Hey folks, our good friend Adam C. in SharePoint support recently alerted the folks here with a complaint we're seeing come up more frequently from customers that are using SAML claims. It starts out as taking a very long time to log into a site using SAML authentication. If you monitor the requests via a…
Year: 2011
Troubleshooting Blank Response Pages When Using Federation with ACS and Facebook
I've had this scenario come up a few times now when working through various federation scenarios. These cases always involve using Facebook as an oAuth source for login, or Azure's AppFabric ACS as a federated identity provider. The common behavior is that you are doing something either interactively through the browser or programmatically by making…
Using DPAPI with IsolatedStorage In Windows Phone 7 Mango Release
I was doing some work on the Mango release of Windows Phone 7 the other day. One of the great features (there are many) that has been added is support for DPAPI. One of the cases in which you might want to use this is to encrypt some content before storing it locally. In WP7,…
PSConfig Fails with Missing / Required Error Message After Applying CU or Service Pack in SharePoint 2010
I had this happen with a CU recently, and I saw someone that had the same problem with SP1. You download and install some patch – a CU or service pack. The final step after installation is to run psconfig on each server in the farm. However, psconfig tells you that it can't proceed because…
Name Disappears After Selecting in People Picker with Custom Claims Provider in SharePoint 2010
I recently witnessed a problem that proved to be fairly difficult to track down so I thought I would share the issue and resolution. In this case, a custom claims provider had been developed and it was being used as the default claim provider for the SPTrustedIdentityTokenIssuer, as described here: http://blogs.technet.com/b/speschka/archive/2010/04/28/how-to-override-the-default-name-resolution-and-claims-provider-in-sharepoint-2010.aspx. It may appear to be…
Connecting to an SSL WCF Service with Windows Phone 7 Emulator
Had lots of fun earlier trying to figure out why my Windows Phone 7 application could not connect to my WCF endpoint. I had tested things out thoroughly with a standard winforms client application and everything worked great, but whenever I tried hitting the same endpoint from my WP7 emulator I'd get the annoying error…
Using SAML Claims in SharePoint 2010 with Host Header Sites
Someone one posed an interesting question to me the other day, around whether or not you could use SAML claims with host header sites in SharePoint 2010. My initial thought was yes but I wanted to dig into it a little bit more to investigate. The short answer to all this is yes, but it's…
Federating Shibboleth, Ping Federate and Oracle Access Manager with SharePoint 2010
Hey folks wanted to let you know about some other federation whitepapers that have come out recently. Please see the following if interested: ADFS with Shibboleth – http://blogs.msdn.com/b/card/archive/2010/10/22/ad-fs-2-0-step-by-step-guide-federation-with-shibboleth-2-and-the-incommon-federation.aspx ADFS with Ping Federate – http://blogs.msdn.com/b/card/archive/2010/11/23/ad-fs-2-0-step-by-step-guide-federation-with-ping-identity-pingfederate.aspx ADFS with Oracle Access Manager – http://blogs.msdn.com/b/card/archive/2010/08/02/ad-fs-2-0-step-by-step-guide-federation-with-oracle-identity-federation.aspx There are also three labs from P&P team: http://blogs.msdn.com/b/card/archive/2010/09/03/demonstrating-federation-interop-with-ca-ibm-and-sun-products.aspx
Federating SiteMinder and SharePoint 2010
Hey folks, I just wanted to let you know that CA SiteMinder and Microsoft folks have been working together to create a whitepaper that details how to federate identities between CA Federation Manager and SharePoint 2010. They have recently released this paper that describes in great detail how to do so. Please check out http://interopvendoralliance.org/labs/siteminder-federation-to-sharepoint-2010.aspx for…
Hiding Default Authentication Providers in SharePoint 2010
A scenario that is happening more frequently in SharePoint 2010 is using a single zone for multiple authentication providers. One of the reasons folks do this is because they want to use a some type of claims authentication – like FBA or SAML – but they also want to add Windows claims so that the…