Sharepoint 2012 Authentication for non-AD users - authentication

We have a sharepoint site that is used both internally and externally. Internal users are authentication via AD and there are no issues. The external users are authenticated using STS and the Portal User Table. However whenever an external user tries to open a document they have to re-enter their login credentials.
This happens everytime they open a document unless they happen to have left the application that the document is read in is left open, i.e. if they open a word document, leave it open and then open another word document then they don't get asked for credentials.
This is obviously a royal pain as we are using the site for document review, revision and collaboration. Our systems team say this is working as designed and there is nothing that can be done about it. Is there any practical way to resolve this without the external users having to specifically configure something on their own system or network?
Thanks
Jim

Here is a solution I found quite some time ago..
In Internet Explorer, click on Tools and select Manage add-ons
Highlight Toolbars and Extensions in left navigation.
Locate SharePoint OpenDocuments Class
Right-click and click the Disable button
Close and refresh browser

Related

rClone to mount Onedrive Business

Whenever I try to mount my onedrive on my pc, I face an issue. Right now my Org has more than 1 onedrive. (business plan 2)
and whenever I try to connect my onedrive, I get connected to other onedrive.
So when I fill the client id, secret code created by me. it shows other user drive. what is the issue?
I tried doing alot but always failed. In rClone it shows only 1 onedrive and that is other user onedrive.
Thank you
What do you mean by another OneDrive? Another user's OneDrive? A OneDrive with the same account but different contents? Are you presented with different directories to choose from once you are authenticated? If you're an admin in your org, or they haven't disabled the functionality for users to do so, go to https://aad.portal.azure.com , click on Users on the left, search for your account and click on it (don't check it) and then click on Sign-in logs on the left hand side. Just to verify that your sign-in is actually being tracked in the tenant and you are connecting to what you think you are connecting to.

Anonymous Page in SharePoint Online

there is a requirement in my project to create couple of anonymous pages in SharePoint Online for guest users. I know this is possible with SharePoint On Premise, however just wanted to check if its possible in SharePoint Online also to create anonymous pages, because in SharePoint Online, its always required to authenticate the user against Azure Active Directory.
Business Scenario - Guest users should be able to access 1-2 anonymous pages, after that they need to login into the application to access further application features and functionalities.
Anonymous access is not supported in SPO sites from safety reasons and because sharing with external users is well done through Azure Active Directory.
However, the "anonymous page" behavior can be reproduced in SPO as following:
Go to Microsoft 365 admin center
Select SharePoint
Go to Sites and select Active Sites
Select the Site Collection you want, go to Policies and select "Anyone" radio button
see screenshot
Also, when doing this be careful at what you have set here: Microsoft 365 admin center->Policies->Sharing (do not forget to pay attention on safety and security)
see screenshot
Basically, all you need can be achieved by using the Admin center. This link contains more details on what I have described: https://code2care.org/tutorial/how-to-enable-anonymous-public-access-microsoft-office-365-sharepoint-online-site-collection-file-folder-without-login
Hope it helps, best regards!

Adobe Reader Security

We set up new domains to forward to an application on our jboss platform. These new domains are used in the links on a pdf created with itext. They are shorter links to additional data, as we wanted to hide the full links. These links forward to our application correctly. The problem is that, when a link is clicked, adobe displays a dialog box (printed below) asking if the user wants to allow this connection. Unfortunately, every time the user clicks a link in the pdf, he will get the dialog box below. I read in the Adobe documentation that cross-domain access triggers a security warning. Have any of you encountered and solved this problem? Any help will be appreciated. Thanks.
Per Adobe:
Allow or block links to the Internet in PDFs
Clicking any link to the Internet poses a potential security risk. Malicious websites can transfer harmful content or silently gather data. If you are concerned about these risks, you can configure Acrobat and Reader to display a warning when a PDF attempts to connect to an Internet site.
You can allow Acrobat and Reader to contact selected websites by adding their addresses (URLs) to your list of trusted websites in the Trust Manager preferences. Alternatively, you can allow all URLs.
Note: If the options in the Manage Internet Access dialog box are disabled, select Custom Setting. If options are still disabled, your product could be under an administrator’s control with those restrictions in place.
Choose Edit > Preferences (Windows) or Acrobat/Adobe Reader > Preferences (Mac OS).
From the Categories on the left, select Trust Manager.
Click Change Settings to specify the default behavior for accessing the Internet from PDFs.
Choose from the following options:
To allow access to all URLs, select Allow PDF Files To Access All Web Sites.
To restrict access to all URLs, select Block PDF Files’ Access To All Web Sites.
To restrict access to only the URLs you specify, select Custom Setting.
To add a website, type its URL in the Host Name text box and click Allow or Block.
To remove a URL you no longer want to visit, select the website in the list and click Delete.
To specify what the program should do with websites not in your custom list, select one of these options: Always Ask, Allow Access, Block Access.
For more information, see the Application Security Guide at http://www.adobe.com/go/learn_acr_appsecurity_en.
Note: If you open a protected PDF and receive a prompt to allow or block a URL, select Remember My Action For This Site. This reply adds the URL to this list.

auto login to sharepoint site which uses windows authenticattion

How to login to windows authenticated sharepoint site automatically without prompting for credentials using VB.net. any help would be appreciated.
Thanks in advance.
Info you've given us is not enough to answer corretly; I hope this helps:
If it's a custom solution that is in the sharepoint; sharepoint should do this automatically if the user has the appropriate read permissions given in the "User permissions" of the site and there should be a ie trick like:
Go to Internet Explorer options.
Add the SharePoint site to the Trusted Location.
Go to Custom Level and scroll to last option and change it Automatic logon with current username and password.
You may also do it for Intranet Zone if required.
reference here
Like you can understand, it's a client based decision as well, so there should be no fully-operable way to do this.

Testing Facebook app on VB.NET WebBrowser - IFrame Access Deined - Cross-Domain Scripting

I have a facebook iframe app I'm trying to test using a WebBrowser Control on a form in VB.NET 2010. Whenever I try to access the WebBrowser.Document.Window.Frames frame object on a document where my app is showing in the broswer, I get an Access Denined exception. Reading around on the web, I see people saying that this is to keep scripts in a document from accessing content in iframes that are pulling content from another domain, as per 'http://msdn.microsoft.com/en-us/library/ms533028.aspx', for security reasons.
While I totally understand why this is done for the general public, how can I disable it on my machine so that I can run these tests? I can't properly test my app without doing it in the facebook iframe and using the WebBrowser control is the only way I know to do this test programmatically.
Any ideas? I'm on windows server 2003 and ie8, .net4.0, if that helps. I own the domain where the app is, and its in AS.NET MVC2, so if there's anything I can do to the web code to enable this??? I also removed the Internet Explorer ENhanced Security COnfiguaration component, but that didn't help.
Thanks,
Philip
Have you tried changing your Internet Explorer settings to enable cross domain scripting?
I believe the VB.Net Web Browser control inherits settings from the local copy of IE.
Try this:
From Internet Explorer, choose Internet Options from the Tools menu.
On the Security tab of the Internet Options dialog box, select the Local Intranet Web Content Zone and then click Custom Level.
Locate the Miscellaneous/Access Data Sources Across Domains setting, and then select Enable, as shown in Figure 2.
Click OK, and then click Yes to the warning dialog box that appears.
Click OK to close the Internet Options dialog box.
Also try adding the Facebook https Url into your trusted sites.
As a last resort disable Native XMLHttp in IE and attempt to revert back to an older version of the XMLHttp object.