SharePoint - 基于声明的身份验证 - 新用户用例 [英] SharePoint - Claims Based Authentication - New user use-case
问题描述
我在 SO 中遇到了许多关于索赔的问题.我没有得到澄清,因此这个问题.假设我有一个启用了基于表单的身份验证的 Web 应用程序(启用了声明)并且所有配置都很好,并且表单用户(SQL 存储)User1"能够"正常登录.
I have gone through many questions in SO on claims. I did not get a clarification and hence this question. Assuming I have a Forms Based Authentication enabled Web app (with claims enabled) and all configurations are fine and the forms user (SQL Stored) "User1" is "able" to login fine.
鉴于此,我的问题是
一个.我们必须在某处将User1"映射到我的声明启用的 Intranet 站点内的等效 SharePoint 组/权限.换句话说,我不得不说 -> User1 (FBA) == Designer thru pre-configuration.这是正确的还是按个人用户 ID 查找是错误的做法?
a. We HAVE to somewhere map "User1" to a equivalent SharePoint group / rights inside my claims enabled Intranet site. In other words, i have to say -> User1 (FBA) == Designer thru pre-configuration. Is this correct or is looking up per individual User ID's a wrong practice ?
B.如果新用户被添加到基于表单的数据库中",那么就新添加的用户权限而言,声明身份验证如何工作.我是否必须在 Intranet 站点中再次添加那个"用户?
b. If a "new user gets added to the Forms Based database", then how does claims authentication work as far as that newly added user rights are concerned. Should I have to add "that" user again in my Intranet site?
对不起,如果我的问题看起来很困惑,因为我很困惑.
Sorry if my question looks confused because I am confused.
干杯
推荐答案
将用户添加到 FBA 数据库后,他们必须添加到 SharePoint 组才能在 SharePoint 中拥有权限(站点设置 -> 用户和权限 -> 人员和组).
Once the user has been added to the FBA database, they have to be added to a SharePoint group in order to have permissions in SharePoint (Site Settings -> Users and Permissions -> People and Groups).
如果您希望用户在添加到 FBA 数据库后立即拥有 SharePoint 中的权限,而不将其添加到 SharePoint 组,请在 FBA 数据库中创建一个角色.在 SharePoint 中的人员和组下为角色授予适当的权限.在 FBA 数据库中创建用户后,将其分配给该角色.现在您可以使用该用户登录 SharePoint.
If you want the user to immediately have permissions in SharePoint after being added to the FBA database, without adding them to a SharePoint group, create a role in the FBA database. Give the role the appropriate permissions under people and groups in SharePoint. After creating a user in the FBA database, assign them to that role. Now you'll be able to login to SharePoint with that user.
这篇关于SharePoint - 基于声明的身份验证 - 新用户用例的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
