In this post I’m going to do an end-to-end walk through on how to configure SharePoint 2010 and ADFS v2 together to use SAML claims authentication. I’ll includes steps and PowerShell scripts to demonstrate and will try and bring all of the pieces together in one big posting. First a brief overview of the components…
Year: 2010
SharePoint 2010 Forms Based Authentication Configuration Manager
I found myself getting really tired of constantly modifying configuration files when setting up forms based auth (FBA) in SharePoint 2010. There's even more work now then there was in the previous release, because now we have an additional web.config file to modify – for the STS. It was also a constant hassle when you…
Writing A Custom Forms Login Page for SharePoint 2010 Part 2
In part 1 of this series, which you can find at http://blogs.technet.com/b/speschka/archive/2010/07/21/writing-a-custom-forms-login-page-for-sharepoint-2010-part-1.aspx, I described how to create an entirely new forms login page. The scenario behind it is when you need something beyond what is available with the out of the box UI – for example, two factor authentication. In this post I’m going to…
Writing A Custom Forms Login Page for SharePoint 2010 Part 1
In SharePoint 2007 writing a custom login page for a forms based authentication (FBA) site was not too terribly hard. There were a few things to know, most of which weren’t SharePoint specific, and some tips to have your login form take on the look and feel of a standard SharePoint layouts page. Overall though,…
Migrating from Windows Classic Auth to Windows Claims Auth in SharePoint 2010 Part 2
NOTE: UPDATED 1/8/2011 I wanted to follow-up on the previous post about migrating authentiation types in SharePoint 2010 that was done here: http://blogs.technet.com/b/speschka/archive/2010/06/12/migrating-a-web-application-from-windows-classic-to-windows-claims-in-sharepoint-2010.aspx. I still recommend taking a look at that posting if you haven't already because it includes some good background information about the migration process. Recently we've been tweaking with the set ot…
Managing Trusted Root Authorities for Claims Authentication in SharePoint 2010 Central Admin
I just thought I would create this post to raise awareness about another way to manage trusted root authorities in SharePoint 2010. For those of you who have been doing claims authentication sites, you know that you need to add all of the certificates in the token signing certificate's chain into SharePoint's list of trusted…
Changing the Master Page on SharePoint 2010 My Sites
Hey all, we ran across kind of a funny situation this week so I thought I would share with you what we saw and what you need to know. We were working on customizing the master page using a feature to deploy the master and feature receiver to actually set the master page for the…
ProcessBatchData and New Event Items
I was recently asked to help provide some code that addressed a couple of concerns: 1) how to use the ProcessBatchData method to add new items to a list and 2) how to create the Xml that ProcessBatchData uses to create different types of events, namely all day events and recurring events. In this post…
The given key was not present in the dictionary Error When Validating User Accounts
This is a problem that I’ve seen come up a few times now, with a particularly nasty side effect for sites using SAML claims with ADFS. Where I first saw this problem was when I created a new farm and I went into add a service account. I typed in the alias for the account…
Using Audiences with Claims Auth Sites in SharePoint 2010
Something you may not have thought of around using SAML claims is the impact on the Audiences feature in SharePoint 2010. By default we will only import users from directories like Active Directory and a few LDAP sources. The problem is that the account name for most SAML claims users is something like i:05:t|adfs with…