locked
Authentication Provider for an Intranet and Extranet RRS feed

  • Question

  • I want to create a SQL authentication provider for my client's extranet but still allow their employees to access it using their AD credentials which they will use to access thier Intranet.

    Is there anyway to do this?

    Thursday, July 1, 2010 2:38 PM

Answers

  • Not that hard.  Here's the roadmap: 

    • extend the primary Windows web application to another IIS site
    • Build your SQL Membership-Authentication Provider subsystem
    • Edit the web.config files for central admin and your new app (Plus one in the 12hive!!) to register the new SQL membership provider
    • Add an public Alternate Access mapping in SharePoint Central Admin for the URL to the extended application in the Extranet Zone
    • Edit the authentication providers in SharePoint Central Administration | Application Management to use forms based authentication against the new membership provider.

    Steve Peschka of Microsoft (a nice guy despite his sports allegiances) has a great post on it here http://blogs.msdn.com/b/sharepoint/archive/2006/08/16/702010.aspx

    Also Andrew Connell has a parallel article that shows you how to enable a part of the site for anonymous access: http://www.andrewconnell.com/blog/articles/HowToConfigPublishingSiteWithDualAuthProvidersAndAnonAccess.aspx

    Hope this is helpful...

    Chris


    Chris McNulty MCSE/MCTS/MSA/MVTS http://www.kma-llc.net | blog http://blogs.kma-llc.net/microknowledge | twitter @cmcnulty2000
    • Marked as answer by RWL01 Friday, July 2, 2010 1:21 PM
    Friday, July 2, 2010 3:24 AM

All replies

  • Not that hard.  Here's the roadmap: 

    • extend the primary Windows web application to another IIS site
    • Build your SQL Membership-Authentication Provider subsystem
    • Edit the web.config files for central admin and your new app (Plus one in the 12hive!!) to register the new SQL membership provider
    • Add an public Alternate Access mapping in SharePoint Central Admin for the URL to the extended application in the Extranet Zone
    • Edit the authentication providers in SharePoint Central Administration | Application Management to use forms based authentication against the new membership provider.

    Steve Peschka of Microsoft (a nice guy despite his sports allegiances) has a great post on it here http://blogs.msdn.com/b/sharepoint/archive/2006/08/16/702010.aspx

    Also Andrew Connell has a parallel article that shows you how to enable a part of the site for anonymous access: http://www.andrewconnell.com/blog/articles/HowToConfigPublishingSiteWithDualAuthProvidersAndAnonAccess.aspx

    Hope this is helpful...

    Chris


    Chris McNulty MCSE/MCTS/MSA/MVTS http://www.kma-llc.net | blog http://blogs.kma-llc.net/microknowledge | twitter @cmcnulty2000
    • Marked as answer by RWL01 Friday, July 2, 2010 1:21 PM
    Friday, July 2, 2010 3:24 AM
  • This is great info, thanks for the help.
    Friday, July 2, 2010 1:21 PM