I want to thank Ethan Wilansky and Tomek Stojecki for their excellent and hard work to pull together this two part whitepaper on Identity and Access Strategies for SharePoint Products and Technologies. Part 1 discusses the Membership and Provider Architecture and Part 2 digs into Membership and Role Provider Assignment. These constitute a comprehensive look at and guidance for the use of membership and role providers with SharePoint. Sample code, Identity and Access Strategies Code Sample for SharePoint Server, accompanies the whitepaper. To give you a flavor for the paper, here’s the introduction:

“Tomes have been written about the Microsoft ASP.NET provider architecture, and much of that content focuses specifically on the membership and role providers. In addition, there are probably two dozen blogs about how to configure membership and role providers in Microsoft SharePoint Products and Technologies (which includes Microsoft Office SharePoint Server 2007 and Windows SharePoint Services 3.0). This article provides a variety of links to many of these additional resources. Why, then, write this article? We aim to start where most of these resources stop. Sure, certain items addressed in this article repeat existing guidance to establish context. However, this article delves deeply into describing exactly how SharePoint Products and Technologies use the membership and role providers. Then, it demonstrates how to automatically configure providers into Office SharePoint Server so that SharePoint Server manages the configuration settings for you. The article's examples focus on the Microsoft SQL Server Membership and Role providers and the Lightweight Directory Access Protocol (LDAP) membership and role providers in SharePoint Server 2007, and then briefly explores the Active Directory Federation Services (ADFS) single sign-on (SSO) Membership and Role providers.”

Thanks Ethan and Tomek!

Enjoy!