We have a lot of people in our company: employees, contractors, people in joint ventures, etc. So, we want to control access to our intranet. To do that, we need to be able to prevent people in SharePoint from granting access to "Authenticated Users." Is there a way to do this?
One way it seems feasible to do this is to deny access to Authenticated Users in web application policy, but that seems like it would override everything else, basically preventing anyone from accessing SharePoint. I may be wrong.
Best Answer
This is more a "through obscurity" technique - but you can remove the "Add all authenticated users" link from the permissions page. More savvy users will still be able to type in nt authority\all authenticated users - but it keeps the average Joe from easily adding the group.