search cancel

Supported authentication modes for scanning Microsoft SharePoint sites with Symantec Data Loss Prevention

book

Article ID: 162889

calendar_today

Updated On:

Products

Data Loss Prevention Enforce Data Loss Prevention Network Discover

Issue/Introduction

Symantec Data Loss Prevention supports a variety of authentication modes for scanning Microsoft SharePoint 2010 and 2013 sites.

By default, SharePoint 2010 uses classic-mode authentication through the Windows Basic authentication protocol. You can configure NTLM or Kerberos authentication protocols in SharePoint 2010. Symantec Data Loss Prevention supports classic-mode authentication through Basic, NTLM, and Kerberos protocols for SharePoint 2010 sites as described in the Solution section of this article. Symantec Data Loss Prevention does not support claims-based authentication for SharePoint 2010 sites.

By default, SharePoint 2013 uses claims-based authentication through NTLM or Kerberos protocols. Windows classic-mode authentication is deprecated in SharePoint 2013, and is not supported by Symantec Data Loss Prevention. Symantec Data Loss Prevention supports claims-based authentication as described in the Solution section of this article.

Resolution

Supported authentication modes for SharePoint 2010

Symantec Data Loss Prevention supports classic-mode authentication through the following authentication protocols for scanning SharePoint 2010 sites:

  • Basic
  • NTLM v1
  • NTLM v2
  • Kerberos

Supported authentication modes for SharePoint 2013

Symantec Data Loss Prevention supports claims-based authentication using ADFS as the identity provider through the following protocols for scanning SharePoint 2013 sites:

  • NTLM v1
  • NTLM v2
  • Kerberos

Unsupported authentication modes for SharePoint 2010 and 2013

  • Symantec Data Loss Prevention does not support claims-based authentication for SharePoint 2010 sites.
  • Symantec Data Loss Prevention does not support classic authentication for SharePoint 2013 sites.
  • Symantec Data Loss Prevention does not support scanning SharePoint 2013 sites that have been configured with any other claims-based identity provider, including SAML and form-based providers.