OWIN and WS-Federation with CA Siteminder

Check out this blog from Premier Developer consultant Marius Rochon for information on how to integrate ASP.NET applications with CA Siteminder. A customer was having a problem integrating an ASP.NET application with CA Siteminder v12.52. Firstly, there was a problem with using SAML2.0 token formats. To get around that, we reconfigured SM to use SAML1.1…

0

Multi-tenant WebAPI – simple admin consent

In this post, Premier Developer consultant Marius Rochon shares his application authentication experience in order to help you create your own Multi-tenant WebAPI applications. The VS.NET 2015 wizard for adding authentication to ASP.NET WebAPI projects does not support using the multi-tenant option. Here are some notes on how to implement this option yourself and create…

0

Using Azure AD to authenticate public clients to SQL Azure

In a recent post from his blog, Premier Developer Consultant Marius Rochon shows how to use Azure AD to authenticate public clients to SQL Azure. Azure AD enables access authorization to SQL Azure as an alternative to providing username/password information in the connection string: https://azure.microsoft.com/en-us/documentation/articles/sql-database-aad-authentication/. It is somewhat analogous to using Windows Authentication when both the client…

0

Single SignOn is easy, Single SignOut is not

In a recent post from his blog, Premier Developer Consultant Marius Rochon talks about problems with single SignOut. Single Sign In relies on the token issuer holding on to a cookie, which tells it about the user identity after the first signin. The issuer can then respond to a request for token in whatever protocol…

0

Using Client Certificate Authentication for Web API Hosted in Azure

In a recent post from his blog, Premier Developer Consultant Razi Rais  gives us a step-by-step overview of how to add client certificate Authentication for Web Api Hosted in Azure. During recent customer engagement there was a discussion around client certificate [a.k.a tls mutual] authentication and how to use it with asp.net web api that is hosted…

0

Web Test Plug-in for Authentication

In a recent post from his blog, Premier Developer Consultant Monu Bambroo gives us a step-by-step overview of how to add Authentication into your Web Performance and Load Test with Visual Studio. Web and Load testing are an essential part of application life cycle management. Within Visual Studio, we provide a great template to do…

0

Passive is good!

Here’s a quick read from Premier Developer consultant Marius Rochon’s blog.  In it, Marius gives some great reasons to leverage passive authentication protocols in your applications rather than writing your own code to handle credentials. Some time back I wrote about avoiding handling of credentials (creation/maintenance/verification of user names, passwords, pins, etc.) in your own…

0

Using Azure AD to authorize Service Bus requests

Most Service Bus examples use symmetric keys directly in applications needing access to the Service Bus, usually as part of the connection string. That approach does not work so well with widely distributed applications, e.g. desktop or mobile apps.  In the latest post from his blog, Marius Rochon gives an example of how to use…

0