• Article

Configure AD-LDAP-based forms authentication in Project Server 2010

 

Applies to: Project Server 2010

Topic Last Modified: 2009-10-28

This article describes how to configure Microsoft Project Server 2010 forms-based authentication using Active Directory – Lightweight Directory Access Protocol (AD-LDAP). This procedure uses Claims authentication and an Active Directory server on the domain in which your Microsoft Project Server 2010 deployment is installed.

In order to perform these procedures, you must be member of the Project Server and SharePoint Server administrator groups on the local computer.

Configure AD-LDAP–based forms authentication in Project Server 2010

To configure SharePoint Server for forms-based authentication

  1. Create a new Web application in Claims mode.

    Note

    A Web application that already exists in Windows Classic mode cannot be used.

  2. Go to the SharePoint Central Administration Web site.

  3. Click Application Management.

  4. On the ribbon, click New. A pop-up window appears.

  5. In the pop-up window, select the Claims Based Authentication option.

  6. In the pop-up window, in the IIS Web Site section, select a unique name and port number.

  7. In the pop-up window, in the Security Configuration section, set Allow Anonymous = No and set User SSL to Yes or No, depending on whether the site you are extending will be SSL-enabled.

  8. In the pop-up window, in the Identity Providers section, select the Enable Windows Authentication option and specify NTLM if Integrated Windows authentication will be used. Also select Enable ASP.NET Membership and Role Provider and specify a provider name and role manager.

  9. In the pop-up window, keep the default setting for Public URL.

    Note

    This setting can be changed later if necessary.

  10. In the pop-up window, in the Application Pool section, choose to create a new pool with a pool name and the account that will be used.

  11. In the pop-up window, in the Database Name section, set the value for the SQL Server and database names for the content database.

  12. Click OK to close the window. A new IIS Web site will be created.

  13. Once you have received confirmation that the IIS Web application is created, you must create a new site collection at the root: Click Application Management in Central Administration, click Create Site Collections, and in the Web Application drop-down list, select the newly created claims-mode Web application.

  14. In the URL section, enter the root "/".

  15. Select the Blank Site template and specify a Windows user account in the Site Admin box.

  16. Click OK.

To configure the provider for forms-based authentication

  • Edit the connection strings to the AD-LDAP membership store. This data is provided in the .config files that are used by the application at every request.

    Note

    The three Web configuration files to modify to connect to the AD-LDAP membership store are the .congif files for: Central Admin, Security Token Service, and the content Web application.