Chapter 2. Understanding the Claims-based Access Model
This chapter will explain the idea of identities and claims especially in the use of Windows 8 / Windows Server 2012 and higher. This chapter will also define how Kerberos Armoring and Compound Authentication works and how to manage claims and resource properties. Test lab will guide you to go deeper into the functionality of Dynamic Access Control (DAC). In this chapter you will learn about:
- Understanding claims
- Windows 8/ Windows Server 2012 and newer claims support
- Kerberos Armoring and Compound Authentication
- Managing claims and resource properties
- Using Claim Transformation and Filtering
- Groups or DAC, let's extend our first solution
By the end of this chapter you will have learned what a claim is and how to work with it. Furthermore, you will have configured a first advanced solution in the lab environment. The solution provides you an understanding about when to use groups or claims for authorization. Also, the situation in which a combination of both can help you to fulfill your requirements in configuring access control to your information stored on a file server.