SharePoint and RSA#

I received a question from one of our customers about their SharePoint extranet security. Because they are publishing important documents on the SharePoint environment, the question raised if they could use RSA tokens to make it even more secure, combined with Forms Based Authentication (FBA).

We are using ISA server in this case and I found the question interesting to investigate and see what to options are.

So first of all, I did run into a interesting blog posting by Pranab Paul about a step by step example: SharePoint 2007 (MOSS/WSS) FBA and RSA. Also check out the posting about the HTTP Module. The challenge seems to be how to pass the credentials to SharePoint, which are entered during the RSA login.

Secondly, Pranab is also referring to ISA configuration articles for RSA:

I would suggest doing a small proof of concept using the RSA technology with SharePoint. Is it working correctly, what are the security risks, etc. It seems that there are no best practices about this topic.

Does any of you have experience on this topic? Anyway, I'll keep you posted about it!

Sharepoint
Thursday, May 29, 2008 7:23:08 AM UTC #    Comments [1]  | 

 

Thursday, May 29, 2008 12:07:11 PM UTC
There was a thread on the MSDN forums about this a while back:

http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=2596754&SiteID=1

Not much new info beyond what you've posted, although it appears that RSA doesn't support SharePoint 2007. It might be worth it to contact the original poster and see if he's encountered anything more on the subject and/or to update the thread with the results of your PoC...

John
John Ferringer | ferringer+tamtam-martAT NOSPAMgooglemail dot com
All comments require the approval of the site owner before being displayed.
Name
E-mail
Home page

Comment (HTML not allowed)  

Enter the code shown (prevents robots):
Live Comment Preview
All content © 2010, Mart Muller
On this page
This site
Syndicate
Calendar
<September 2010>
SunMonTueWedThuFriSat
2930311234
567891011
12131415161718
19202122232425
262728293012
3456789
Archives
 Full Archives By Category
February, 2010 (1)
January, 2010 (2)
November, 2009 (5)
October, 2009 (3)
September, 2009 (2)
August, 2009 (1)
July, 2009 (7)
June, 2009 (1)
May, 2009 (1)
April, 2009 (3)
March, 2009 (4)
February, 2009 (3)
January, 2009 (2)
December, 2008 (3)
November, 2008 (4)
October, 2008 (2)
September, 2008 (8)
August, 2008 (6)
July, 2008 (2)
June, 2008 (6)
May, 2008 (10)
April, 2008 (3)
March, 2008 (8)
February, 2008 (9)
January, 2008 (9)
December, 2007 (15)
November, 2007 (1)
October, 2007 (1)
September, 2007 (5)
August, 2007 (4)
July, 2007 (4)
June, 2007 (6)
May, 2007 (12)
April, 2007 (7)
March, 2007 (5)
February, 2007 (12)
January, 2007 (16)
December, 2006 (6)
November, 2006 (22)
October, 2006 (19)
September, 2006 (17)
August, 2006 (23)
July, 2006 (13)
June, 2006 (3)
May, 2006 (10)
April, 2006 (7)
March, 2006 (23)
February, 2006 (14)
January, 2006 (20)
December, 2005 (11)
November, 2005 (18)
October, 2005 (16)
September, 2005 (19)
August, 2005 (32)
July, 2005 (30)
June, 2005 (24)
May, 2005 (25)
April, 2005 (28)
March, 2005 (35)
February, 2005 (32)
January, 2005 (28)
December, 2004 (10)
November, 2004 (8)
October, 2004 (4)
September, 2004 (12)
August, 2004 (5)
July, 2004 (4)
Sitemap
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Disclaimer

Powered by: newtelligence dasBlog 1.9.7174.0

The opinions expressed herein are my own personal opinions and do not represent my employer's view in any way.

Send mail to the author(s) E-mail

Theme design by Jelle Druyts