Sunday, July 29, 2012

Classic Authentication in SharePoint 2013

The first thing you will note while creating a New Web Application in SharePoint 2013 is the missing option button to select the Authentication, Classic or Claims.

image

In SharePoint 2013 (Preview), claims-based authentication is the default and preferred method of user authentication and is required to take advantage of server-to-server authentication and app authentication. If you create a Web Application in Central Administration, by default it’ll be based on claims authentication. The use of classic mode authentication (Windows classic authentication) is discouraged in SharePoint 2013 Preview and you can only create or configure web applications for classic mode authentication with Windows PowerShell cmdlets.

Create a Web Application that uses Classic Authentication in PowerShell
New-SPWebApplication -Name <Name> -ApplicationPool <ApplicationPool> -AuthenticationMethod <WindowsAuthType> -ApplicationPoolAccount <ApplicationPoolAccount> -Port <Port> -URL <URL>

<Nameis the name of the new web application. 
<ApplicationPoolis the name of the application pool. 
< WindowsAuthType > is either “NTLM” or “Kerberos”. Kerberos is recommended.
<ApplicationPoolAccountis the user account that this application pool will run as. 
<Portis the port on which the web application will be created in IIS. 
<URLis the public URL for the web application.

Example:

New-SPWebApplication -Name "WhiteKnight Inc" -ApplicationPool "ContosoAppPool" -AuthenticationMethod "Kerberos" -ApplicationPoolAccount (Get-SPManagedAccount "WhiteKnight\SPServiceApp") -Port 80 -URL "https://www.whiteknight.com

Migrate from classic-mode to claims-based authentication in SharePoint 2013 Preview

2 comments:

Chandramohan Reddy said...

Hi Pratap,
Nice post.it is very useful....
but i have one doubt...

Doubt:

if i change the Authentication from classic to claims based in SP2013 when migrating from SP2010 to 2013.after changing the authentication mode from classic to claims based,the user credentials like domain\username and password for classic authentication will work on claims based authentication,(or)we need to do any changes here....

Plz share if u know the Answer...

Chandramohan Reddy said...

65886