Identity and Access ManagementIdentity and access management has become more complex, as digital identities take on an increasingly important role in specifying how users interact with computer networks and line-of-business applications. Therefore, application developers must have a consistent and effective strategy for building software that leverages the identity rich capabilities of the Windows platform.
.gif) | Digital Identity for .NET Applications: A Technology Overview
This overview provides a broad introduction to digital identity for .NET architects and developers. After describing a few fundamental concepts, it walks through the major Windows identity technologies and how they can be applied. The goal is to help anyone who works in the .NET world understand and make better decisions about digital identity in their applications. by David Chappell. | | Introduction to System.DirectoryServices.ActiveDirectory (S.DS.AD)
Microsoft directory services programming has come a long way since the days when you either had to script directory management via Active Directory Service Interfaces (ADSI) or use C++ to perform more advanced directory management tasks using non-automation interfaces or the LDAP API. .NET 2.0 introduces improvements to System.DirectoryServices and two new namespaces, System.DirectoryServices.ActiveDirectory (S.DS.AD) and System.DirectoryServices.Protocols (S.DS.P). This first paper in this series on directory services programming introduces you to using S.DS.AD to perform Active Directory and ADAM management tasks. by Ethan Wilansky | | Introduction to System.DirectoryServices.Protocols (S.DS.P)
System.DirectoryServices.Protocols (S.DS.P), first introduced in the .NET Framework 2.0, is a powerful namespace that brings LDAP programming to managed code developers. This paper provides you with an introduction to programming with S.DS.P by describing common directory management tasks and how you code those tasks using this namespace. by Ethan Wilansky | | Managing Directory Security Principals in the .NET Framework 3.5
In the .NET Framework 2.0, Microsoft has added features to its System.DirectoryServices and provided two new namespaces: System.DirectoryServices.ActiveDirectory and System.DirectoryServices.Protocols. Still, developers missed some of the strongly typed interfaces in ADSI that they had used for managing security principals, such as Users and Groups. Microsoft addressed this in the .NET Framework 3.5 by adding a new namespace designed specifically for managing security principals: System.DirectoryServices.AccountManagement. This article hightlights key features of S.DS.AM. by Joe Kaplan and Ethan Wilansky |
.jpg) | Keith Brown is the guest editor for identity and access management. Keith spends his time teaching, researching, and writing, and writes frequently for MSDN. His latest book is the .NET Developer's Guide to Windows Security (Addison-Wesley, 2005). He is is one of the founding members of Pluralsight. Read his blog at Security Briefs. The .NET Developer's Guide to Identity Explore this roadmap for developers and architects who want to learn how to build identity-aware applications on the Windows platform. From authentication and authorization to federated identity, you’ll discover techniques that can be used today and in the future to leverage identity infrastructure such as Active Directory. |
Where to get Password MinderWe recently updated our website and some links have broken as a result. Here's the place you should go to get the latest version of Password Minder:
http://mercury.pluralsight.com/tools.aspx
Sorry for any inconvenience!... more
Technologies
System.DirectoryServices Namespace | Introduction to System.DirectoryServices.ActiveDirectory
This whitepaper introduces you to using S.DS.AD, in the .NET Framework 2.0, to perform Active Directory and AD LDS (formerly ADAM) management tasks. A code sample accompanies the paper. | | Introduction to System.DirectoryServices.Protocols
S.DS.P, in the .NET Framework 2.0, provides raw LDAP access, meaning that it is designed specifically to reach beyond Active Directory and AD LDS (formerly ADAM) to other LDAP compliant directories. Therefore, if you plan to use .NET managed code against other LDAP directories, a great place to focus is on S.DS.P. A code sample accompanies the paper. | | System.DirectoryServices.AccountManagement Namespace Overview
System.DirectoryServices.AccountManagement is a namespace in the Microsoft .NET Framework 3.5 that provides uniform access and manipulation of security principals across multiple principal stores. S.DS.AM manages directory objects independent of the System.DirectoryServices namespace. | | Managing Directory Services Principals in the .NET Framework 3.5
In this MSDN Magazine article learn how to use the new System.DirectoryServices.AccountManagement namespace designed specifically for managing security principals. A code sample accompanies the article. | | System.DirectoryServices Namespace
A drill-down into the DirectoryEntry and DirectorySearcher classes, their properties and methods. These allow you to work with AD, ADAM, and diverse directories on a network using a single interface. |
Active Directory Application Mode (ADAM) | Get ADAM Now
For flexible support for directory-enabled applications, ADAM is an LDAP directory service that runs as a user service. Easily installed, it’s the ideal directory service for application development or deployment with an application. | | ADAM Step-by-Step Guide
Get up and running quickly with ADAM and explore some of its important features. | | How to Bundle ADAM with Your Directory-Enabled Application
If your directory-enabled application requires a dedicated LDAP store, you can bundle ADAM with your application, in a seamless installation. |
Active Directory Federation Services (AD FS) | Active Directory Federation Services on Microsoft TechNet
Based on WS-* specifications, ADFS provides Web single-sign-on technologies and a federated identity management solution for securely sharing digital identity and entitlement rights across security and enterprise boundaries. | | Step-by-Step Guide for ADFS
Learn how to set up ADFS in a test lab environment. This guide walks you through set-up of a claims-aware application and a Windows NT token–based application on an ADFS-enabled Web server. | | AD FS SDK
Visit the SDK to learn about the ADFS API namespaces. |
Windows CardSpace | An Introduction to Windows CardSpace
Windows CardSpace is the Microsoft .NET Framework 3.0 component that provides the consistent user experience required by the identity metasystem. |
Authorization Manager (AzMan) | Use Role-Based Security in Your Middle Tier .NET Apps with Authorization Manager
Authorization Manager (AzMan) provides administration of role-based security, making it scalable, flexible, and easy to implement. | | Authorization Manager SDK
The Authorization Manager API provides a simplified development model in which to manage applications, scopes, users and groups, operations and tasks, roles, business rules, and policy stores. | | How To Use AzMan with ASP.NET 2.0
Learn how to use AzMan in conjunction with the ASP.NET role manager API, and how to use AzMan's authorization model of tasks and operations through the API. |
| Community and Media
donovanf’s Identity and Access BlogCommunityMedia |
| |