I have some implementations of the EPM where I used the Forms authentication to authenticate the EPM users. I have wrote my notes and would like to share it with you regarding this
Why to go for Forms Authentication
- Some of the EPM users are not part of the organization domain
- There is no Active Directory
- The user can not access the organization domain
Why NOT to go for that?
Well, do you want me to speak technically or from implementation prospective?
I guess you said both?
- leakage of information for MS Sharepoint Forms Authentication as it is not embedded by default
- Poor user control functionality.
- No out of the box tool for editing users online
- Poor approach to design the security Rules for passwords
- Most of the customer forgot their Forms Passwords but they don't do the same with AD passwords
- Accordingly getting the users accounts locked, this is not the issue, the issue is the poor approach to get them back.
- Integration with Outlook is another bad thing, once you open the outlook and entered your AD password you will get asked to enter your forms credential. Most of my users consider it as a double job that they don't like