This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
VassilisBoulogi
Employee
Employee
‎2016-03-03 06:07 AM

Sharepoint support for versions prior to 2010SP1


Hi all,

 

I understand that claims authentication in Sharepoint is available for versions 2010SP1 or later and Via Access should support it.

 

What about previous Sharepoint versions (2007, 2010 pre SP1) that do not support claims authentication? Would Kerberos authentication work?

 

Thanks a lot,

Vassilis

0 Likes
Reply
7 Replies
AngeloColesanto
Employee
Employee
‎2016-03-03 06:27 AM

Hi Vassilis,

To integrate previous version of Sharepoint you will need to user “user impersonation” in IIS, this cannot be done without an agent on IIS, so for Via Access (that is agent-less) you will need to add AxM that has a functionality called “protocol transition, that is actually the “user impersonation”.

KR

Angelo

0 Likes
Reply
KarimElatov
Employee
Employee
‎2016-03-12 12:22 AM

There are two connectors for Sharepoint Servers:

  1. WS-Federation based which uses the Claims-Based approach
  2. NTLM Based which is similar to HTTP Federation except it uses NTLM Authentication

If Sharepoint 2007 and 2010 pre SP1 support NTLM Authentication then using the 2nd type of connector could work.

0 Likes
Reply
AngeloColesanto
Employee
Employee
In response to KarimElatov
‎2016-03-12 02:49 AM

Hi Karim,

Thanks for the update.

Is the NTLM an Agent based connector?

Thanks

 

Angelo Colesanto

(Sent from iPhone, please excuse typos and brevity)

0 Likes
Reply
KarimElatov
Employee
Employee
In response to AngeloColesanto
‎2016-03-12 12:22 PM

It is not, it follows the reverse proxy approach and when we see the 401 Response with the WWW Authenticate:NTLM header from sharepoint the IDR POSTs the user's credentials (stored on the IDR as a password vault) to sharepoint.

0 Likes
Reply
MichaelDalton
Employee
Employee
In response to KarimElatov
‎2016-05-04 02:20 PM

Is there any documentation on the NTLM integration discussed in the thread?  I checked the online help and it
didn’t return any results on NTLM.   Looking for a guide ideally…

0 Likes
Reply
LenoreTumey
Respected Contributor Respected Contributor
Respected Contributor
In response to MichaelDalton
‎2016-05-06 11:20 AM

Yes - this guide was just posted:  Microsoft SharePoint - RSA Via Access NTLM Implementation Guide

 

Hope this helps!

0 Likes
Reply
MichaelDalton
Employee
Employee
In response to LenoreTumey
‎2016-05-06 11:37 AM

Yes, it does! Thanks

 

 

Best Regards,

 

Michael Dalton, CISSP, CISA, RSA CSE | RSA Senior Via Sales Engineer | The Security Division of EMC | 860.324.7449| michael.dalton@rsa.com<mailto:michael.dalton@rsa.com>

Preview file
1 KB
0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.