Sharepoint 2010 Forum

Ask Question   UnAnswered
Home » Forum » Sharepoint 2010       RSS Feeds

Help Needed with Claims authentication in SharePoint 2010

  Date: May 30    Category: Sharepoint 2010    Views: 1706

I created a SharePoint Web App with Claims Based Authentication. I also
enabled Windows Authentication (NTLM). For the Forms Based Authentication,
I configured my Membership and Role Providers for ASPNETDB. I also created
a Custom Sign In Page and set it up in Central Admin. Now without the
Custom Sign In Page, if I hit the site URL, I get a page where I can first
select the authentication mode (Windows or Forms) from the drop down, where
as this option is not showing up, if I try to use my Custom Sign In Page.
Can anyone please help me? I need to get that option even with my Custom
Sign In Page.

Also, I need to configure my People Picker in my site to use both Windows /
Forms user stores. How can I achieve this? Any help would be really



4 Answers Found

Answer #1    Answered On: May 30    

If you've configured the membership and role providers in all the right
web.config files then you should be able to use the People Picker to find
users of both types automatically.

Unless you are separating out FBA by extending the web application the
normal flow would be to go to the regular URL, select Windows or Forms, and
be redirected to either the Windows login or custom Forms page based on your
choice. By the time you get to the custom page you've already chosen Forms,
so there is no need for a drop down. If that's not the way its working then
you don't have the custom sign in page setup correctly.

Answer #2    Answered On: May 30    

There is some information here about modifying the behaviour of the claims
picker. msdn.microsoft.com/en-us/library/hh237665.aspx

See the section regarding "Bypassing the multi-authentication..." for some

I havn't tried it but my best guess is that you need to modify your custom login
page to test for authentication and if not authenticated, redirect to to the
/_login/default.aspx, passing the return url as a query string parameter. This
of course would mean that your login page would have to be accessible by
anonymous visitors.

Answer #3    Answered On: May 30    

I just read my previous and realized that that would send you in a circle. Based
on the referenced article, you need to customize the default page (C:\Program
Files\Common Files\Microsoft Shared\Web Server
Extensions\14\TEMPLATE\IDENTITYMODEL\LOGIN) which redirects to the login page
with your parameters. Sorry for the confusion.

I really don't like this as a solution because it means you are customizing the
hive. I am sure there must be a better way which I am overlooking. Its probably
an easy yet hard-to-find powershell command.

Answer #4    Answered On: May 30    

Thanks for your help. I got a better way of dealing with the Logon Selector
page using the below link.


Regarding the People Picker, I tried the option mentioned by Paul, but
still it didn't work. Anyways, I will try again and will let you know.

On another note, I need one more help. Is SPClaimProvider the 2010 flavor
of Membership Provider of 2007? If not, can you please let me know, what is
the equivalent of Membership Provider in 2010?

Didn't find what you were looking for? Find more on Help Needed with Claims authentication in SharePoint 2010 Or get search suggestion and latest updates.