- Authenticated Users (if used for access) needs to be re-setup
- Nintex Workflows need to be republished
- Some Workflows need to be restarted
- This was about as messy as upgrading from 2007 to 2010.
To make the switch to claims based authentication I used the steps provided by the MDSN library. I used the steps listed in Tip 2 from the article... here is the process I used for a single web server:
- Log on to the SharePoint server with the Farm Admin account.
- In SharePoint Management Shell, run "get-SPWebApplication" and note the one to switch.
- Run the PowerShell script in the MSDN article and then after the $wa.MigrateUsers($true), run $wa.ProvisionGlobally().
- Once I was then able to log on with an admin account I starting verifying/updating "Authenticated Users" on the site and subsites, Search, and MySites. In Claims based, Authenticated Users is now, "All Authenticated Users".
- Once things settle down, check all of your Alternate URLs... you might want to do this with a clean profile so any cached credentials aren't showing false problems... or delete them using Credendial Manager in control panel.
- Also check any outlook connections or mapped drives (drive mapped to a document library).
- Check the application event log for errors.
- Use the ULS logs for any errors you see with Correlation IDs.
- For Nintex I had several errors... but basically the same thing multiple times, "Object reference not set to an instance of an object" for scheduled workflows, as well as opening workflows for editing. To resolve I opened the workflow, exported the entire workflow to a file, created a new workflow, imported the file, then published the new workflow replacing the old one. Any stored credentials will need to be verified. In several cases I then had to restart workflows that were running at the time of the switch to Claims. I ended up rebuilding one older workflow because it was faster than troubleshooting each step... and it needed it anyway.
