SharePoint 2013 Hide Default Authentication Providers

After adding ADFS authentication to out environment we ran into an issue where users could add Active Directory or ADFS users accounts when granting permissions.  Because we have both NTLM and ADFS enabled on the web application the would see both versions of the account.

We wanted to prevent them from being able to see both accounts from within a people picker, because users have no permissions and are unable to authenticate using NTLM (we use it just so search can crawl the farm) then we want to remove that option.

hide-default-auth-provider-01

The solution to this problem was found here.  These details the powershell commands to hide the Active Directory authentication provider and prevent it from showing up in the people picker.  From within the SharePoint 2013 Management Shell:

$cpm = Get-SPClaimProviderManager
$ad = get-spclaimprovider -identity "AD"
$ad.IsVisible = $false
$cpm.Update()

hide-default-auth-provider-02

After running the powershell commands the Active Directory selection will not longer present itself as a selection:

hide-default-auth-provider-03

 

 

Advertisements
Tagged with: , , , , , , ,
Posted in Active Directory, ADFS, PowerShell, Quick Tip, SAML Claims, SharePoint 2013
3 comments on “SharePoint 2013 Hide Default Authentication Providers
  1. hilljond says:

    Thanks so much for posting this! Very helpful!

  2. FBA_SP13_User@yahoo.com says:

    Thank you very much for posting this.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: