Eugenio Pace

Preparing to be wrong

Browse by Tags

Tagged Content List
  • Blog Post: Claims Identity Guide–Hands On Labs

    Training content based on our guides has been as popular as the content itself. You can now download the “Release Candidate” for labs corresponding to the new guide . The labs are more than just a mirror of the guide. We took the opportunity of adding a few things that complement and extend what is explained...
  • Blog Post: Authentication in WP7 client with REST Services–Part II

    In the previous post I covered the “semi-passive” way for authentication between a Windows Phone 7 client and a REST service. This post completes the information with the “active” way. There’s nothing unexpected here really: We call the Identity Provider using a RequestSecurityToken message (RST) We...
  • Blog Post: SaaSGrid and Identity

    Apprenda’s SaaSGrid is now “claims enabled”!  This is fantastic news. Any SG customer can now enjoy the benefits of claims based identity: simpler user management, easy federation with business partners, support for multiple identity providers, greater interoperability, etc. SG support for claims...
  • Blog Post: Single Sign Out–WebSSO

    While reviewing all the existing samples we’ve noticed that our implementation of Single Sign Out was kind of….weak.  It wasn’t really fully implemented and wasn’t very clear what was happening either (or what it should happen) We’ve fixed all that now in scenario 1: WebSSO . Things get more complicated...
  • Blog Post: ACS as a Federation Provider – Claims transformation

    To work properly, a-Order needs a number of claims to be supplied: User name Organization Role The "Organization” claim is used to filter orders belonging to a specific customer of Adatum. For example, Litware users (like Rick) will eventually end up with a token containing a claim with “Organization...
  • Blog Post: ACS as a Federation Provider–Home Realm Discovery Part 2

    In my previous post, I had a question for all you: What would happen if Adatum’s FP didn’t supply ACS with the whr parameter? An the answer is: ….. ACS will simply ask the user!   ACS has no way (besides the whr parameter) of knowing where to go next (unless you configured your app with only 1 Identity...
  • Blog Post: ACS as a Federation Provider - A little bit deeper into the sample (Home Realm Discovery)

    Updates : fixed typos. Clarified how Home Realm Discovery works in this example.   In the previous post , I introduced the basic scenario of using ACS as a federation provider for Adatum (in addition to the one they already have). In this post, I’ll show you more details on how this works, based...
  • Blog Post: Our next project – Claims based Identity and Access Control

    Not surprisingly maybe, security in general, and authentication & authorization in particular, is a consistently highly rated concern for our customers. These concerns are especially elevated  with those considering the cloud, because they don’t have as much control on the cloud as they would...
  • Blog Post: A year’s balance–next project

    A little bit late for a year balance since the year has already started, or so I’m told. Anyway, as we prepare for the next project, I reflected on my team’s work for the last 18 months. 18 months is more than a year, so you might wonder why am I doing a year balance on the work done on 18 months? Good...
  • Blog Post: Identity Federation Interoperability – WIF + ADFS + CA SiteMinder

      Update: I just found this comprehensive guide for setting up federation with CA SiteMinder. http://technet.microsoft.com/en-us/library/ff754295(WS.10).aspx How it works (Full size diagram here ) End to end demo (Video here ) Technorati Tags: Federated Identity , SSO , Federation Provider , Identity...
  • Blog Post: Identity Federation Interoperability – WIF + ADFS + IBM Tivoli Federated Identity Manager

      How it works (Full size diagram here ) End to end demo (Video here ) Technorati Tags: ADFS , WIF , Geneva , Identity Federation , Identity Provider , STS , SSO
  • Blog Post: Windows Azure Architecture Guide – Part 2 – TailSpin Surveys – AuthN and AuthZ

    Tailspin Surveys is a multitenant, SaaS solution, targeting many different customers. Some of these customers might be “enterprise” with “Big-IT” and are likely to demand advanced integration capabilities for identity (e.g. identity federation). Others, potentially smaller, are likely to not require...
  • Blog Post: Federated Identity interoperability samples

