Chapter 12: Securing Your SharePoint 2010 Applications
What You’ll Learn In This Chapter:
- Authenticating users in SharePoint
- Understanding the difference between farm-level solutions and sandboxed solutions
- Understanding federated authentication using forms-based authentication and claims-based authentication
SharePoint security is a vast topic that can’t be covered fully in a single chapter. You could likely dedicate an entire book to SharePoint security. This is because when you talk about security and SharePoint, you’re not just referring to SharePoint. SharePoint is built on ASP.NET, which has its own security architecture and framework. It is deployed to Internet Information Services (IIS), which also has its own framework and configuration. And SharePoint itself has its own security infrastructure that leverages Active Directory (AD), among other security technologies. The goal of this chapter, therefore, is to provide a high-level introduction to a set of SharePoint security topics.
SharePoint 2010 has a flexible security infrastructure that supports a number of different technologies (such as AD, claims-based authentication, forms-based authentication, Kerberos, and many more). The different types of security in SharePoint support different scenarios. For example, if you’re trying to grant access for an individual or group to content on a site within your organization, then you would leverage AD, and assign permissions to specific site content to individuals or groups. ...
