Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.
Tom Resing, MCM + Author
Managing Authentication
and Authorization --
Controlling Access to
Documents and Data
Photo by mbrand - Creative Commons Attribution-NonCommercial License https://www.flickr.com/photos/87317539@N00 Created wi...
Photo by YanivG - Creative Commons Attribution-NonCommercial-ShareAlike License https://www.flickr.com/photos/17796222@N00...
Photo by ell brown - Creative Commons Attribution License https://www.flickr.com/photos/39415781@N06 Created with Haiku De...
Photo by cackhanded - Creative Commons Attribution-NonCommercial License https://www.flickr.com/photos/37354253@N00 Create...
Photo by mikecogh - Creative Commons Attribution-NonCommercial-ShareAlike License https://www.flickr.com/photos/89165847@N...
Photo by Jamison_Judd - Creative Commons Attribution License https://www.flickr.com/photos/14072475@N07 Created with Haiku...
Photo by Stuck in Customs - Creative Commons Attribution-NonCommercial-ShareAlike License https://www.flickr.com/photos/95...
Photo by kevin dooley - Creative Commons Attribution License https://www.flickr.com/photos/12836528@N00 Created with Haiku...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 11
Tom Resing
2x Past Microsoft Most Valuable Prof...
The leading provider of modern
communication and collaboration
solutions for business.
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 14
Authentication Topics
• Authentication Types
• ...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 17
• Most common authentication provider for Share...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 19
Hierarchy Topics
• Physical Security
• Network ...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 20
Physical and Network Security
• Servers
• Backu...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 21
• Wikipedia says: “In information security, com...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 23
Authorization Topics
• Permissions Boundaries
•...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 24
User Policy
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 25
• Example: My Sites
Self Service Site Creation
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 26
• Create Classic Mode Web Application https://t...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 27
ULS Viewer
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 28
• Honors permissions
– Must be maintained
Search
Reference Material
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 30
Reference
ULSViewer.exe download (MSDN archive ...
© 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 31
Reference
What’s new in SharePoint 2013
Adminis...
Tom Resing’s SharePoint Blog
www.tomresing.com
Email Resingnet-website@yahoo.com
Twitter @resing
Connect
© 2015 Jive Software, Inc. All rights reserved | Jive ConfidentialJive is the leading provider of modern communication and...
SharePoint Authorization and Authentication-Controlling Access to Documents and Data
SharePoint Authorization and Authentication-Controlling Access to Documents and Data
SharePoint Authorization and Authentication-Controlling Access to Documents and Data
SharePoint Authorization and Authentication-Controlling Access to Documents and Data
SharePoint Authorization and Authentication-Controlling Access to Documents and Data
SharePoint Authorization and Authentication-Controlling Access to Documents and Data
Prochain SlideShare
Chargement dans…5
×

SharePoint Authorization and Authentication-Controlling Access to Documents and Data

770 vues

Publié le

Slides accompanied my presentation at SPTechCon Austin 2015

Publié dans : Logiciels
  • Soyez le premier à commenter

  • Soyez le premier à aimer ceci

SharePoint Authorization and Authentication-Controlling Access to Documents and Data

  1. 1. Tom Resing, MCM + Author Managing Authentication and Authorization -- Controlling Access to Documents and Data
  2. 2. Photo by mbrand - Creative Commons Attribution-NonCommercial License https://www.flickr.com/photos/87317539@N00 Created with Haiku Deck
  3. 3. Photo by YanivG - Creative Commons Attribution-NonCommercial-ShareAlike License https://www.flickr.com/photos/17796222@N00 Created with Haiku Deck
  4. 4. Photo by ell brown - Creative Commons Attribution License https://www.flickr.com/photos/39415781@N06 Created with Haiku Deck
  5. 5. Photo by cackhanded - Creative Commons Attribution-NonCommercial License https://www.flickr.com/photos/37354253@N00 Created with Haiku Deck
  6. 6. Photo by mikecogh - Creative Commons Attribution-NonCommercial-ShareAlike License https://www.flickr.com/photos/89165847@N00 Created with Haiku Deck
  7. 7. Photo by Jamison_Judd - Creative Commons Attribution License https://www.flickr.com/photos/14072475@N07 Created with Haiku Deck
  8. 8. Photo by Stuck in Customs - Creative Commons Attribution-NonCommercial-ShareAlike License https://www.flickr.com/photos/95572727@N00 Created with Haiku Deck
  9. 9. Photo by kevin dooley - Creative Commons Attribution License https://www.flickr.com/photos/12836528@N00 Created with Haiku Deck
  10. 10. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 11 Tom Resing 2x Past Microsoft Most Valuable Professional (MVP) Award Winner 2013, 2014
  11. 11. The leading provider of modern communication and collaboration solutions for business.
  12. 12. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 14 Authentication Topics • Authentication Types • Focus on Claims • Active Directory Integration
  13. 13. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 17 • Most common authentication provider for SharePoint • Easy to use with claims or classic mode • Integrates with Active Directory Federation Services (AD FS) for SAML 2.0 support Active Directory
  14. 14. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 19 Hierarchy Topics • Physical Security • Network Security • Content Databases • Farm Level • SharePoint Objects and Groupings
  15. 15. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 20 Physical and Network Security • Servers • Backups • Tapes • File copies • Network
  16. 16. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 21 • Wikipedia says: “In information security, computer science, and other fields, the principle of least privilege (also known as the principle of minimal privilege or the principle of least authority) requires that in a particular abstraction layer of a computing environment, every module (such as a process, a user or aprogram depending on the subject) must be able to access only the information and resources that are necessary for its legitimate purpose.[1][2]”- • Must apply at every level – Including the file system and tape backups! Principle Of Least Privilege
  17. 17. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 23 Authorization Topics • Permissions Boundaries • Self Service Site Creation • Managing Authentication and Authorization with PowerShell • Troubleshooting Tools • Search Permission Trimming
  18. 18. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 24 User Policy
  19. 19. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 25 • Example: My Sites Self Service Site Creation
  20. 20. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 26 • Create Classic Mode Web Application https://technet.microsoft.com/en-us/library/gg276326.aspx • Turn on Developer Dashboard PowerShell Tips New-SPWebApplication -Name “Classic AuthN Site" -ApplicationPool “OctoberSP AppPool"-ApplicationPoolAccount (Get-SPManagedAccount "CONTOSOsp_farm") -Port 81 -URL "http://octobersp.cloudapp.net/" $svc = [Microsoft.SharePoint.Administration.SPWebService]::ContentService $dds = $svc.DeveloperDashboardSettings $dds.DisplayLevel = "On" $dds.Update()
  21. 21. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 27 ULS Viewer
  22. 22. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 28 • Honors permissions – Must be maintained Search
  23. 23. Reference Material
  24. 24. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 30 Reference ULSViewer.exe download (MSDN archive version) http://www.benjaminathawes.com/2014/05/26/ulsviewer-exe-download/ Plan self-service site creation in SharePoint 2013 https://technet.microsoft.com/en-us/library/cc263483.aspx Fiddler http://www.telerik.com/fiddler
  25. 25. © 2015 Jive Software, Inc. All rights reserved | Jive Confidential Page 31 Reference What’s new in SharePoint 2013 Administration – Todd and Shane Professional SharePoint 2013 Administration (2010 edition, too)
  26. 26. Tom Resing’s SharePoint Blog www.tomresing.com Email Resingnet-website@yahoo.com Twitter @resing Connect
  27. 27. © 2015 Jive Software, Inc. All rights reserved | Jive ConfidentialJive is the leading provider of modern communication and collaboration solutions for business. For more information, visit www.jivesoftware.com

×