New WCF Security Examples

A little while ago, HongMei Ge sent me around a dozen new security samples. After reviewing them, they are truly cool. Topics covered include:

  • CredMan UI management
  • AzMan integration
  • Client credentials on a per channel basis
  • Custom Algorithm Suites
  • Custom Tokens and Caching
  • SAML 2.0 tokens

And much more...

One of the coolest samples is an app that helps you manage certificates (written by Christian Geuer-Pollmann).

Check them out here:

Comments (5)

  1. ChGeuer says:

    Thanks for the flowers 🙂


  2. Kris says:

    Hi Justin,

      Would it be possible for you to show a sample showing Trusted Subsystem security model in WCF? I use the <security/> element in the webconfig file of an asmx based service to selectively allow/deny specific Windows identities. How do I go about doing this using basicHttpBinding on IIS. I have to use basicHttpBinding because there are some downlevel clients (.NET 1.1, ASP) in our environment. I would really, really appreciate if you could either blog or upload a sample of the same.



  3. Kris says:

    Thanks for the links. The trusted facade service uses wsHttpBinding. I have to use basicHttpBinding because there are some .NET 1.1 clients.  The second link talks about how to prevent impersonation with double identities. I desperately searched for some documentation on migration of asmx services to WCF that addresses this specific issue but could not find any. There is good deal of documentation specific to wsHttpBinding, netTcpBinding but not basicHttpBinding.

    I have posted in newsgroups but could not get any decent answers.

Skip to main content