I am relatively new to SharePoint, and was wondering how I can accomplish using only user certificates to authenticate (and eventually authorize) access to the SharePoint 2010 Server (not just IIS).
My Environment currently looks like this:
- SharePoint is SSL-enabled
- User Browser Certificates (generated using OpenSSL) successfully authenticate to the IIS Server
- SharePoint uses Basic Authentication (user/password based on AD credentials)
I need to:
- Authenticate the user to SharePoint using the User Certificate from my browser (in other words, no password authentication to access the SharePoint website, but use the certificate that was used by iis to be able to log into SharePoint)
I am assuming I must use some sort of claims-based authentication.
Ideally, I would like to use ONLY the certification itself as a source of Authorized Repository for authentication. However, I am also open to having the user certificate be linked to Active Directory users as well.
I have done some research on this but am still lost as to how to approach this problem. Is there anyone that has done this or can assist me in getting this to work?
Any help would be greatly appreciated.
View Complete Post