230 likes | 338 Vues
virtual techdays. AppFabric Futures – Access Control Service. Niraj Bhatt │ Windows Azure MVP. INDIA │ 9-11 February 2011. virtual techdays. Security Challenges Developer IT Ops Business Claims Based Identity IP, RP and FP WIF, ADFS, ACS Demos. S E S S I O N A G E N D A.
E N D
virtual techdays AppFabric Futures – Access Control Service Niraj Bhatt │ Windows Azure MVP
INDIA │ 9-11 February2011 virtual techdays • Security Challenges • Developer • IT Ops • Business • Claims Based Identity • IP, RP and FP • WIF, ADFS, ACS • Demos S E S S I O N A G E N D A
INDIA │ 9-11 February2011 virtual techdays Security Challenges How many of you love login screens?
INDIA │ 9-11 February2011 virtual techdays Security Challenges Developer Challenges Applications are identity prisoners
INDIA │ 9-11 February2011 virtual techdays • Strategic Application • 40,000+ Users • 5000 Concurrent Users • TBs data and growing • No NLBs No Clusters • SQL 2000 • ASP / ASP.NET 1.1 – In ProcSession Security Challenges Cutting 80% of Ops issues How ??? IT Pro Challenges
INDIA │ 9-11 February2011 virtual techdays Security Challenges IT Pro Challenges Option B Option A
INDIA │ 9-11 February2011 virtual techdays • Alice wants to sell ABC’s bikes • Signs agreements on behalf of her bike’s shop • Sends a list of her employees who can make purchase • ABC issues Username / Password for the all on the list Security Challenges Business Challenges – ABC Corp
INDIA │ 9-11 February2011 virtual techdays Security Challenges Business Challenges – ABC Corp Employee at Alice’s shop
INDIA │ 9-11 February2011 virtual techdays • Multiple Suppliers • Multiple Agreements • Multiple Lists Security Challenges Business Challenges – ABC Corp I was promised a Salary hike after 6 months No value addition for past 6 months… FIRES • Multiple Logins • Multiple Policies
INDIA │ 9-11 February2011 virtual techdays Security Challenges How do we address these challenges?
INDIA │ 9-11 February2011 virtual techdays Learning from other disciplines
INDIA │ 9-11 February2011 virtual techdays Learning from other disciplines
INDIA │ 9-11 February2011 virtual techdays Learning from other disciplines
INDIA │ 9-11 February2011 virtual techdays Learning from other disciplines
INDIA │ 9-11 February2011 virtual techdays Learning from other disciplines
INDIA │ 9-11 February2011 virtual techdays Learning from other disciplines
INDIA │ 9-11 February2011 virtual techdays • Always carry your license (age proof) to the beer bar • Relying on a trusted External Entity (Identity Provider) for • Authenticating users • Providing user attributes (claims) • Saves us from Identity nightmares Lessons learned ???
INDIA │ 9-11 February2011 virtual techdays IP, RP, Tokens, WIF, ADFS
virtual techdays DEMO Outsourcing authentication to Identity Provider (STS)
INDIA │ 9-11 February2011 virtual techdays Access Control Service - Federation Provider
virtual techdays DEMO Using Access Control Service as a Federation Provider
INDIA │ 9-11 February2011 virtual techdays • Vittorio Bertocci • http://blogs.msdn.com/b/vbertocci/ • MSDN Article • Re-Introducing the Windows Azure AppFabric Access Control Service • AppFabric Labs & Tools • https://portal.appfabriclabs.com/Default.aspx • https://aclaims.accesscontrol.appfabriclabs.com/v2/mgmt/web • http://acs.codeplex.com/ • http://code.msdn.microsoft.com/TokenVisualizerCtrl/ • http://code.msdn.microsoft.com/SelfSTS References
Thank you http://nirajrules.wordpress.com niraj@indiamvps.net