Convert a SharePoint WebApplication from Classic authentication to Claims

Here is a quick Powershell script to convert a SharePoint WebApplication from Classic (Windows) Authentication to Claims Authentication. This script is tested in SharePoint 2010 only.

When working with SharePoint 2013, you will not need this in most cases as the default authentication provider is Claims.

	$WebAppName = "http://webappurl/"
	$wa = get-SPWebApplication $WebAppName
	$wa.UseClaimsAuthentication = $true
	$wa.Update()
	$account = "domain\username"
	$account = (New-SPClaimsPrincipal -identity $account -identitytype 1).ToEncodedString()
	$wa = get-SPWebApplication $WebAppName
	$zp = $wa.ZonePolicies("Default")
	$p = $zp.Add($account,"PSPolicy")
	$fc=$wa.PolicyRoles.GetSpecialRole("FullControl")
	$p.PolicyRoleBindings.Add($fc)
	$wa.Update()
	$wa.MigrateUsers($true)
	$wa.ProvisionGlobally()

view raw claims.ps1 hosted with ❤ by GitHub