.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

Best way to implement authentication and authorization for a sharepoint 2010 website.

Posted By:      Posted Date: September 07, 2010    Points: 0   Category :SharePoint
Hi I come across different authentication methods in Sharepoint 2010. The sharepoint website we are develpoing as of now is Intranet. Later we are planning to move it to Internet(Public) site. What will be the best way to implement authentication and authorization for our website. If windows authentication(Classic mode authentication) is default for a sharepoint website (2010) , I have a few questions ragarding windows authentication. 1) In case of windows authentication, where should we maintain  users? 2) In case of windows authentication, how are the users created? 3) In case of windows authentication, how can I perform authorization.   If we want to use FBA(Form based authentication) in sharepoint 2010, I have a few questions ragarding FBA in sharepoint 2010. 1) In case of FBA(using Claim based authentication) , if we want to use custom database(where we are storing user details and  roles) rather than bulitin SQL membership  provider, how can we achieve this? Can anyone provide some useful resources to implement authentication(Windows or FBA or dual) and authorization for a sharepoint 2010 website with sample code? Please reply ASAP. Thanks & Regards Mahendra Babu

View Complete Post

More Related Resource Links

Using ONLY User Certificates for SharePoint 2010 Authentication/Authorization

  Hello, I am relatively new to SharePoint, and was wondering how I can accomplish using only user certificates to authenticate (and eventually authorize) access to the SharePoint 2010 Server (not just IIS). My Environment currently looks like this:  - SharePoint is SSL-enabled - User Browser Certificates (generated using OpenSSL) successfully authenticate to the IIS Server - SharePoint uses Basic Authentication (user/password based on AD credentials) I need to: - Authenticate the user to SharePoint using the User Certificate from my browser (in other words, no password authentication to access the SharePoint website, but use the certificate that was used by iis to be able to log into SharePoint) I am assuming I must use some sort of claims-based authentication.  Ideally, I would like to use ONLY the certification itself as a source of Authorized Repository for authentication. However, I am also open to having the user certificate be linked to Active Directory users as well.  I have done some research on this but am still lost as to how to approach this problem. Is there anyone that has done this or can assist me in getting this to work? Any help would be greatly appreciated. Thanks!  

Sharepoint 2010 Formbased Authentication and Search

Hi All, I have configured FBA with SQLMembership Provider in sharepoint 2010 site So, now I am able to login with both FBA and Windows authentication but I am not able to Search the content. Note : I have not extended the site like sharepoint 2007 Any Idea Thanks Saumil Thakkar

Claims Tips: Learning About Claims-Based Authentication in SharePoint 2010

Use these five tips for guidance in solving problems related to using and configuring claims.

How to create website with multi-langauge support in sharepoint 2010?

Hi Folks, I am tried to create the website with multiple Language support  in sharepoint 2010. i did not able to build the website . But I can create the website with different language at the time. kindly give me some valuable details thank you Regards Immanuel C  

Integration of Windows live Id authentication with Sharepoint 2010?

Dear folks,   please give me some details about Integration of Windows Live Id authentication With SharePoint 2010? Thank you Regards Immanuel c

AutoLogin for authenticated user via LiveID in Sharepoint 2010 (Claims Based Authentication)

Hi,     Im working in integrating LiveID authentication in my Sharepoint site. Live id gives back a token of the user with which i created a dummy profile using MembershipProvider.CreateUser. Now i have to auto login the user with the profile i created, i mean i have to force login to my sharepoint site using the created dummy user details without asking the user to give username n password.Any suggestion will be a great help for me to proceed.   Thanks Saravanan Michael

How to increase the timeout for a SharePoint 2010 website

The default timeout for an Http Request in SharePoint Foundation 2010 is 120 seconds*.  Any Http Requests above this 120 seconds will be met with a "Request timed out" error as displayed in the SharePoint logs: Unexpected     System.Web.HttpException: Request timed out. Note: The SharePoint logs can be found at:     C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\LOGS To increase this timeout you will need to modify the web.config file for the SharePoint Website.  If you are using the default SharePoint configuration, then the web.config file will be found at: C:\inetpub\wwwroot\wss\VirtualDirectories\80\web.config Open this file in Notepad and then scroll down to the system.web > httpRuntime element (about half way down the file).  To increase the timeout, add the executionTimeout attribute to the httpRuntime element with a value of the number of seconds for the timeout.  For example, to increase the timeout to 5 minutes, add an executionTimeout of 300 like this: <httpRuntime maxRequestLength="51200" executionTimeout="300" /> In the default SharePoint Foundation 2010 web.config file it will look like this: Save the web.config file and now the timeout for HttpRequests will have been increased (Of course you need to ask why a request is taking more than 2

SharePoint 2010 Claims Based Authentication - anonymous site is prompting for CBA auth when opening

