Signing users in and granting them access is a core function of almost every cloud-based application. In this session we will show you how to simplify your user experience by enabling users to sign in with an existing account such as a Windows Live ID, Google, Yahoo, Facebook, or on-premises Active Directory account, implement access control, and make secure connections between applications. You will learn how the AppFabric Access Control Service, Windows Identity Foundation, and Active Directory Federation Services use a claims-based identity architecture to help you to take advantage of the shift toward the cloud while still fully leveraging your on-premises investments.
- CS07 Identity & Access Control in the Cloud (.PPTX)
- CS07 MP4 High
- CS07 MP4 Low
- CS07 WMV High
- CS07 WMV Low
Identity Unraveled with the Access Control Service (Mix11, April 12-14, Las Vegas)
Come learn how to use the Windows Azure AppFabric Access Control Service as a key building block for your web applications. See how your applications can seamlessly work with LiveID, Google, Yahoo!, Facebook, and corporate identities - all from a single codebase. Watch the barriers to entry disappear, and behold the emergence of a simple way to deal with identity in your applications. It's guaranteed to be a show you won't want to miss.
VFR13: Identity in Windows Azure (Visual Studio Connections, March 27-30, Orlando)
Michele Leroux Bustamante
Identity federation is pervasive these days for the benefits to delegation of user authentication to their own domain; extending trust to partners, other business domains and to other application users; Single Sign-On experiences; and support for claims-based authorization. This need doesn’t change when we move applications to the cloud - in fact, it is even more relevant in that space. This session will focus on bringing identity to your Windows Azure applications. First, we’ll review common architectural configurations including web SSO, scenarios that use AppFabric Access Control, and even discuss scenarios that require reaching into corporate directories behind firewalls. Then, we’ll dig into the setup with Windows Identity Foundation (WIF) including how to overcome challenges related to certificates. You’ll even see some Azure templates that automate your initial cloud application setup to make life easy!
VFR12: Why YOU Need AppFabric Access Control (Visual Studio Connections, March 27-30, Orlando)
Michele Leroux Bustamante
AppFabric Access Control is an essential feature of the Windows Azure platform. It is now a protocol hub in the cloud that lets you manage trust relationships with partners and other application domains so that your application can focus on one thing: authorizing access for the already authenticated user. No need to implement your own custom Security Token Service to handle these relationships - just move it to the cloud and BAM! Federation bliss. This session will walk you through some killer scenarios related to authenticating to your favorite identity provider such as Windows Live, Yahoo, Google or Facebook; configuring Access Control with policy to extend trust from your application to these identity providers; implementing both passive (ASP.NET) and active (WCF) federation scenarios; and achieving it all with as little code as possible!
TH6 Single Sign-On for ASP.NET Applications (Visual Studio Live!, April 18-22, Las Vegas)
Single Sign-On is often considered the “holy grail” of authentication. Ranging from ASP.NET builtin features like Windows and Forms authentication to specialized protocols like OpenID or WS-Federation, ASP.NET developers have a lot of choices to implement this feature. As always every approach has its benefits and limitations. This talk takes a close look at the different options and where and how they can be applied.
You will learn:
- Options for SSO in ASP.NET
- Limitations of built-in authentication methods
- Federated authentication protocols
SIM324 Using Windows Azure Access Control Service 2.0 with Your Cloud Application (Teched 2011, May 16-19, Atlanta)
The Windows Azure Access Control Service 2.0 provides comprehensive federation and authorization services for cloud applications, so that you don't have to build identity infrastructure yourself. Come to this session to learn how your application can take advantage of your user's existing Active Directory, Windows Live ID, Google, Yahoo, and Facebook accounts when they access your cloud application. This session is aimed at developers building cloud applications.
Key Learning:Understand how to simplify authorization in your applications using ACS 2.0 in Windows Azure
SIM325 Deep Dive: Windows Identity Foundation for Developers (Teched 2011, May 16-19, Atlanta)
Hear how Windows Identity Foundation makes advanced identity capabilities and open standards first-class citizens in the Microsoft .NET Framework. Learn how the Claims-Based access model integrates seamlessly with the traditional .NET identity object model while also giving developers complete control over every aspect of authentication, authorization and identity-driven application behavior. See examples of the point and click tooling with tight Microsoft Visual Studio integration, advanced STS capabilities, and much more that Windows Identity Foundation consistently provides across on-premise, service-based, Microsoft ASP.NET and Windows Communication Foundation (WCF) applications.
Key Learning: Learn how to use WIF to externalize authentication and authorization from your application.
- SSO, Identity Flow, Authorization In Cloud Applications and Services – Challenges and Solution Approaches
- Video: What’s Windows Azure AppFabric Access Control Service (ACS) v2?
- Video: What Windows Azure AppFabric Access Control Service (ACS) v2 Can Do For Me?
- Video: Windows Azure AppFabric Access Control Service (ACS) v2 Key Components and Architecture
- Video: Windows Azure AppFabric Access Control Service (ACS) v2 Prerequisites