In SharePoint 2013, you can only configure claims-based authentication when you manage Web applications in the Central Administration page. This is because claims-based authentication is the default and preferred method of user authentication, and is required to take advantage of server-to-server authentication and app authentication. If you would like to create a Web application with classic mode authentication, you can do this using Windows PowerShell cmdlets. In this article, we will walk you through the process of creating Web applications that use classic mode authentication in SharePoint 2013 with Windows PowerShell.
To create your Web application using classic mode authentication:
1. Verify that you have the following memberships:
- securityadmin – Fixed server role on the SQL Server instance:
- db_owner – Fixed database role on all databases that are going to be updated:
- Administrator privileges on the server on which you are running the Windows PowerShell cmdlets:
2. Start the SharePoint 2013 Management Shell
- For Windows Server 2008 R2:
On the Start menu, click All Programs, click Microsoft SharePoint 2013 Products, and then click SharePoint 2013 Management Shell:
- For Windows Server 2012:
On the Start screen, click SharePoint 2013 Management Shell:
If SharePoint 2013 Management Shell is not on the Start screen:
Right-click Computer, click All apps, and then click SharePoint 2013 Management Shell:
3. At the Windows PowerShell command prompt, type the following:
New-SPWebApplication -Name <Name> -ApplicationPool <ApplicationPool> -AuthenticationMethod <WindowsAuthType> -ApplicationPoolAccount <ApplicationPoolAccount> -Port <Port> -URL <URL>
Where:
- <Name>: The name of the new Web application.
- <ApplicationPool>: The name of the application pool.
- < WindowsAuthType>: Either NTLM or Kerberos. Kerberos is recommended.
- <ApplicationPoolAccount>: The user account that this application pool will run as.
- <Port>: The port on which the Web application will be created in IIS.
- <URL>: The public URL for the Web application.
For example:
New-SPWebApplication -Name “Classic Mode Site” -ApplicationPool “ChauO15sql” -AuthenticationMethod “Kerberos”-ApplicationPoolAccount “domainnameusername” -Port 88 -URL “http://chauo15sql“
-
- You will see a new Web application with classic mode authentication in the Central Administration page:
- After you have successfully created the Web application, you must create the site collection in which you will use your Web application:
Now you have a Web application that uses classic mode authentication as the default in SharePoint 2013 instead of using claims-based authentication: