Configuring OneDrive for Business Simple Claims Based Authentication rights

This section describes how to configure support for a simplified approach to claims-based authentication crawls (search security) on OneDrive for Business.

The simplified claims based authentication model requires that you complete the following high-level steps:

1. Install the latest version of OneDrive for Business connector - The OneDrive for Business connector must be installed before you can crawl a claims based authentication-enabled OneDrive server.
2. Configure seed options - The following crawl seed options must be set:
   1. Select the Configuration tab for your search collection, then select the Crawling subtab. In the "Seed Component" section, ensure that the Username is in the format user@domain.com.
   2. Open the "Crawling and ACLs" section, and ensure that the Use Domain Group Name as ACL option is selected.
      Note: All Group names must be unique for simple claims based authentication to work correctly.
   3. Also in the "Crawling and ACLs" section, the option ACLs contain claims must be selected if you are using Windows claims based authentication.
   4. Select the Searching subtab. Open the "General" section and ensure that the Require rights option is set to true.
3. Configure the OneDrive for Business Simple Claims Based Authentication Rights function - From within the Watson™ Explorer Engine administration tool, the live source of your search collection must be configured to use the OneDrive for Business Simple Claims Based Authentication Rights function. The procedure to add the rights function is covered in Adding The OneDrive for Business Simple Claims Based Authentication Rights Form Component. Additionally, the configurable options for the OneDrive for Business Simple Claims Based Authentication Rights function are described in OneDrive for Business Simple Claims Based Authentication Rights Options.