Claims Based authentication in SharePoint 2010

Submitted by Tristan on Tue, 07/21/2009 - 10:53

Microsoft have recently updated their protocols information for SharePoint, incorporating a number of SharePoint 2010 changes. Included in the updates is information about claims based authentication in SharePoint 2010.

As we collect more information, this page will be updated. Some notes so far:

The protocols mentioned are:

SharePoint Claim Provider Service Web Service Protocol Specification

SharePoint Security Token Service Web Service Protocol Specification

As expected both protocols are implemented on top of SOAP over HTTP.

 

Claim based authentication mode

It appears that SharePoint web applications can be put in to claim-based authentication mode. (IsClaimsMode method.)

Claim providers

There are four types of claim providers: System, AllUsers, Group, and People.

System claims can be of several types:  farmId, processidentitylogonname, processidentitysid, windowstoken/handle , processid

Value types appear to be a GUID (persisted as a string) or a string.

API

SPClaim is a claim associated with an entity.

 

 

Most Popular

Using Office Outlook 2010 with Lotus Notes backend connector (DAMO) on Windows 7.
25 weeks 1 day ago
Introduction to Claims-based Authentication in SharePoint 2010 in plain English
40 weeks 18 hours ago
Firewall rules and protocol usage
1 year 7 weeks ago
Access Control with SharePoint Groups
1 year 9 weeks ago
Using the People Picker Editor picker control
1 year 4 weeks ago
Section 508 Compliance with SharePoint
1 year 1 week ago
Authentication options
1 year 2 weeks ago
SharePoint Templates
48 weeks 3 days ago