Claims-Based Authentication

Before discussing the new Claims-Based-Authentication (CBA) model in SharePoint 2010, let us quickly visit what we mean by the term authentication. Authentication means to provide a set of credentials to a secure system to identify a person, or user, as known to the system. Successful authentication involves a user passing his or her credentials—typically a username and password, after which the system looks up the credentials in a credential store and finds a match, proving that the user known to the system. Unsuccessful authentication occurs when the system cannot match the credentials, passed by the user, against the credential store.

You should also keep in mind the difference between authentication and authorization ...

Get Pro SharePoint 2010 Administration now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.