Create a Web application (SharePoint Foundation 2010)
Updated: October 7, 2010
A Web application is composed of an Internet Information Services (IIS) Web site that acts as a logical unit for the site collections that you create. Before you can create a site collection, you must first create a Web application.
Each Web application is represented by a different IIS Web site with a unique or shared application pool. You can assign each Web application a unique domain name, which helps to prevent cross-site scripting attacks.
You use Web applications to isolate content. When you create a new Web application, you also create a new content database and define the authentication method used to connect to the database. In addition, you define an authentication method to be used by the IIS Web site in SharePoint Foundation 2010.
SharePoint Foundation 2010 offers two ways of authenticating users, as follows:
Classic mode authentication, through which users log on to a Web application by using Windows authentication. For more information, see Create a Web application that uses Windows-classic authentication (SharePoint Foundation 2010).
Claims-based authentication, through which users log on to a Web application by using Windows authentication, forms-based authentication (FBA), or Trusted Identity provider (SAML). If you use FBA or SAML, you must perform additional configuration steps. For more information about claims-based authentication, see Create a Web application that uses Windows-claims authentication (SharePoint Foundation 2010).
Although digest authentication provides the same functionality as basic authentication, digest authentication encrypts user credentials to increase security. User credentials are sent as an MD5 message digest in which the original user name and password cannot be deciphered. For more information about Digest authentication, see Configure Digest authentication for a classic-mode Web application (SharePoint Foundation 2010)
Zones represent different logical paths for gaining access to the network services that are available within the same Web application. In some instances, you might want to configure Basic authentication for one or more zones within a Microsoft SharePoint Foundation 2010 classic-mode Web application. For more information, see Configure Basic authentication for a classic-mode Web application (SharePoint Foundation 2010).
For more information about both types of authentication, see Plan authentication methods (SharePoint Foundation 2010).
SharePoint Foundation 2010 provides a set of services applications that are available for each Web application. You can select which service applications you want to use for each Web application that you create. For more information, see Technical diagrams (SharePoint Foundation 2010), Define managed paths (SharePoint Foundation 2010), and Service application and service management (SharePoint Foundation 2010).
In this section:
ConceptsExtend a Web application (SharePoint Foundation 2010)
Create a site collection (SharePoint Foundation 2010)
Other ResourcesConfigure Web Server Security (IIS 7)
Resource Center: Installation and Deployment for SharePoint Foundation 2010
Resource Center: Security and Authentication for SharePoint Foundation 2010
October 7, 2010
Revised to provide information about Windows-classic and Windows-claims authentication.
May 12, 2010