views:

696

answers:

4

Does anyone know of any good screenscasts or documentation covering the integration Active Directory Federation Services (ADFS) with Authorization Manager (AzMan)?

A: 

A good starting point would be this.

Burkhard
+5  A: 

There are many links I would recommend, screencasts are always a good way to get started:

Channel 9 Screencasts:

AzMan

Demystified Series: Getting Started with AzMan

Demystified Series: Programming AzMan

Demystified Series: AzMan in the Enterprise

Demystified Series: AzMan on Windows Server Code Name “Longhorn” and Windows Vista

ADFS

Active Directory Federation Services (AD FS) Part 1 by Keith Brown

Active Directory Federation Services (AD FS) Part 2 by Keith Brown

Documentation / Articles

Whitepaper on Developing Applications Using Windows Authorization Manager

MSDN Article on using Role-Based Security in Your Middle Tier .NET Apps

Role-Based Access Control for Multi-tier Applications Using Authorization Manager

Role-Based Access Control Using Windows Server 2003 Authorization Manager

Security Application Block

Blogs

ADFS Documentation Blog

ADFS Product Support Blog

Identity and Access Blog (A .NET Developer's Resource)

Security Briefs (Keith Brown's Blog)

Authorization Manager Team Blog

Federated Identify Blog

T4 Toolbox: Strongly-typed AzMan wrapper generator

That's probably more than enough for now, hopefully some of these links will be useful in helping you understand AzMan and how it's role-based access control (RBAC) capabilities can be employed in the claims-based programming model that ADFS uses.

Peter McGrattan
Many of these are useful, and I've been through many of them, but they each cover the technologies individually. I'm looking for documentation on integrating the two.
AlexWalker
The paragraphs directly under the 'Active Directory Federation Services (ADFS)' heading towards the end of the Whitepaper are all about integrating/mapping the two with code examples included. Quote: "The primary step in integrating Authorization Manager with ADFS is to map the..."
Peter McGrattan
+1 Great links!
KMan
A: 

My recommendation would be to avoid AzMan and go to ADFS v2, aka "Geneva".
or you could use the .NET Access Control service.

Cheeso
Azure has nothing to do with this!
Calanus
Sorry? The question was about an access control capability. How can you say that an Access Control service is irrelevant? It's directly relevant.
Cheeso
+1  A: 

Having been down the Azman road I recommend you take a look at this: link text

To do anything passed role checks with MS AZMan you end up having to make COM calls. Plus the other is open source making it a lot easier to extend for ADFS.

Exist