How to change SharePoint authentication from classic mode to claims based authentication

In this post, i am going to explain how we can change authentication provider of SharePoint 2010 web application from windows authentication to claims based authentication. So let’s start

From the central administration check the authentication provider and in my case it is showing authentication provider as windows.

Authentication Providers

Now change authentication provider, to do this, you need to use windows powershell.

Click start menu, go to

All Programs -> SharePoint 2010 products -> Sharepoint 2010 Management Shell

SharPoint 2010 Management Shell

Execute the following commands

$WebAppName = “http://vmappserver”

$account = “SPPORTALSP-Admin”

$wa = get-SPWebApplication $WebAppName

Set-SPwebApplication $wa –AuthenticationProvider (New-SPAuthenticationProvider) –Zone Default

When you execute this command, a confirmation message will appear on the screen as follows

Power Shell Athentication Provider Commands

Type Y for confirmation

After the command executed successfully, check the authentication provider from the central administration, it will show “claims based authentication”.

Claim based authetication provider

set the user as an administrator for the site

$wa = get-SPWebApplication $WebAppName

$account = (New-SPClaimsPrincipal -identity $account -identitytype 1).ToEncodedString()

configure the policy to enable the user to have full access

$zp = $wa.ZonePolicies(“Default”)

$p = $zp.Add($account,”PSPolicy”)

$fc=$wa.PolicyRoles.GetSpecialRole(“FullControl”)

$p.PolicyRoleBindings.Add($fc)

$wa.Update()

Perform user migration

$wa = get-SPWebApplication $WebAppName

$wa.MigrateUsers($true)

Reference: http://technet.microsoft.com/en-us/library/gg251985.aspx

Be Sociable, Share!

• 

Tags: Authentication Providers, Claims based authentication, Windows Authentication