• Member Since 5/1/2012
  • Published: 11/3/2013
  • Views: 6621 | Comments:
Configuring Windows Azure Access Control Service and Facebook authentication in SharePoint 2013 – Part 1
 
This is a two part Post where I will explain how to configure Windows Azure Access Control Services and Facebook authentication in SharePoint 2013. To achieve this we need to set up


  1. One Facebook Application
  2. Adding a Windows Azure Access Control Service
  3. Adding the Certificate & Manage Trust in SharePoint
  4. Registering  custom ACS in SharePoint using PowerShell


1, 2 & 3 are done in Part 1. This part will cover creating a new web application and registering Custom ACS using PowerShell and making my web application aware of this custom ACS.




Step by step walk-through follows:


Step 1: Load Windows PowerShell ISE





Step 2: Execute the command to register custom ACS


  1. Add-PSSnapin Microsoft.SharePoint.PowerShell -erroraction SilentlyContinue 
  2.      
  3. $cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2(   
  4.     "C:\practice\acssts\ACSCertificate.cer"  
  5.   
  6. New-SPTrustedRootAuthority -Name "SP2013 ACS" -Certificate $cert   
  7.    
  8. $map0 = New-SPClaimTypeMapping -IncomingClaimType   
  9.     "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"   
  10.     -IncomingClaimTypeDisplayName "NameIdentifier" -LocalClaimType   
  11.     "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/username"   
  12. $map1 = New-SPClaimTypeMapping -IncomingClaimType   
  13.     "http://schemas.microsoft.com/accesscontrolservice/2010/07/claims/identityprovider"   
  14.     -IncomingClaimTypeDisplayName "IdentityProvider" –SameAsIncoming    
  15.   
  16. $map2 = New-SPClaimTypeMapping -IncomingClaimType   
  17.     "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"   
  18.     -IncomingClaimTypeDisplayName "Email" -SameAsIncoming   
  19.    
  20. $realm = "https://sp2013/_trust/default.aspx"     
  21.   
  22. $signinurl = "https:// j4sappreference.accesscontrol.windows.net:443/v2/wsfederation"   
  23.    
  24. $ip = New-SPTrustedIdentityTokenIssuer -Name "SP2013 ACS" -Description "SP2013 ACS"  -Realm $realm -ImportTrustCertificate $cert -ClaimsMappings $map0,$map1,$map2   
  25.     -SignInUrl $signinurl -IdentifierClaim $map0.InputClaimType  








Step 3: Registering custom ACS is done and now you go ahead with creating web application




Step 4: Select Trusted Identity provider as SP2013 ACS





Step 5: Click ok and create web application





Step 6: Create a site collection and give primary site collection as your Facebook account







Step 7: load the new site which is SSL enabled




Step 8: You have option to choose between windows and custom ACS


Step 9: You have two more options to try “Windows Live” and “Facebook”



Step 9: Select “Facebook”




Step 10: Click okay and you are done!



Step 11: You can also log in with windows authentication and Windows Live account as well







Don’t forget to leave a comment if it helps you.
Think Big, Start Small




Related Blogs

Loading...