ODBC Driver for Microsoft SharePoint

Build 25.0.9434

AuthScheme

Specifies the authentication scheme used to connect to Microsoft SharePoint.

Possible Values

AzureAD, AzureServicePrincipalCert, AzurePassword, AzureMSI, PingFederate, ADFS, OneLogin, Okta, SharePointOAuth, NTLM, Basic, OAuth, OAuthJWT, Negotiate, None

Data Type

string

Default Value

"NTLM"

Remarks

This property ensures secure authentication based on your environment and identity provider requirements.

Microsoft SharePoint On-Premise

When connecting to a Microsoft SharePoint On-Premise instance, this property, along with User and Password, determines how authentication is handled. The default authentication scheme is NTLM. The available options include:

  • Basic — Uses HTTP Basic authentication.
  • None — Enables anonymous authentication, typically for accessing public sites.
  • NTLM — Uses Windows credentials for authentication.
  • Negotiate — Negotiates an authentication mechanism with the server. Set this to use Kerberos authentication.
  • ADFS — Enables Single Sign-On (SSO) with Active Directory Federation Services (ADFS).

Microsoft SharePoint Online

When connecting to Microsoft SharePoint Online, AzureAD is the default authentication scheme. Depending on the Schema configured, the following options can be used:

REST
  • AzureAD — Performs Azure Active Directory OAuth authentication.
  • AzureServicePrincipalCert — Authenticates as an Azure Service Principal using a certificate.
  • AzurePassword — Authenticates using OAuth with the Password Grant Type. WARNING: You should only use this when the other (more secure) authentication schemes aren't viable, as it requires a very high degree of trust.
  • AzureMSI — Automatically obtains Managed Service Identity (MSI) credentials when running on an Azure VM.
  • SharePointOAuth — Uses OAuth authentication with the Microsoft SharePoint app for Client Credentials.
  • ADFS — Enables SSO with Active Directory Federation Services (ADFS).
  • Okta — Enables SSO with Okta.
  • PingFederate — Enables SSO with PingFederate.
  • OneLogin — Enables SSO with OneLogin.
SOAP
  • Basic — Uses HTTP Basic authentication.

Copyright (c) 2025 CData Software, Inc. - All rights reserved.
Build 25.0.9434