Category Archives: Azure

Azure Authentication Library

Azure Authentication Library (AAL) is slowly turning into a really useful “easy to use” library to write client code against Microsoft identity back-ends like Windows Azure Active Directory and Access Control Service (and hopefully ADFS too at some point). Very … Continue reading

Posted in .NET Security, Azure, IdentityModel, WCF | Leave a comment

“Windows Azure, Identity & Access – and you” Talk from Cloudburst 2012

My talk from Cloudburst 2012 is available here: http://www.streamshed.com/microsoft/cloudburst.htm# This was a nice little conference. recommended. (make sure to also watch Christian’s ServiceBus talk, which also involves identity quite a bit ;)

Posted in .NET Security, Azure, Conferences & Training, IdentityModel, IdentityServer | 2 Comments

WIF & .NET 4.5 Identity and Access Control Training

Just a quick update – I will run my public WIF class for the last time on the 14th/15th November in Oslo (the dates on the page are not correct anymore). After that there will be a brand new .NET … Continue reading

Posted in .NET Security, ASP.NET, Azure, Conferences & Training, IdentityModel, IdentityServer, WCF, WebAPI | 6 Comments

Taking Control over Azure Access Control Service HRD (without the Help from jQuery)

Vittorio wrote a post earlier today showing how to fetch the identity provider feed from ACS and use it to drive the sign-in handshake from within your application and UI. This is indeed a very useful (and user friendly) approach. … Continue reading

Posted in Azure, IdentityModel | Leave a comment

My Sessions from NDC 2012

All videos from NDC are online now. This is great content, go check it out! Authentication & Authorization in .NET 4.5 – Claims & Tokens become the standard Model Securing ASP.NET Web APIs Windows Azure Access Control – Outsourcing Security … Continue reading

Posted in Azure, Conferences & Training, IdentityModel, WebAPI | Leave a comment

Access Control Service: Passive/Active Transition Sample

Here you can find my updated ACS2 sample. In addition to the existing front ends (web [WS-Federation], console [SOAP & REST], Silverlight [REST]) and error handling, it now also includes a WPF client that shows the passive/active transition with a … Continue reading

Posted in Azure, IdentityModel | 4 Comments

Access Control Service: Programmatically Accessing Identity Provider Information and Redirect URLs

In my last post I showed you that different redirect URLs trigger different response behaviors in ACS. Where did I actually get these URLs from? The answer is simple – I asked ACS ;) ACS publishes a JSON encoded feed … Continue reading

Posted in Azure, IdentityModel | Leave a comment

Access Control Service: Transitioning between Active and Passive Scenarios

As I mentioned in my last post, ACS features a number of ways to transition between protocol and token types. One not so widely known transition is between passive sign ins (browser) and active service consumers. Let’s see how this … Continue reading

Posted in Azure, IdentityModel | Leave a comment

Access Control Service: Protocol and Token Transition

ACS v2 supports a number of protocols (WS-Federation, WS-Trust, OpenId, OAuth 2 / WRAP) and a number of token types (SWT, SAML 1.1/2.0) – see Vittorio’s Infographic here. Some protocols are designed for active client (WS-Trust, OAuth / WRAP) and … Continue reading

Posted in Azure, IdentityModel | Leave a comment

Migrating a Local IdentityServer Membership Database to SQL Azure

This is a useful tool to accomplish this: http://sqlazuremw.codeplex.com

Posted in Azure, IdentityServer | Leave a comment