genuine; this mechanism has nothing to do with the assignment of rights or permissions.
After a requestor has been authenticated, authorization can then be granted, providing access
to system resources.
Authentication is required on three different occasions for on-premise installations of
Microsoft SharePoint:
- User authentication A user is trying to access SharePoint resources
- App authentication An installed app is trying to access SharePoint resources
- Server-to-server (S2S) authentication Two-way resource access between servers
(Exchange/Lync/SharePoint) in the enterprise
SharePoint does not provide any authentication mechanism; it merely uses those provided
by other systems. The Active Directory Domain Services (AD DS) provider is a good
example of an authentication mechanism that can be used by SharePoint.
This objective covers how to:
- Plan and configure Windows authentication.
- Plan and configure identity federation.
- Configure claims providers.
- Configure server-to-server (S2S) intraserver and Open Authorization (OAuth)authentication.
- Plan and configure anonymous authentication.
- Configure connections to Access Control Service (ACS).
