Security
Integration with Active Directory
Sitefinity's security system (users, roles, permissions) is based on ASP.NET Membership & Role providers. Out of the box, Sitefinity includes a standard membership provider and an LDAP (Active Directory) provider. There is also the option to create custom providers if you use other authentication systems that need to be integrated with Sitefinity.
Permissions and access control
You control who does what in Sitefinity. You can grant access and personalize the system to fit the needs and responsibilities of different users. A customized user experience for each role simplifies the interface – boosting productivity – and reducing possibilities of error.
Windows Authentication Support
Website administrators are able to select Windows Authentication as an option for authentication for the CMS administration.
Single Sign-On
The single sign-on allows you to log only once in the administrative back-end of the CMS. Thus, you automatically get access to all projects running on Sitefinity in the respective network.
Security Review for Each Product Release
Every release of Sitefinity undergoes a comprehensive security analysis executed by Veracode. This ensures high reliability of the system, and minimizes the risk of security flaws in the product.