I am working on upgrading our Sharepoint environment from 2010 to 2013. We have Enterprise licensing and only 1 front end server and a separate SQL server. I am using the attach database method. First I created a farm on a new Windows 2012 server, fully patched. This went very smoothly. I then attached a copy of our content database on a new SQL 2012 server. [Note: my top level site gives read rights to all authenticated Domain users.]
In Sharepoint Central Administration, I verified that my User Profiles are being synchronized and from Manage User Profiles, I can view any of my AD domain users.
If I add my Site admin to the Web Application's User Policy then the admin can log into the sharepoint site. My other domain users can not log in. I can't figure out why my domain users who are not listed on the Web Applications User Policy, can not log into the site ("Sorry, this site has not been shared with you"). I checked on my Sharepoint 2010 version of my site and the user policy does not list my Domain users either as a group or individually, yet they can log on to the site based on the permissions set on the site permissions.
I am not sure where to look to figure this out. Has something changed in 2013, do I need to add my domain user group to the user policy? I want to be sure this will not override all the site, folder, file level permissions.
Please advise.
Fred Zilz