Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

SPSNYC 2014 - Authentication and Authorization

701 views

Published on

Looking to implement SharePoint? Thinking about where your user's identity will come from? Concerned about how you need to secure your system and make it accessible from the outside world? Then this session is for you...

Published in: Technology
  • Be the first to comment

  • Be the first to like this

SPSNYC 2014 - Authentication and Authorization

  1. 1. SPS 2014
  2. 2. • • • • Dan Usher Senior Lead Engineer Booz Allen Hamilton usher@binarybrewery.io http://www.sharepointdan.com @binarybrewery
  3. 3. http://go.spdan.com/kerberos2010 http://go.spdan.com/kerberos2013 http://go.spdan.com/multihopwinrm
  4. 4. http://xkcd.com/1240/
  5. 5. Fortunately we hardened our servers… Right? Or maybe not…
  6. 6. Anonymous Authentication Is In Site Group? Does user have claim attribute? Web Application / Site Collection Secured Site / Site Collection / Content Content Repository Content
  7. 7. http://go.spdan.com/cba
  8. 8. http://go.spdan.com/cba
  9. 9. http://go.spdan.com/claimsencoding
  10. 10. http://technet.microsoft.com/en- us/library/cc262939(v=office.15).aspx
  11. 11. KB896861 DisableLoopbackCheck & SharePoint: What every admin and developer should know
  12. 12. TechNet CodePlex > $passphrase = ConvertTo-SecureString -asPlainText -Force > Set-SPPassPhrase -PassPhrase $passphrase -Confirm
  13. 13. https://sts.domain.com
  14. 14. usher@binarybrewery.io @binarybrewery www.sharepointdan.com

×