使FBA生效,下一步在Sharepoint中设置Membership Provider,一个Membership Provider是一个从程序到任证库(credential store)的接口。这样允许同一个程序工作在多种不同的存储认证。举例来说,可以使用LDAPMembership在Active Directory上认证或者SQLMembershipProvider在SQL Server上认证。这个例子使用的是Sql Server

修改任何.config文件前,备份一下。

备份然后打开web.config。

在</SharePoint>和<system.web>之间<connectionStrings></connectionStrings> 节, 增加一行,Server需要改成实际的服务器名。

<add connectionString="Server=win-h472cerv001;Database=aspnetdb;Integrated Security=true" name="FBADB" />




在 <membership><providers> 节,增加一下配置




<add name="FBAMembershipProvider"

 type="System.Web.Security.SqlMembershipProvider, System.Web, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"

 connectionStringName="FBADB"

 enablePasswordRetrieval="false"

 enablePasswordReset="true"

 requiresQuestionAndAnswer="false"

 applicationName="/"

 requiresUniqueEmail="true"

 passwordFormat="Hashed"

 maxInvalidPasswordAttempts="5"

 minRequiredPasswordLength="7"

 minRequiredNonalphanumericCharacters="1"

 passwordAttemptWindow="10"

 passwordStrengthRegularExpression="" />




 可以自定义每个选项,最重要的是,如果多处的MembershipProvider使用同一个数据库,它们的配置必须相同。否则会出现各种问题,在创建用户时是一些配置,在用户登录时是另一些不同的配置。






Option
Description






connectionStringName
The name of the database connection to the aspnetdb database.




enablePasswordRetrieval
true/false. Whether the user’s password can be retrieved. I suggest setting this to false for security purposes.




enablePasswordReset
true/false. Whether the user can reset their password. I suggest setting this to true.




requiresQuestionAndAnswer
true/false. Whether accounts also have a question and answer associated with them. The answer must be provided when resetting the password. I suggest setting this to false, as setting it to true prevents an administrator from resetting the user’s password.




applicationName
Setting the application name allows you to share a single membership database with multiple different applications, with each having their own distinct set of users. The default applicationName is /.




requiresUniqueEmail
true/false. Determines if multiple users can share the same email address. I suggest setting this to false, in case you ever want to implement a login by email system.




passwordFormat
Clear, Hashed or Encrypted. Clear stores the password in the database as plain text, so anybody with access to the database can read the user’s password. Encrypted encrypts the user’s password, so although the password isn’t human readable in the database, it can still be decrypted and the user’s actual password retrieved. Hashed stores a one way hash of the password.  When a user authenticates, the password they enter is hashed as well and matched against the stored hashed value. Using this method, the user’s password can never be retrieved (even if your database is stolen), only reset.  I always recommend using “Hashed” as it is the most secure way of storing the user’s password.




maxInvalidPasswordAttempts
The number of times in a row that a user can enter an invalid password, within the passwordAttemptWindow, before the user’s account is locked out. Defaults to 5.




passwordAttemptWindow
The number of minutes before the invalid password counter is reset. Defaults to 10.




minRequiredPasswordLength
The minimum password length. Defaults to 7.




minRequiredNonalphanumericCharacters
The minimum number of non-alphanumeric characters required in the password. Defaults to 1.




passwordStrengthRegularExpression
A regular expression that can be used to validate the complexity of the password.








在 <roleManager><providers> 节:




<add name="FBARoleProvider" connectionStringName="FBADB" applicationName="/"

 type="System.Web.Security.SqlRoleProvider, System.Web, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />




Sharepoint Central Administration和SecurityTokenService也需要配置,在IIS中找到Sharepoint Web Services,点开,确认 SecurityTokenService的Web.config的位置。




在</configuration>前,粘贴以下内容




<system.web>

 <membership>

 <providers>

 <add name="FBAMembershipProvider"

 type="System.Web.Security.SqlMembershipProvider, System.Web, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"

 connectionStringName="FBADB"

 enablePasswordRetrieval="false"

 enablePasswordReset="true"

 requiresQuestionAndAnswer="false"

 applicationName="/"

 requiresUniqueEmail="true"

 passwordFormat="Hashed"

 maxInvalidPasswordAttempts="5"

 minRequiredPasswordLength="7"

 minRequiredNonalphanumericCharacters="1"

 passwordAttemptWindow="10"

 passwordStrengthRegularExpression="" />

 </providers>

 </membership>

<roleManager>

 <providers>

 <add name="FBARoleProvider" connectionStringName="FBADB" applicationName="/"

 type="System.Web.Security.SqlRoleProvider, System.Web, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />

 </providers>

 </roleManager>

 </system.web>




保存web.config。
												


											
Sharepoint 2016 配置FBA(二) 编辑Web,config文件的更多相关文章
	

    
								
  1. Sharepoint 2016 配置FBA(三)配置Sharepoint
		
    编辑已经创建好的Web Applicaiton, SharePoint Central Administration -> Application Management -> Manage ...
    
