Clever Geek Handbook

Is it possible that different SharePoint web applications are authenticating against different subdomains in AD?

We are trying to get different SharePoint web applications to authenticate against different subdomains.

We have three web applications:

http://customers.xyz.com http://internal.xyz.com http://partners.xyz.com

and we have three subdomains in our active directory. We now want three web applications to authenticate to different subdomains. Is it possible?

Respectfully,

0


source to share


2 answers


I think the scheme Tony suggested might work, but there are some caveats.

  • Providing access. The All Verified Users group will violate your security model. This can be problematic because privileged users can sometimes grant rights to objects in SharePoint.
  • If you do not want to manually add new users to the SharePoint user groups in each site collection (in the web application), you will need to design an AD group schema where users in each of the subdomains are added to a security group, each security group is granted basic permissions for a site collection.


Alternatively, you can create 3 generic service providers, one for each subdomain, and link them to the corresponding web application.

JT

0


source


This is how I would solve it:



  • Importing profiles from the entire domain into provided SharedServices
  • For each X application, only users from subdomain X are allowed access
0


source






More articles:


All Articles