Objective 2.2: Plan and configure authorization
After a user has been authenticated, he or she can then be validated when attempting to interact with resources in a web application; this validation process is called authorization.
Planning and configuring SharePoint users and groups
After users have been authenticated to a web application, they need to access the site collections contained within the web app. This access is granted via a series of permission levels that can be assigned to individual users ...