		
    2. 
						
  2. Sharepoint 2016 配置FBA(四)添加用户到Membership数据库
		
    现在还不能用FBA登录,因为数据库还没有用户. 有一些方法来管理membership数据库,有可以用IIS来管理.推荐使用 SharePoint 2016 FBA Pack(https://share ...
    
		
    3. 
						
  3. Sharepoint 2016 配置FBA(一) 创建Membership数据库
		
    在Sharepoint 2016上配置FBA(forms based authentication)的过程和Sharepoint 2013一样. 第一步:创建Membership数据库. 为了存放所有 ...
    
		
    4. 
						
  4. 一步步开发自己的博客 .NET版(11、Web.config文件的读取和修改)
		
    Web.config的读取 对于Web.config的读取大家都很属性了.平时我们用得比较多的就是appSettings节点下配置.如: 我们对应的代码是: = ConfigurationManage ...
    
		
    5. 
						
  5. SharePoint 2016 配置工作流环境
		
    前言 SharePoint 2016 默认创建工作流的时候,工作流平台只包含2010版本,如果想要使用状态机工作流,需要单独安装workflow manager 1.0才可以,下面,我们为大家介绍一下 ...
    
		
    6. 
						
  6. IOC注入框架——Unity中Web.Config文件的配置与调用
		
    Unity 应用程序块可以从 XML 配置文件中读取配置信息.配置文件可以是 Windows Forms 应用程序的 App.config 或者 ASP.NET 应用程序的 Web.config.当然 ...
    
		
    7. 
						
  7. Unity中Web.Config文件的配置与调用
		
    在上一篇文章“Unit简单依赖注入”我们可以实现构造对象和被依赖对象之间的 松耦合,使我们的抽象层(Player)能够保持稳定,但是在并没有把客户类和Player类之间彻底解耦,即当我们不想使用MP3 ...
    
		
    8. 
						
  8. 跨域Ajax请求 web.config文件配置
		
    在web.config文件的<system.webServer>节点下面添加如下配置代码:<!--允许跨域ajax访问--> <httpProtocol> < ...
    
		
    9. 
						
  9. web.config文件中配置数据库连接的两种方式
		
    web.config文件中配置数据库连接的两种方式 标签: 数据库webconfig 2015-04-28 18:18 31590人阅读 评论(1)收藏举报    分类: 数据库(74)  在网站开发 ...
    
		
    10. 
		

	


随机推荐
	

    
									
  1. 博弈论初步(SG函数)
			
    讲解见此博客https://blog.csdn.net/strangedbly/article/details/51137432 理解Nim博弈,基于Nim博弈理解SG函数的含义和作用. 学习求解SG ...
    
			
    2. 
						
  2. Arthur and Walls CodeForces - 525D (bfs)
			
    大意: 给定格点图, 每个'.'的连通块会扩散为矩形, 求最后图案. 一开始想得是直接并查集合并然后差分, 但实际上是不对的, 这个数据就可以hack掉. 3 3 **. .** ... 正解是bfs ...
    
			
    3. 
						
  3. nigix反向代理
			
    参考: https://www.cnblogs.com/yycc/p/8185748.html
    
			
    4. 
						
  4. SQL Server 创建索引方法
			
    转自 <SQL Server 创建索引的 5 种方法> 地址:https://www.cnblogs.com/JiangLe/p/4007091.html 前期准备: create tab ...
    
			
    5. 
						
  5. hdu第4场j.Let Sudoku Rotate
			
    Problem J. Let Sudoku Rotate Time Limit: / MS (Java/Others) Memory Limit: / K (Java/Others) Total Su ...
    
			
    6. 
						
  6. c++中各类型数据所占字节数(二)
			
    转自:https://blog.csdn.net/allen_tony/article/details/76973906 https://blog.csdn.net/zzwdkxx/article/d ...
    
			
    7. 
						
  7. maven到Gradle,一些对比和分享
			
    Gradle作为一款基于Groovy语言的构建工具,已经吸引众多的ant,maven使用者转投gradle的怀抱,和Gradle相比,ant显得冗余复杂,maven显得有些死板落后,而gradle基于 ...
    
			
    8. 
						
  8. Hibernate-----阶段总结
			
    Hibernate -----总结 一.在使用Hibernate的时候          首先我们要导入Hibernate类库,导入Hibernate压缩包中lib文件中required中的包     ...
    
			
    9. 
						
  9. 9ci
			
    
			
    10. 
						
  10. XAMPP本地服务器打不开解决方案
			
    第一步:先开启相关服务:如图 第二步:在浏览器上输入localhost:端口号,(或127.0.0.1:端口号),按回车,就成功登陆本地服务器. =========================== ...
    
			
    11.