Supported authentication modes for scanning Microsoft SharePoint sites with Symantec Data Loss Prevention
search cancel

Supported authentication modes for scanning Microsoft SharePoint sites with Symantec Data Loss Prevention

book

Article ID: 162889

calendar_today

Updated On:

Products

Data Loss Prevention Enforce Data Loss Prevention Network Discover

Issue/Introduction

Symantec Data Loss Prevention supports a variety of authentication modes for scanning Microsoft SharePoint 2010 and 2013 sites.

By default, SharePoint 2010 uses classic-mode authentication through the Windows Basic authentication protocol. You can configure NTLM or Kerberos authentication protocols in SharePoint 2010. Symantec Data Loss Prevention supports classic-mode authentication through Basic, NTLM, and Kerberos protocols for SharePoint 2010 sites as described in the Solution section of this article. Symantec Data Loss Prevention does not support claims-based authentication for SharePoint 2010 sites.

By default, SharePoint 2013 uses claims-based authentication through NTLM or Kerberos protocols. Windows classic-mode authentication is deprecated in SharePoint 2013, and is not supported by Symantec Data Loss Prevention. Symantec Data Loss Prevention supports claims-based authentication as described in the Solution section of this article.

Resolution

Supported authentication modes for SharePoint 2010

Symantec Data Loss Prevention supports classic-mode authentication through the following authentication protocols for scanning SharePoint 2010 sites:

  • Basic
  • NTLM v1
  • NTLM v2
  • Kerberos

Supported authentication modes for SharePoint 2013

Symantec Data Loss Prevention supports claims-based authentication using ADFS as the identity provider through the following protocols for scanning SharePoint 2013 sites:

  • NTLM v1
  • NTLM v2
  • Kerberos

Unsupported authentication modes for SharePoint 2010 and 2013

  • Symantec Data Loss Prevention does not support claims-based authentication for SharePoint 2010 sites.
  • Symantec Data Loss Prevention does not support classic authentication for SharePoint 2013 sites.
  • Symantec Data Loss Prevention does not support scanning SharePoint 2013 sites that have been configured with any other claims-based identity provider, including SAML and form-based providers.

Additional Information

For DLP 16.0 we support the following:

https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/data-loss-prevention/16-0/discover-targets-vont_0180-d263e198/setting-up-server-scans-of-sharepoint-servers-v40249558-d263e13162/configuring-and-running-sharepoint-server-scans-v40249567-d263e13341.html

For access privilege's please see:

https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/data-loss-prevention/16-0/discover-targets-vont_0180-d263e198/setting-up-server-scans-of-sharepoint-servers-v40249558-d263e13162/access-privileges-for-sharepoint-scans-v41517493-d263e13314.html#v41517493

For DLP 15.8 please see the following link:

https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/data-loss-prevention/15-8/discover-targets-vont_0180-d263e198/setting-up-server-scans-of-sharepoint-servers-v40249558-d263e13162/configuring-and-running-sharepoint-server-scans-v40249567-d263e13341.html

 

Powered by Wolken Software