Your SlideShare is downloading. ×
who am I?
Dan
Usher

#bb
what about this guy?

#ct
about you
housekeeping
• Phones silenced, phasers set to stun
• Ask questions
• Please remember to turn in your filled out
bingo car...
#bb
Security
http://xkcd.com/1240/

#ct
#ct
#bb
#ct
#bb
#bb
#ct
• The act of authorizing.
• Permission or power granted by an authority;
•
•
•
•

sanction.
To give authority or official ...
#ct
#bb
#bb
#bb
http://go.spdan.com/cba

#bb
#ct
#ct
#bb
#ct

http://go.spdan.com/claimsencoding
#bb

Source: http://go.spdan.com/iisauth

ASP.NET Authentication
Identity Provider
Security Token Service
aka IP-STS

1.
2.
3.
4.
5.
6.
7.
8.

SharePoint 2010
aka RP

Resource Requested
A...
#bb
#ct
#ct
#ct
#ct
#bb
#bb
#bb
https://sts.domain.com

#ct
#ct
#bb
#bb
#bb
Web Application / Site Collection
Secured Site / Site Collection / Content

Anonymous

Authentication

Content Repository
...
#ct
Real World
#bb
#ct
Usher_Daniel@bah.com
@binarybrewery
www.sharepointdan.com

scott.hoag@appliedis.com
@ciphertxt
http://psconfig.com
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…
Upcoming SlideShare
Loading in...5
×

SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…

261

Published on

In today’s complex market place of corporate partnerships and relationships, sharing information is pertinent to ensuring that business operations are conducted in a secure computing environment with trusted entities being provided access to protected information.

In this session, Dan and Scott will discuss the basics of authentication and authorization in relation to the SharePoint platform. Further, we will be discussing the technical underpinnings of the SharePoint platform’s processing of a user’s identity dependent on identity provider and authorization settings.

As a part of this session we will demonstrate different authentication and authorization configurations that are common place in today’s business settings to include when to use:
• Integrated Windows Authentication
• Forms Based Authentication using SQL Server
• ADFS as a Trusted Identity Provider
• Threat Management Gateway with Kerberos Constrained Delegation using client certs

After attending this session, attendees will have a better grasp of the configuration complexities involved with each scenario as well as the user experience impacts based on the path taken.

Published in: Technology, Health & Medicine
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
261
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "SPSNYC - Authentication, Authorization, and Identity – More than meets the eye…"

  1. 1. who am I? Dan Usher #bb
  2. 2. what about this guy? #ct
  3. 3. about you
  4. 4. housekeeping • Phones silenced, phasers set to stun • Ask questions • Please remember to turn in your filled out bingo cards and event evaluations for prizes. • SharePint is sponsored by Slalom at Whiskey Trader (Between 55th and 56th on 6th Avenue). • Follow SharePoint Saturday New York City on Twitter @spsnyc and hashtag #spsnyc • Do not feed Scott donuts… #bb
  5. 5. #bb
  6. 6. Security
  7. 7. http://xkcd.com/1240/ #ct
  8. 8. #ct
  9. 9. #bb
  10. 10. #ct
  11. 11. #bb
  12. 12. #bb
  13. 13. #ct
  14. 14. • The act of authorizing. • Permission or power granted by an authority; • • • • sanction. To give authority or official power to. To give authority for; formally sanction (an act or proceeding). To establish by authority or usage. Sometimes we call it AuthZ. #ct
  15. 15. #ct
  16. 16. #bb
  17. 17. #bb
  18. 18. #bb
  19. 19. http://go.spdan.com/cba #bb
  20. 20. #ct
  21. 21. #ct
  22. 22. #bb
  23. 23. #ct http://go.spdan.com/claimsencoding
  24. 24. #bb Source: http://go.spdan.com/iisauth ASP.NET Authentication
  25. 25. Identity Provider Security Token Service aka IP-STS 1. 2. 3. 4. 5. 6. 7. 8. SharePoint 2010 aka RP Resource Requested AuthN Request / Redirect AuthN Request Security Token Security Token Request Service Token Resource Request w/Service Token Resource Sent #bb
  26. 26. #bb
  27. 27. #ct
  28. 28. #ct
  29. 29. #ct
  30. 30. #ct
  31. 31. #bb
  32. 32. #bb
  33. 33. #bb
  34. 34. https://sts.domain.com #ct
  35. 35. #ct
  36. 36. #bb
  37. 37. #bb
  38. 38. #bb
  39. 39. Web Application / Site Collection Secured Site / Site Collection / Content Anonymous Authentication Content Repository Is In Site Group? Content Does user have claim attribute? #ct
  40. 40. #ct
  41. 41. Real World
  42. 42. #bb
  43. 43. #ct
  44. 44. Usher_Daniel@bah.com @binarybrewery www.sharepointdan.com scott.hoag@appliedis.com @ciphertxt http://psconfig.com

×