Hi, I have CBA setup successfully on my sites.  One site is setup for anonymous access and I have disabled "client integration" on that web application. I have a list of MS Office documents on a wiki.  When I click on one I am asked to either save or open or cancel.  Saving works fine but when I choose open, it launches the associated MS Office app.  I am then prompted for a login from CBA.  I can click cancel and the logon screen appears again.  After clicking cancel the 2nd time the document appears in the MS Office app, Word in this case. My question is how do I prevent my users from being prompted for a CBA login when clicking on these files and opening them in the native app on their machine?      --TR

LiveID authentication for SharePoint 2010

Have there been any changes to SharePoint 2010 in terms of enabling LiveID authentication for a SharePoint site?If not, is http://spwla.codeplex.com/ still the most applicable resource for enabling this functionality?Any other links or recommendations (particularly instructions applicable to someone on the IT Pro side) would be quite welcome.Thanks all.Laura E. Hunter - Directory Services MVP Identity Architect - Oxford Computer Group ILM2 & Identity Training, Upcoming Dates - http://www.oxfordcomputergroup.com/course-dates.aspx

How to implement Social Networking Features in Sharepoint 2010

Hi, I am New to Sharepoint.I have to implement Social Networking Features in Sharepoint 2010.I searched it on net and found some links having details of the new and improved Social Networking Features in Sharepoint 2010,But they have not mentioned the steps to implement that. Please help me and let me know the steps to follow to implement those features in Sharepoint 2010. Kindly provide me some links if anyone has reffered it. Thanks in Advance. Regards, Amar

Cannot Login with Forms Based Authentication to SharePoint 2010 - Issue with the SecurityTokenServic

Please be advised I have followed the steps on http://donalconlon.wordpress.com/2010/02/23/configuring-forms-base-authentication-for-sharepoint-2010-using-iis7/. I have tried to fix the following issue for a week using different farms and SharePoint 2010 installations, however I am getting the following error when trying to authenticate using Forms Based into a Claims site: Cannot get Membership Provider with name FBARoleProvider The membership provider for this process was not properly configured. You must configure the membership provider in the .config file for every SharePoint process. 1. I am certain the membership provider is configured in the SecurityTokenServiceApplication webservice as I can manage users and roles in IIS7 using the SecurityTokenServiceApplication website. 2. I am certain that membership provider is configured in the both the Claims Web Application and Central Admin as I can manage users and roles in IIS7 using their websites. 3. I know the issue is the SecurityTokenServiceApplication service as I had to set <serviceDebug includeExceptionDetailInFaults="true" /> to get the error above. 4. I can log into the Claims Based Application using windows authentication, however I am unable to see the users on the people picker despite that I can see them from the application's site on IIS

Sharepoint 2010 Building publishing (Internet facing) website

Is there documentation on how to create Publishing site example step by step, Including contents, Documents sharing content between websites (like news). For some reason I have not finding any documentation. Any pointers is greatly appreciated. Thanks Vee    

Forms Based Authentication in SharePoint 2010



I'm trying to figure out how to setup FBA in SharePoint 2010.  I know that FBA is now just a subset of Claims Based Authentication, but I'm confused by some of the different approaches that I've seen on some technet blogs:



Having seen the two, one doesn't setup a SQL while one does.  Both are vague in the user account that is used to manage the FBA users.  I'd like to get some clarification if that's possible.  Thanks in advance!

Yahoo - Google Apps Email Authentication in SharePoint 2010


There is idea about the use of the Form Based Authentication by the Google Apps Email ID.

Like I am employee of the ABC company which has Google Apps and Member of the Developer Team

so My ID is kashyap@abc.com in Google Apps.

So Is it possible to authenticate coming user to site with the ABC's Employee via Google Apps?

We can also think about oAuth Authentication.

How can we configure the authentication?

I need Ideas and suggetions

Thank You

Regards, Kashyap Patel http://interview-question-aspnet.blogspot.com/

Authorization Manager (AzMan) as role provider with Windows integrated authentication in SharePoint


Hi all,

First I will describe my environment: Windows Server 2008 R2 x64, IIS 7, SQL Server 2008 and MOSS 2007 Enterprise Edition SP2 x64.

I am trying to setup SharePoint 2007 portal to use Windows integrated authentication with Authorization Manager (AzMan) as role provider.

I have set up an authorization store and defined a set of roles in there. Further I configured the web.configs of my SharePoint environment to use AzMan as role provider.

In IIS I see the roles appearing, but unfortunately those roles are not available in my SharePoint portal. I also see notification in IIS stating that Forms authentication has to be used

What should I do to configure it correctly? Is it even possible to use AzMan with Windows authentication in SharePoint 2007?

Thanks in advance.

With kind regards,




Page/url level authorization in SharePoint 2010?



Does SharePoint support authorization on page/url level? Can I allow user with certain permission/group to see a certain page/url and prevent others from accessing the same page/url?

IIS 7 URL Authorization can be used with SharePoint 2010?



I want to protect unauthorized user from accessing certain pages/URL based on the AD directory group in SharePoint 2010 environment? Can I use IIS 7 URL Authorization for this purpose? I want the authorization check to be declarative not through code.

Another question, can I protect certain pages (.aspx) using SharePoint’s group/permissions in declarative way?


ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend