SharePoint Config

Ari Bakker's thoughts on customising and configuring SharePoint

Archive for the ‘Authentication’ tag

Securing the authentication cookie for mixed SSL SharePoint sites

with 5 comments

This is the fifth in a series of posts detailing how to configure a partially SSL secured SharePoint site. This post will cover what is involved in ensuring the authentication cookie is only sent via a secure channel (i.e. SSL/HTTPS). This is best practice for securing forms based authentication but has several impacts that can require some fundamental changes to the site so are worth considering early in the development process.

cookie stolen from jar

Photo by a_funk / CC BY-NC-ND 2.0

Written by Ari Bakker

April 7th, 2010 at 11:46 pm