Understanding Claims-Based Authentication

Claims-based authentication for SharePoint 2010 is built by using the Windows Identity Foundation (WIF) framework. WIF is a set of .NET Framework classes that are used to implement a claims-based identity. Claim-based authentication was developed to provide better fine-grained security for a role-based security model. Most systems, including SharePoint 2007 and its predecessors, use role (or group)-based security. Complex systems can use claims-based security to assign permissions on other attributes (claims) associated with users, such as city or membership in a distribution list.

Claims-based authentication in SharePoint 2010 provides a flexible and extensible authentication system that supports authentication ...

Get Microsoft SharePoint 2010 Unleashed now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.