Archive for the ‘Authentication’ tag
Securing the authentication cookie for mixed SSL SharePoint sites
This is the fifth in a series of posts detailing how to configure a partially SSL secured SharePoint site. This post will cover what is involved in ensuring the authentication cookie is only sent via a secure channel (i.e. SSL/HTTPS). This is best practice for securing forms based authentication but has several impacts that can require some fundamental changes to the site so are worth considering early in the development process.
Photo by a_funk / CC BY-NC-ND 2.0