Authentication and Security within ShareKnowledge LMS
User authentication is a process of validating the authenticity of a given user in ShareKnowledge LMS based on the username and password (or other unique and secure identifiers). User authentication by means of ShareKnowledge is performed by verification of the user's account name stored in session against the account name stored in the table containing information about ShareKnowledge users. ShareKnowledge is based on services and infrastructure of MOSS 2007 (WSS 3.0) and Internet Information Services for user authentication and authorization, as well as for control over the access to sites, lists and document libraries, and interface personalization.
The following SharePoint Authentication Providers can be used in ShareKnowledge:
- Active Directory provider – a typical provider for a portal internal users authentication, e.g., the organization's employees;
- SQL Membership Provider – used for Form Based Authentication, when information about users' accounts is stored in a database of a specific structure. It is mostly used for authentication of external users, who are not employees of the organization;
- LDAP provider – used for user authentication by means of directory services using the LDAP protocol. This provider is included in the MOSS 2007 suite and is not included in WSS 3.0.
Besides the standard providers listed above, it may be required to develop and use an individual authentication provider.
Working with ShareKnowledge LMS, user authorization is managed either by MOSS 2007 (WSS 3.0) services or by a ShareKnowledge security sub-system, depending on the type of rights:
- Access to portal sites, lists and document libraries, separate interface pages, user’s right to work with particular documents, forums, etc. are controlled by MOSS 2007 (WSS 3.0) services based on the users belonging to a particular SharePoint group;
- User's privileges in educational process, training courses, programs and task manageability, accessibility of the information about other user's learning progress are controlled by ShareKnowledge security subsystem on a role-based model.
ShareKnowledge role-based security model complements the MOSS 2007 (WSS 3.0) security model and performs additional scenarios for privilege control, which are important for e-learning automation.
More information about the authentication and security could be found in the Deployment Guide.