Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

Tuesday, April 01, 2008 1:00 PM

Patterns and Practices: WCF Security Guidance available online

The Microsoft Patterns and Practices team has created a guide for WCF security. http://blogs.msdn.com/jmeier/archive/2008/03/27/patterns-and-practices-wcf-security-guidance-now-available.aspx You can find more information at the root site http://www.codeplex.com/WCFSecurity
Posted by govindr | 0 Comments
Filed under: ,
Thursday, August 30, 2007 11:22 AM

503 Server Unavailable failure with IIS 7.0

When working with IIS 7.0 in Vista if you are seeing this failure trying to access the webserver, there are couple of things to look for. 1. Check if the Application Pool is running. You can click on the Application Pools option on the Left Pane of IIS
Posted by govindr | 2 Comments
Filed under: , ,
Monday, August 27, 2007 4:04 PM

Reliable Messaging and SecurityToken validation

One of the things that have come up many times is how the service could stop a client from retrying a request for a valid security validation error while Reliable Messaging is enabled. If you are not familiar with the situation the essence of the problem
Posted by govindr | 1 Comments
Tuesday, August 21, 2007 2:47 PM

Handling Mismatched Trust Versions on the Client

Federation Clients might have scenarios where it is talking to a Service and STS that don't have the same trust version. The Service WSDL can contain a RequestSecurityTokenTemplate with Trust elements that are in different version than the STS. In these
Posted by govindr | 0 Comments
Monday, July 16, 2007 11:15 PM

Security element and "actor" attribute.

SOAP 1.1 defines the attribute "actor" that can be on any SOAP header which will indicate who the ultimate processor of the header is going to be. It also defines a standard URI value for this actor attribute that is " http://schemas.xmlsoap.org/soap/actor/next
Posted by govindr | 1 Comments
Thursday, May 03, 2007 10:57 AM

Updated Re-Serialize SAML token

There has been a lot of interest around this and hence I have attached some code listing to this post. Check it out!
Posted by govindr | 0 Comments
Filed under: ,
Tuesday, March 06, 2007 10:42 PM

WSE VS addin fails to generate WSE proxy in 64-bit machine

If you are using WSE and are a VS developer, you would be familar with the WSE Visual Studio Addin that automatically generates WSE Proxy when a Web Reference is added to the project. But if you are a developer in 64-bit machine you will not have this
Posted by govindr | 0 Comments
Filed under: , , ,
Tuesday, March 06, 2007 3:33 PM

Using Visual Studio Intellisense to Edit WCF Configuration files.

If you are using Visual Studio 2005 below is how you can enable intellisense to edit your WCF config files. Copy the Attached WCF Configuration schema file to your VS installation folder at %Program Files%\Visual Studio 8\Xml\Schemas. You will find DotNetConfig.xsd
Posted by govindr | 6 Comments
Filed under: ,

Attachment(s): WCFConfig.xsd
Saturday, February 24, 2007 1:13 PM

Trouble Installing .NET 2.0....

If you had a Beta version of Framework 2.0 installed on your machine and are moving to a the RTM version, then you might have some trouble with getting the correct version of mscoree.dll in place. The reason is Microsoft Installer's resilence feature
Posted by govindr | 0 Comments
Filed under: , , ,
Tuesday, February 20, 2007 8:26 PM

Daylight savings changes and WCF Security Processing

I had a question today from a customer who was concerned that his WCF application might start to behave erratically due to the new Daylight savings schedule. Then I realized that there has been quite some noise around this area and people are predicting
Posted by govindr | 0 Comments
Filed under: , ,
Monday, February 19, 2007 10:57 AM

WS-Federation Passive

I have discussed about Federation before. This post discusses Federation from the active context. "Active" means that the client is a smart client capable of doing encryption and signing and can actively participate in the Federation protocol. There are
Posted by govindr | 0 Comments
Tuesday, February 06, 2007 10:10 PM

Asymmetric tokens and Mixed-Mode Security

When you are using a X.509 Certificate as the client authentication token in Mixed-Mode Security - apart from signing the Timestamp WCF will sign the 'To' header as well. This is to prevent a client spoofing attack by a rougue service. Consider the situation
Posted by govindr | 0 Comments
Tuesday, February 06, 2007 9:41 PM

WCF Security Modes

WCF supports three types of Security. They are, Transport Security Mixed-Mode Security Message Security Let's discuss the various Security Modes below. Transport Security is applied at the transport byte stream below the message layer. The message does
Posted by govindr | 4 Comments
Tuesday, January 30, 2007 11:11 PM

Configure SSL in IIS 7.0

If you are confused looking at the IIS 7.0 UI, you are not alone. I recently had to configure SSL on a IIS 7.0 and had quite some guessing work before I could get it to work. Below documents the procedure required to do this, Open IIS Manager and click
Posted by govindr | 1 Comments
Filed under: ,
Monday, January 22, 2007 1:42 PM

Security Header Layout

There are four different security header layout that can be specified in WCF. The values are defined in WS-SecurityPolicy. They are, Strict - All security tokens are defined in the security header before its first use. The primary signature should be
Posted by govindr | 0 Comments
More Posts Next page »
 
Page view tracker