Embed Size (px)
Citation preview
virtual techdaysINDIA │ 9-11 February 2011
virtual techdays
AppFabric Futures – Access Control Service
Niraj Bhatt │ Windows Azure MVP
Security Challenges Developer IT Ops Business
Claims Based Identity IP, RP and FP WIF, ADFS, ACS
Demos
virtual techdaysINDIA │ 9-11 February 2011
S E S S I O N A G E N D A
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
How many of you love login screens?
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
Developer Challenges
Applications are identity prisoners
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
IT Pro Challenges Strategic Application
40,000+ Users 5000 Concurrent Users TBs data and growing No NLBs No Clusters SQL 2000 ASP / ASP.NET 1.1 – In Proc Session
Cutting 80% of Ops issuesHow ???
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
IT Pro Challenges
Option A
Option B
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
Business Challenges – ABC Corp
Alice wants to sell ABC’s bikes Signs agreements on behalf of her bike’s shop Sends a list of her employees who can make purchase ABC issues Username / Password for the all on the list
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
Business Challenges – ABC Corp
Employee at Alice’s shop
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
Business Challenges – ABC Corp
No value addition for
past 6 months…
I was promised a Salary hike after
6 months
FIRES
Multiple Suppliers Multiple Agreements Multiple Lists
Multiple Logins Multiple Policies
virtual techdaysINDIA │ 9-11 February 2011
Security Challenges
How do we addressthese challenges?
virtual techdaysINDIA │ 9-11 February 2011
Learning from other disciplines
virtual techdaysINDIA │ 9-11 February 2011
Learning from other disciplines
virtual techdaysINDIA │ 9-11 February 2011
Learning from other disciplines
virtual techdaysINDIA │ 9-11 February 2011
Learning from other disciplines
virtual techdaysINDIA │ 9-11 February 2011
Learning from other disciplines
virtual techdaysINDIA │ 9-11 February 2011
Learning from other disciplines
virtual techdaysINDIA │ 9-11 February 2011
Lessons learned ???
Always carry your license (age proof) to the beer bar Relying on a trusted External Entity (Identity Provider) for
Authenticating users Providing user attributes (claims)
Saves us from Identity nightmares
virtual techdaysINDIA │ 9-11 February 2011
IP, RP, Tokens, WIF, ADFS
virtual techdaysINDIA │ 9-11 February 2011
virtual techdays
DEMO
Outsourcing authentication to Identity Provider (STS)
virtual techdaysINDIA │ 9-11 February 2011
Access Control Service - Federation Provider
virtual techdaysINDIA │ 9-11 February 2011
virtual techdays
DEMO
Using Access Control Service as a Federation Provider
Vittorio Bertocci http://blogs.msdn.com/b/vbertocci/
MSDN Article Re-Introducing the Windows Azure AppFabric Access Control Service
AppFabric Labs & Tools https://portal.appfabriclabs.com/Default.aspx https://aclaims.accesscontrol.appfabriclabs.com/v2/mgmt/web http://acs.codeplex.com/ http://code.msdn.microsoft.com/TokenVisualizerCtrl/ http://code.msdn.microsoft.com/SelfSTS
virtual techdaysINDIA │ 9-11 February 2011
References
23
virtual techdaysINDIA │ 9-11 February 2011
Thank youhttp://nirajrules.wordpress.com