    Customers frequently ask me about interoperability with their non-Microsoft products, and identity is not an exception. There’s roughly 2 set of scenarios that come up often: A relying party (an application) built on the Microsoft stack trusting a non-Microsoft Identity Provider. A non-Microsoft application...
  • Blog Post: Windows Azure Guidance – First version of a-Expense in the cloud

    Available for download here , you’ll find the first step in taking a-Expense to Windows Azure. Highlights of this release are: Use of SQL Azure as the backend store for application entities (e.g. expense reports) Uses Azure storage for user profile information (the “Reimbursement method” user preference...
  • Blog Post: Windows Azure Guidance – a-Expense “before” on CodePlex

    First build of our samples is now available on CodePlex . This initial version is the “before the cloud” baseline application, so you won’t find anything related to Windows Azure here. This week we will take this simple baseline and start moving it to the cloud. Goals for this next iteration are to:...
  • Blog Post: Just Released – Claims-Identity Guide online

    The entire book is now available for browsing online on MSDN here: http://msdn.microsoft.com/en-us/library/ff359115%28lightweight%29.aspx Now, to be honest, it doesn’t look as nice as the printed book (small preview here):     But everything is in there! (and doesn’t look that bad at all either...
  • Blog Post: Updated code samples & chapters for Claims Identity Guide – Release Candidate

    In synch with the availability of ADFS V2.0 Release Candidate , I’m very happy to announce that we are posting a new update of the guide. Our own “RC”. You’ll find new samples and new chapters. Both content complete now. We are now covering the following scenarios: Single Sign on for web applications...
  • Blog Post: RIA Services and WIF – Part II

    As promised in my previous post , here’s the second part of my findings playing with WIF and RIA Services beta. This time, I used the HRApp sample available here . The initial steps are essentially the same I described before: 1- Installed the sample and make sure it runs 2- Ran “ FedUtil ” which: a...
  • Blog Post: Updated RIA and WIF samples – Part I

    Some time ago, I put together a simple demo integrating WIF in RIA Services. Now RIA is a Beta and there’s a lot of cool stuff in there. The good news from an identity perspective is that it just works :-). I’ve been playing a little bit with a couple of new samples and with the previous (updated) HRApp...
  • Blog Post: Claims based Identity Guide – New release and PDC goodness

    New updated chapters & samples are posted on CodePlex . The samples are all updated for WIF RC and include new scenarios and technologies (e.g. web services with WCF and web sites with MVC). If you are going to PDC , lot’s of interesting things are happening there. Of all things, you will have a...
  • Blog Post: Claims based Identity & Access Control Guide – Updated drafts & samples available

    Yesterday, we uploaded a new release of the Guide and the samples. You can download the content from here . (Note: if you downloaded them yesterday, you might want to check again. We mistakenly uploaded the samples with no docs. It is fixed now). You’ll find: Updated introduction & WebSSO chapters...
  • Blog Post: RIA Services and Windows Identity Foundation – Claims enabling a RIA application

    Recently a Customer asked me if an application using RIA Services could use WIF. I’m fairly new to RIA Services so I didn’t know the answer right away, however I suspected the integration should not be too hard, so I spend a couple of days spiking a solution. The good news: it just works!     ...
  • Blog Post: Claims based Identity & Access Control Guide – Early drafts available

    We finally have a CodePlex site for sharing early content with you all. Check the downloads section for: A few intro chapters (some of the “theory”, technologies and protocols behind claims based identity) The first scenario (roughly described in my post here , but better and nicer, and written in English...
  • Blog Post: Exploring the Service Provider track – Fabrikam Shipping Part II (Solution)

    Now that we presented the scenario & the requirements , let’s take a look at the solution. What is conceptual solution we propose? Fabrikam Shipping in the pre-Claims era: This diagram shows Fabrikam Shipping today if used by Adatum (no claims, no federation): You will see the usual suspects for...
  • Blog Post: Exploring the Service Provider track – First station: Fabrikam Shipping – Part I (the scenario & challenges)

    Once again, thanks everybody that wrote us with reviews, feedback and suggestions! Please keep it coming! Also: we hope to have soon a CodePlex site where we can start sharing more. We are still working out some details. As usual, the Disclaimer: this post and the next ones are early drafts to share...
Page 1 of 2 (26 items) 12