0
Binh Thanh NguyenSolutions Architect and Project ManagerBamboo Solutions Corporation Vietnam
• Identity and Identity Providers• Authentication and Authorization• Identity challenges in SharePoint 2007• Claims-Based ...
• What is Identity?  – A set of attributes to describe a user
• What is Identity Providers?  – Composed of attributes/identifiers• Examples:  – Active Directory, Directory Services
• What is Authentication (AuthN)?  – Authentication is the process of    identification and validation of a    users ident...
• Authentication is intertwined within  SharePoint 2007• Very Complex in doing the  configuration• Access control only thr...
• What is Claims?    Issuer: Police                     Dept.                                      Issuer: VN             ...
Request ID Card        ID Card                  Trust      ID Card       Ticket      Ticket
• The service component that builds, signs,  and issues security tokens.• Supports multiple credential types• Identity Pro...
• SharePoint STS is always relying party STS  Built on Windows Identity Foundation  (WIF)• Multiple authentication types• ...
Send Cookie Send token Issue tokenSend tokenIssue token Authenticate
Browser                         Issuer           Get /                         Active Directory           302             ...
-Classic   -Claims
• Support existing identity infrastructure   – Active Directory   – LDAP, SQL   – WebSSO and Identity Management Systems• ...
Configure claims-based authentication       using Windows Live ID
• MSDN and Technet:  – http://technet.microsoft.com/en-    us/library/ff973117.aspx#section3  – http://blogs.technet.com/b...
THANK YOU!
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam
Upcoming SlideShare
Loading in...5
×

Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam

1,347

Published on

Presented by Nguyen Thanh Binh, this presentation will give you a tour around the Claims-based authentication in SharePoint 2010 and how to
implement the simple Claims-based authentication on your SharePoint 2010 site.


SharePoint Saturday Vietnam was sponsored by Officience. Visit http://www.officience.com/

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,347
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
40
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "Claims based authentication in SharePoint 2010 - SharePoint Saturday Vietnam"

  1. 1. Binh Thanh NguyenSolutions Architect and Project ManagerBamboo Solutions Corporation Vietnam
  2. 2. • Identity and Identity Providers• Authentication and Authorization• Identity challenges in SharePoint 2007• Claims-Based Identity• Claims-Based Authentication in Microsoft SharePoint 2010• Demo• Q&A
  3. 3. • What is Identity? – A set of attributes to describe a user
  4. 4. • What is Identity Providers? – Composed of attributes/identifiers• Examples: – Active Directory, Directory Services
  5. 5. • What is Authentication (AuthN)? – Authentication is the process of identification and validation of a users identity• What is Authorization (AuthZ)? – Determines whether that identity has access to a particular resource such as sites, content, and other features the user can access.
  6. 6. • Authentication is intertwined within SharePoint 2007• Very Complex in doing the configuration• Access control only through attribute providersSo… What is the SOLUTIONS ???
  7. 7. • What is Claims? Issuer: Police Dept. Issuer: VN Railway – Information Full Name Name about the user ID Number Frequent flyer number … such as Full Address Train number name, e-mail, Regional Bus age, group, Date of birth Seat number etc. Date of issue Date of issue Sex Picture
  8. 8. Request ID Card ID Card Trust ID Card Ticket Ticket
  9. 9. • The service component that builds, signs, and issues security tokens.• Supports multiple credential types• Identity Provider STS (IP-STS) and a Relying Party STS(RP-STS). – An IP-STS is an STS that issues tokens that can be used to request service tokens from RP-STSs. – An RP-STS can also consume other types of tokens (or credentials), for example an NT token that comes from the domain controller or the (KDC)• STSs can be chained
  10. 10. • SharePoint STS is always relying party STS Built on Windows Identity Foundation (WIF)• Multiple authentication types• Identity Provider neutral – Configured via Central Admin or PowerShell• Delegation of user identity between applications.
  11. 11. Send Cookie Send token Issue tokenSend tokenIssue token Authenticate
  12. 12. Browser Issuer Get / Active Directory 302 AuthN SAML Token Post Process Token Cookie Cookie 302 Process Claims
  13. 13. -Classic -Claims
  14. 14. • Support existing identity infrastructure – Active Directory – LDAP, SQL – WebSSO and Identity Management Systems• Multiple authentication methods per SharePoint Web Application• Enable automatic, secure identity delegation – Cross-machines & cross-farm• Support “no-credential” connections to External web services• Standards-based and Interoperable
  15. 15. Configure claims-based authentication using Windows Live ID
  16. 16. • MSDN and Technet: – http://technet.microsoft.com/en- us/library/ff973117.aspx#section3 – http://blogs.technet.com/b/ritaylor/archive/20 09/06/03/claims-based-authentication-an- overview.aspx – http://technet.microsoft.com/en- us/sharepoint/ff678022.aspx#lesson2 – http://blogs.msdn.com/b/russmax/archive/201 0/05/27/understanding-sharepoint-2010- claims-authentication.aspx• Microsoft PDC: – http://www.microsoftpdc.com/2009/SVC26
  17. 17. THANK YOU!
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×