Windows Azure Learning Path–Level 300

  • Article

Level 300 - Advanced

Level 300 lessons are designed to take you beyond how to build cloud services and arm you to make them as industrial strength offerings that alleviate concerns of cloud security and scalability. These lessons are about cloud security implementation through Access Control Service (ACS) which is a Windows Azure managed service. ACS helps developers to focus on their application logic as opposed to dealing with cryptography, security protocols, secret management and other arcane aspects of application security. We will add more lessons that address other systemic qualities like scalability, availability and reliability aspects of cloud services in future.

Exercise 1: Use Access Control Service for Accepting Users from Multiple Identity Providers

Windows Azure Access Control Service (ACS) will help externalize application security freeing developers to focus on code that helps with application logic. In this hands-on lab you will learn how to take advantage of ACS for externalizing authentication, managing multiple identity sources, performing some basic authorization tasks and take control of the authentication experience. Please see lab overview for the description of the lab and the needed set up process.

Exercise 2: Use Claims for Authorizing Users

In this exercise you will focus authorizing users to perform various privileged activities on the web site. We will use WIF to unpack the SAML token to individual claims and allow execution of code based on the claims send through the token.

Exercise 3: Take control of the Sign-In experience

Having configured previously with multiple identity providers, we will customize the user experience through custom authentication web page which allows you to do your own branding.

Exercise 4 - Use Access Control Service to Federate with Multiple Business Identity Providers

Previously we worked multiple identity providers in the public internet. now in this hands-on lab you will learn how to use the Access Control Service for managing trust relationships with multiple business identity providers. Before starting this exercise read the overview and download Hands-on Lab Source Files into the local folder.