Solving the Identity Crisis

1. Solving the Identity Crisis Using Windows Azure Facilities to provide Federated Identity Services for your Cloud Applications

2. Goals of this talk • High level overview – just enough to “get it” • Only one scenario – Federated AuthN using the Azure AppFabric Access Control Service (ACS) • Many other scenarios possible (WCF, be an STS, …) • Concepts then demo then done • ACS is not yet a supported, released product • Let me know if you want more talks on this

3. AuthN vs. AuthZ • Authentication – who are you? • Authorization – what are you allowed to do?

4. Federated Identity in the Real World

6. [Some] Standards and Technologies • Windows Integrated Authentication • Active Directory • Membership Provider • Open ID • OAuth • ------------------------------------------------ • Federated Low-Carb Claims-based Systems

7. Access Control Service (ACS)

8. Fancy Terminology • Identity Provider  Relying Party • Claim • Security Token • Token Shredding • SAML Token • WS-Federation, WS-Trust • Federated Identity Provider • SSL

9. Let’s Build It • IE: http://portal.appfabriclabs.com/ • Not Chrome!

10. Doing this yourself • Identity Developer Training Kithttp://bit.ly/hFYfWz • Vittorio’s book http://amzn.to/hXyJqv