Here we will discuss how we can resolve access denied issue while migrating from Moss 2007 to SharePoint 2013. Recently we were working on a migration project from Moss 2007 to SharePoint 2013 using the database upgrade approach. We first migrated from moss 2007 to SharePoint 2010 and then from SharePoint 2010 to SharePoint 2013. Then we verify using System Account and everything was appearing correctly. But when users starts visiting the site they get access denied error.
– Various options to Delete Site or Sub Site or Restore in SharePoint 2013 Online and SharePoint Onpremise
– Force UndoCheckout or checkin using PowerShell in SharePoint 2013
– Enable or Disable List Throttling using PowerShell in SharePoint 2013
The default authentication in SharePoint 2013 is Claims authentication, so when we create a web application in SharePoint 2013 it considers as claims users.
In MOSS 2007 the users comes in Domain\UserName format and in SharePoint 2013 the users account format comes as i:0#.w|domain\username. So when SharePoint tried to search the user in the traditional format, it did not find the user and it gave access denied.
So for this we have to convert claims format. So better is to do this conversion in SharePoint 2010 environment not in SharePoint 2013 directly or not in production directly.
Below is the PowerShell to convert classic mode web applications to claims mode authentication in SharePoint 2010.
$WebAppName = “https://WebApplicationURL”
$wa = get-SPWebApplication $WebAppName
$wa.UseClaimsAuthentication = $true
Below is the PowerShell command which will convert the users to claims format.
$webapplication = Get-SPWebApplication -Identity “https://WebApplicationURL”
Once doing everything, then you can move from SharePoint 2010 to SharePoint 2013.
Hope this will be helpful, but do not try this in the production environment directly.