"Geneva" Simplifies User Access to Applications and Services
“Geneva” is Microsoft’s open platform for user access that helps companies simplify access to applications and other systems with an interoperable claims-based model. “Geneva” includes three components for enabling claims-based access. The “Geneva” platform improves developer efficiency and application security by externalizing identity activities from inside applications to a robust external service. Using the Geneva Framework, an ASP or WCF developer can outsource authentication to a security token server (STS), such as Geneva Server, where options to address evolving security or deployment requirements are readily available. An STS provides applications tokens that include claims, identity data about users useful for authorization, without requiring the application to look up those values.
Beta 2 of the following components are now available for public evaluation:
- “Geneva” Framework provides developers pre-built .NET security logic for building claims-aware applications, enhancing either ASP.NET or WCF applications
- “Geneva” Server security token service (STS) for issuing and transforming claims, enabling federations, and managing user access
- Windows CardSpace “Geneva” for helping users navigate access decisions and for developers to build customer authentication experiences for users
Getting Started with "Geneva"- Geneva Beta 2 Download
Begin your evaluation of Microsoft Code Name “Geneva” beta 2 today! - Developer Training Kit
The Identity Developer Training Kit offers a comprehensive set of technical content including hands-on labs and references that are designed to help you learn how to use Microsoft's identity products and services. - Microsoft Code Name "Geneva"
"Geneva" is an open platform that provides simplified user access and single sign-on for on-premises and cloud-based applications in the enterprise, across organizations, and on the Web. Find more information. - Geneva Datasheet
Find all the latest product information about Microsoft Code Name “Geneva” beta 2. - Geneva Forum
Find a Web forum that addresses your questions on Microsoft Code Name “Geneva” beta 2. - "Geneva" Design Guide
Plan your organizations deployment of "Geneva" Server or Windows CardSpace “Geneva” to help make single sign-on (SSO) access or managed Information Card access possible. - "Geneva" Deployment Guide
Learn how to set up and deploy “Geneva” servers, “Geneva” server proxies or client computers running Windows CardSpace “Geneva” in your production environment.
| Identity Management Blogs
Most Recent Blog PostsAdditional Tools & Documentation- "Geneva" team on Connect
The "Geneva" team Connect site has additional tools, samples and documentation, such as the Microsoft Online Services Federation Utility CTP. - “Geneva” Step by Step Guides and Virtual Machines
These guides walk you through setup of a small test lab environment that you can use to evaluate the next generation of Microsoft federated identity technologies, code named "Geneva". - Developer Learning Tool
Fabrikam Shipping is a semi-realistic sample web application that demonstrates how to implement common tasks and features in web applications. It combines the techniques presented separately in other technology learning material such as the Geneva Framework SDK and the Identity Developer Training Kit. - Using the "Geneva" Framework to Improve Identity Management
Microsoft Information Technology (Microsoft IT) deployed a Volume Licensing Authentication/Authorization system (VLAS) based on the Microsoft Code Name "Geneva" Framework — claims-aware application ─ this paper details the benefits of using the Geneva Framework, including how the Volume Licensing application is architected.
| "Geneva" Channel 9 Videos"Geneva" Whitepapers- "Geneva" and Sun OpenSSO
Read how Sun and Microsoft are utilizing the SAML federation standard in both the Sun OpenSSO Enterprise federation solution and the forthcoming Microsoft “Geneva” Server federation solution. - "Geneva" and Novell Access Manager
Learn about the need for standards-based identity federation, and the solutions that improve the interoperability of mixed-technology directory environments. - "Geneva" Claims Based Access Platform
Learn about Microsoft's new "Geneva" claims based access platform. - "Geneva" Framework
Get started building claims-aware applications using Microsoft code-named "Geneva" Framework.
|
Identity Management Technologies
| Digital Identity for .NET Applications: A Technology Overview
This overview provides a broad introduction to digital identity for .NET architects and developers. After describing a few fundamental concepts, it walks through the major Windows identity technologies and how they can be applied. The goal is to help anyone who works in the .NET world understand and make better decisions about digital identity in their applications. By David Chappell. |
System.DirectoryServices Namespace- Introduction to System.DirectoryServices.ActiveDirectory
This whitepaper introduces you to using S.DS.AD, in the .NET Framework 2.0, to perform Active Directory and AD LDS (formerly ADAM) management tasks. - Introduction to System.DirectoryServices.Protocols
S.DS.P, in the .NET Framework 2.0, provides raw LDAP access, meaning that it is designed specifically to reach beyond Active Directory and AD LDS (formerly ADAM) to other LDAP compliant directories. Therefore, if you plan to use .NET managed code against other LDAP directories, a great place to focus is on S.DS.P. A code sample accompanies the paper. - System.DirectoryServices.AccountManagement Namespace Overview
System.DirectoryServices.AccountManagement is a namespace in the Microsoft .NET Framework 3.5 that provides uniform access and manipulation of security principals across multiple principal stores. S.DS.AM manages directory objects independent of the System.DirectoryServices namespace. - Managing Directory Services Principals in the .NET Framework 3.5
In this MSDN Magazine article learn how to use the new System.DirectoryServices.AccountManagement namespace designed specifically for managing security principals. A code sample accompanies the article. - System.DirectoryServices Namespace
A drill-down into the DirectoryEntry and DirectorySearcher classes, their properties and methods. These allow you to work with AD, ADAM, and diverse directories on a network using a single interface.
| Active Directory Federation Services (AD FS)- Active Directory Federation Services on Microsoft TechNet
Based on WS-* specifications, ADFS provides Web single-sign-on technologies and a federated identity management solution for securely sharing digital identity and entitlement rights across security and enterprise boundaries. - Step-by-Step Guide for AD FS
Learn how to set up AD FS in a test lab environment. This guide walks you through set-up of a claims-aware application and a Windows NT token–based application on an AD FS-enabled Web server. - AD FS SDK
Visit the SDK to learn about the AD FS API namespaces.
Authorization Manager (AzMan)- Use Role-Based Security in Your Middle Tier .NET Apps with Authorization Manager
Authorization Manager (AzMan) provides administration of role-based security, making it scalable, flexible, and easy to implement. - Authorization Manager SDK
The Authorization Manager API provides a simplified development model in which to manage applications, scopes, users and groups, operations and tasks, roles, business rules, and policy stores. - How To Use AzMan with ASP.NET 2.0
Learn how to use AzMan in conjunction with the ASP.NET role manager API, and how to use AzMan's authorization model of tasks and operations through the API.
| WCF Security- Improving Web Services Security
Learn how to design and implement authentication and authorization in WCF through end-to-end application scenarios. Improve the security of your WCF services through prescriptive guidance including guidelines, Q&A, practices at a glance, and step-by-step how to guides.
|