ARTICLE

Sharepoint 2010 Form Based Authentication Using Active Directory

Posted by Nipun Tomar in Articles | SharePoint on January 18, 2011

Tags: Active Directory, Claim Based authentication, FBA, Form Based Authentication, LDAP, Lightweight Directory Access Protocol, membership provider, Sharepoint 2010

In this article I will try to show how we can use Active Directory Form Based Authentication in SharePoint 2010 using Lightweight Directory Access Protocol (LDAP).

Tweet
7806
3

Reader Level: Intermediate

In this article I will try to show how we can use Active Directory Form Based Authentication in Sharepoint 2010 using Lightweight Directory Access Protocol (LDAP)

1. Add Connection string and membership provider in Central Administration web.config

NOTE: connectionString will differ based on domain configuration. Please contact you Administrator to provide the LDAP details.

2. Add Connection string and membership provider in SecurityTokenServiceApplication web.config

NOTE: connectionString will differ based on domain configuration. Please contact you Administrator to provide the LDAP details.

3. Create a new site with claim based authentication using Central Administration

Authentication : Claim Based

Claims Authentication Types: Enable Windows Authentication -> Integrated Windows authentication - > NTLM

Leave others to default

4. Now Create Site Collection at port 2233

And add Primary / Secondary Site Collection Administrators

So the resultant site will look like below.

5 Extend the web application to port 3322 and enable form based authentication (FBA)

Set the public URL Zone- Intranet or Extranet

5. Add Users to the Intranet zone using User Policy

Add more users as required with desired permissions.
Now open the newly extended application, and use your domain credentials to login the app.

post comment

Hi, thx for this article. But i got one big problem: I've created all als mentiond. But if i add a user via policy and give him full control he still cant login to the intranet. each time access denied. if i gave "All authorizised users" full control he can login, but cannot access the permisions-page. If i gae all Site collectior policy rights, he still cant edit permission. each time access denied. Only after enable fba for normal zone, add users to site owner, remove fba from default than he can login correct using fba and edit permissions :( also i think, central admin and user policy is not the intended way to managed the permissions ;) Is this a bug or just a feature?

Posted by Puccini on Jan 09, 2012

Hi Nipum, I configured two SharePoint apps using your instruction. One works but the other gives me "Object reference not set to an instance of an object" error message. Why? Please help! Thanks, Daniel

Posted by Daniel Liang on Dec 02, 2011

Great article! When I try to replicate your settings on my SP site, my central admin page gets an 'Internal Server Error - 500' when trying to access. Would an incorrect LDAP URL cause this? Any other things I should look at?

Posted by Tony Martinac on Feb 22, 2011

TOP LEADERS

View All

TRENDING UP

Learn MVC (Model view controller) Step by Step in 7 days – Day 3 Learn C# Corner - Home Using Border Radius and Gradients in CSS3: Part I Learn C# Corner - Footer Learn .NET and C# in 60 Days Lab13(Day 5): - Classes and objects iPhone 5 First Look Samsung Galaxy Note Review WCF - Authentication and Authorization in Enterprise Architecting How to write a good article on C# Corner How to Display Data in ListBox From SQL Database in ASP.NET

View All

Sponsored by

Become a Sponsor

MOST LIKED ARTICLE

Learn .NET in 60 days – Part 1 (13 Labs) Working with ProgressBar in C# Resizable TextBox in ASP.NET using AjaxControlToolKit Word Processing with an Extended Rich Text Box Control Notepad in C#

PREMIUM SPONSORS

Introducing MaxV - one click. infinite control. Hyper-V Hosting from MaximumASP.

Finally – a virtual platform that delivers next-generation Windows Server 2008 Hyper-V virtualization technology from a managed hosting partner you can truly depend on. Visit www.maximumasp.com/max for a FREE 30 day trial. Hurry offer ends soon. Climb aboard the MaxV platform and take advantage of High Availability, Intelligent Monitoring, Recurrent Backups, and Scalability – with no hassle or hidden fees. As a managed hosting partner focused solely on Microsoft technologies since 2000, MaximumASP is uniquely qualified to provide the superior support that our business is built on. Unparalleled expertise with Microsoft technologies lead to working directly with Microsoft as first to offer IIS 7 and SQL 2008 betas in a hosted environment; partnering in the Go Live Program for Hyper-V; and product co-launches built on WS 2008 with Hyper-V technology.

Dynamic PDF

ceTE software specializes in components for dynamic PDF generation and manipulation. The DynamicPDF™ product line allows you to dynamically generate PDF documents, merge PDF documents and new content to existing PDF documents from within your applications.

LATEST JOBS

Applying for job Metro Style App Developer .NET Developer WPF or Silverlight exp Boston MA ASP .Net Developers Split Testing Designer .NET Developer Web Developer Application Engineer Expert .NET Developer Application Developer

View All Jobs |Post a New Job

Sharepoint 2010 Form Based Authentication Using Active Directory

Related Articles