Scribd Logo
Carica

Benvenuto in Scribd!

  • Azure Identity 6 Sep 2013

    Caricato da

    Khalid Ahmed Aziz
    22 visualizzazioni16 pagine
    Identity Identity is collection of information about entity. Identity Technology Azure support a wide range of identity technology. Role Based Identity Credentials are map to an identity. Identity is member of one or more Roles. Application use Roles to authorize identities. Implementation is in Azure.

    Descrizione originale:

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Formati disponibili

    PPTX, PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    Identity Identity is collection of information about entity. Identity Technology Azure support a wide range of identity technology. Role Based Identity Credentials are map to an identity. Identity is member of one or more Roles. Application use Roles to authorize identities. Implementation is in Azure.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Scarica in formato PPTX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    22 visualizzazioni16 pagine

    Azure Identity 6 Sep 2013

    Caricato da

    Khalid Ahmed Aziz
    Identity Identity is collection of information about entity. Identity Technology Azure support a wide range of identity technology. Role Based Identity Credentials are map to an identity. Identity is member of one or more Roles. Application use Roles to authorize identities. Implementation is in Azure.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Scarica in formato PPTX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 16

    Identity and Access

    Copyright 2013 Tech Mahindra. All rights reserved.

    Agenda: Identity Definition and Technology. Role Based Identity

    Claim Based Identity Azure ACS Service How is ACS and ADFS 2.0 Work together Azure Active Directory Services Demo

    Copyright 2013 Tech Mahindra. All rights reserved.

    Identity Identity is collection of information about entity.

    ID No Name E-Mail Photograph Biometrics

    Address

    Copyright 2013 Tech Mahindra. All rights reserved.

    Identity Technology Azure support a wide range of Identity technology.


    Windows Server Activity Directory. SQL Server Windows Identity Foundation (Claim based approach ) Open Id Certificates Information Card

    Copyright 2013 Tech Mahindra. All rights reserved.

    Identity on Cloud

    Windows Azure Support both role based and claim based identity
    management.
    Identity Windows User Name/ Password Claim Based Claim Based Technology Domain Join (Role based ) Asp.net Forms Authentication (role based / Claim based) Azure ACS (claim based) Azure Active Directory Services

    Copyright 2013 Tech Mahindra. All rights reserved.

    Role based Identity


    Credentials are map to an Identity.
    Identity is member of one or more Role. Application use Roles to authorize Identities. Implementation is in Azure.

    Copyright 2013 Tech Mahindra. All rights reserved.

    Role Based Implementation


    ASP .NET Member Ship Continue to use Form Based authentication Scenario enabled : Upload the DB to SQL Azure Change the configuration to connect Sql azure Domain Join Connect Plug in supports domain join of Windows Azure Role to On- Premise AD Scenario Enabled : Login to Azure instance using domain account. Connect On -premise server using windows authentication.
    Web Role Sql Server On- Premise Identity Store

    SQL Azure

    Worker Role

    Copyright 2013 Tech Mahindra. All rights reserved.

    Why Role based Authorization


    Simple Scenario:
    Easy migration of tradition application Domain join Scenario

    No Federation or SSO Required.

    Copyright 2013 Tech Mahindra. All rights reserved.

    Claim based Identity


    A Claim holds information relevant to the identity.
    Each Claim has a type and issuer. Application use claims to authorize identities. Token is a collection of claim and are signed. Security Token Service (STS) map Credential to a token.

    Copyright 2013 Tech Mahindra. All rights reserved.

    Claim based approach

    Secure Token Service

    Configure : Trust (Sign key) Configure : Claim rules (Federation Metadata0

    1. Get Policy
    4. AuthN(Claim) 5.Grant Access

    Claim Framework (WIF) App Business Logic Claim Aware Application

    End User

    Copyright 2013 Tech Mahindra. All rights reserved.

    10

    Why Claim based Identity Management


    Claims provide a framework that can be consumed by all applications regardless of their location
    Allows the identity token to carry more information than just the user and group memberships

    Your trusted partners manage the identity and authentication of their users
    The solution is based on industry standard protocols Works for browsers and web services

    Copyright 2013 Tech Mahindra. All rights reserved.

    11

    Azure ACS
    Provides Rules driven, claim based authorization. Key Feature Broad identity provider list Ws- Trust and Ws- Federation protocol support. Full integration with WIF Configurable.

    Copyright 2013 Tech Mahindra. All rights reserved.

    12

    How is ACS and ADFS 2.0 Work together.

    RP AuthN using kebrsore tckt IP

    ACS
    IP

    RP ADFS 2.0
    SAML

    Web Role

    End User

    List of Identity Provider --1--2--313

    Copyright 2013 Tech Mahindra. All rights reserved.

    DEMO

    Copyright 2013 Tech Mahindra. All rights reserved.

    14

    Azure Active Directory Services Windows Azure Active Directory is modern cloud service providing
    identity management and access control capabilities to cloud application.

    Copyright 2013 Tech Mahindra. All rights reserved.

    15

    Copyright 2013 Tech Mahindra. All rights reserved.

    16

    Potrebbero piacerti anche