Users coming from a SharePoint 2010 system that try to access SharePoint 2013 after a migration receive a “this site has not been shared with you” message. This mean that they are not able to authenticate to SharePoint 2013.
In SharePoint 2013 there is a new authentication mechanism called Claim based authentication. Be default through the UI all Applications are created in this mode.
I created a PowerShell script that loops through all of your SharePoint 2013 web applications and upgrades each one to claim’s based authentication.
Script:
Param(
[string] $account = $(Read-Host -prompt "UserAccount")
)
Add-PSSnapIn Microsoft.SharePoint.PowerShell
foreach ($wa in get-SPWebApplication)
{
Write-Host "$($wa.Name) | $($wa.UseClaimsAuthentication )"
#http://technet.microsoft.com/en-us/library/gg251985.aspx
$wa.UseClaimsAuthentication = $true
$wa.Update()
$account = (New-SPClaimsPrincipal -identity $account -identitytype 1).ToEncodedString()
$zp = $wa.ZonePolicies("Default")
$p = $zp.Add($account,"PSPolicy")
$fc=$wa.PolicyRoles.GetSpecialRole("FullControl")
$p.PolicyRoleBindings.Add($fc)
$wa.Update()
$wa.MigrateUsers($true)
$wa.ProvisionGlobally()
}
For more information, refer the msdn blog: http://technet.microsoft.com/en-us/library/gg251985.aspx
No comments:
Post a Comment