Claim Based Authentication IV

In previous three posts we examined how claim authentication flow works for users in the same domain as SharePoint site and for users from other organizations. As we have seen, the value for Role claim was based on the Active Directory group membership. For instance, Frank Miller from Fabrikam was given role of DrugTrial1Auditors in…

0

Claims Based Authentication – Part III

This is continuation of two previous posts. Please check them out first, otherwise this one might not make much sense at all. Step 6 in step-step guide configures Fabrikam STS with Relying Party and shows how to configure Information Cards to automate home realm discovery. I’m not going to talk about Information Cards yet, for…

0

Claims based Authentication – Part II

In previous post we started examination of the authentication process in our demo environment. Lets examine what happens in step 5 of the step-step guide. During this step Contoso STS was configured to work with Fabrikam STS. There were three primary steps in this process: Add Fabrikam STS as Identity Provider (IDP) Configure rules for…

0

Claims based Authentication – Part I

Claims based authentication is getting more ground and with more practical applications we’ll see more and more adoption of this technology. Recently I downloaded and went through step-step demonstration on using Microsoft Office SharePoint Server 2007 and Active Directory Federation Services v2 (ADFS v2) beta 2 software. You can download this great demo at this…

0

More options with Re-Revocation solution

  Controlling the date In previous post I’ve shown how we can re-revoke all certificates that were revoked post certain date. Solution used to create certutil.exe command with hardcoded date. To automate this solution we need to generate dynamic date.   The following script will create input file with serial numbers of revoked certificates in…

0

Re-Revoking Certificates with Different Reason Code

  One of my customers is using 3rd party Card Management System (CMS) to manage their smart cards. One of many common management tasks that such systems perform is revocation of the smart card and in particular the certificates issued to the given smart card. Well, of course CMS only originates the revocation request -…

0

TS Gateway #4

  Server side configuration In previous 3 postings I talked about why I liked TS gateway, the overall architecture for configuring TS Gateway in home lab environment and the client side configuration. This time I’ll show a few screen shots of the TS Gateway configuration. The configuration is very simple and one can figure it…

0

Windows Server 2008 Terminal Services gateway #3

  Client Side Configuration to access remote TS Server via TS Gateway Windows Vista Remote Desktop Connection client has new option under Advanced Tab – “Connect from anywhere”   If you click on the Settings button it will allow to specify the TS Gateway server: Server name that you type here must resolve to the…

0

Windows Server 2008 Terminal Services Gateway #2

Configuration of the Terminal Services Gateway is fairly straightforward. The following diagram shows the simplified configuration of how I configured it to get access to my home lab.         Windows 2008 provides wizards for all of it different components and the configuration of Terminal Services Gateway is probably the easiest in the…

0

Windows 2008 Terminal Services Gateway

One of the new exciting technologies that will be shipped with Windows 2008 Server is the Terminal Services Gateway. It is exciting not just because it will be used by many companies but because it can be used by many other technologists and make our life a little easier and more exciting. I like to…

1