 27. #ct
  • 28. #ct
  • 29. #ct
  • 30. #ct
  • 31. #bb
  • 32. #bb
  • 33. #bb
  • 34. https://sts.domain.com #ct
  • 35. #ct
  • 36. #bb
  • 37. #bb
  • 38. #bb
  • 39. Web Application / Site Collection Secured Site / Site Collection / Content Anonymous Authentication Content Repository Is In Site Group? Content Does user have claim attribute? #ct
  • 40. #ct
  • 41. Real World
  • 42. #bb
  • 43. #ct
  • 44. Usher_Daniel@bah.com @binarybrewery www.sharepointdan.com scott.hoag@appliedis.com @ciphertxt http://psconfig.com