Winsec.be

Microsoft IT using AD FS 2.0 case study

Identity and Access Management — Thu, 29 Jul 2010 19:11:31 GMT

This new case study describes how Microsoft IT migrated their federated applications from AD FS 1.0 to AD FS 2.0 and how Microsoft IT uses new AD FS 2.0 features for claims-based identity to simplify and enhance Human Resources Services. Great story describing Read More......(read more)

TMG and v3 Certificates

ISAserver.org Blogs — Thu, 29 Jul 2010 09:24:33 GMT

I’ve been seeing a few questions lately regarding TMG support for v3 certificates. Does TMG support these CNG certificates? Find out by going to Yuri Diogenes blog! http://blogs.technet.com/b/yuridiogenes/archive/2010/07/20/incorrect-key-type-when-creating Read More......(read more)

Synchronous and Asynchronous Configuration Changes in ISA and TMG

ISAserver.org Blogs — Thu, 29 Jul 2010 09:19:28 GMT

“In Forefront TMG 2010 configuration change is by default asynchronous for both Standard Edition and Enterprise Edition. Some people have asked to be able to change the behavior to synchronous, so that the administrator will know the configuration has Read More......(read more)

New UAG DirectAccess Lab Content Available

ISAserver.org Blogs — Thu, 29 Jul 2010 08:58:17 GMT

Now that UAG is the future of remote access for Microsoft, TMG has taken a second place in that area. That’s why we cover UAG here on ISAserver.org. In addition, the TMG firewall is included with the UAG server, to protect the UAG server and provide it Read More......(read more)

how to address complex WebSSO scenarios with UAG and customization

Bienvenue, on Frédéric ESNOUF's Web Log — Tue, 27 Jul 2010 21:33:30 GMT

This year, I will be at Tech Ready - a Microsoft internal event - giving a few sessions about Unified Access Gateway. One of them will be about Web Single Sign on , especially how UAG – using the internal engines and customization – can Read More......(read more)

Microsoft Worldwide Partner Awards for 2010 – Ensynch Finalist for Server Platform

1dent1ty cHa0s — Mon, 26 Jul 2010 14:08:00 GMT

The Worldwide Partner Awards concluded and Ensynch netted a nice spot as a finalist in the Core Infrastructure Solutions – Server Platform category. This is due to the excellent work many of our team members put forth on some key AD/ADFS and ILM work Read More......(read more)

InfoWorld review: Microsoft ADFS 2.0 and Forefront Identity Manager 2010 | Security Central - InfoWorld

1dent1ty cHa0s — Sat, 24 Jul 2010 14:16:04 GMT

Here is a very favorable review of ADFS 2.0 and FIM 2010 published in InfoWorld. InfoWorld review: Microsoft ADFS 2.0 and Forefront Identity Manager 2010 | Security Central - InfoWorld Read More......(read more)

UAG DirectAccess Performance Information

ISAserver.org Blogs — Thu, 22 Jul 2010 07:33:39 GMT

UAG DirectAccess interest and adoption is accelerating like crazy! But one thing that people have been having problems with sizing their UAG DirectAccess servers for their DirectAccess arrays. Sizing your DirectAccess UAG servers is important because Read More......(read more)

The Edge Man Talks about DirectAccess and Ping Considerations

ISAserver.org Blogs — Thu, 22 Jul 2010 07:09:53 GMT

The “Edge Man” Tom Shinder discusses an interesting issue in his blog post on using ping to troubleshoot DirectAccess connections. It had been my impression that if I could ping the UAG DirectAccess server and hosts behind the UAG DirectAccess server Read More......(read more)

Nice Video on TMG Firewall with NAP Enforcement

ISAserver.org Blogs — Thu, 22 Jul 2010 07:00:49 GMT

Here’s a great video done by TechNet in Sweden on how TMG and NAP work together. Thanks to PsYteAk for the link! vpn_forefront_anders_o.wmv HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder@isaserver.org. more... Read More......(read more)

Converging Endpoint Security and Management: Say hello to Forefront Endpoint Protection

Forefront Team Blog — Tue, 20 Jul 2010 16:00:00 GMT

Today the team delivered the anticipated Forefront Endpoint Protection 2010 (FEP) public beta to customers. The successor of Forefront Client Security is built on System Center Configuration Manager (SCCM) 2007 R2, allowing customers to use their existing Read More......(read more)

FIM Management Agents from Partners

Identity and Access Management — Sat, 17 Jul 2010 17:17:35 GMT

Forefront Identity Manager includes a number of different management agents to connect to a variety of data sources. To enable you to connect to other data sources, FIM includes the Extensible Connectivity Management Agent (ECMA). To interact with a data Read More......(read more)

FIM 2010 Standard Objects Visio Stencil

1dent1ty cHa0s — Thu, 15 Jul 2010 20:02:02 GMT

I finished my Visio stencil for FIM 2010 "Standard Objects" sometime ago and am just now getting around to posting it. These are pretty much the standard icons you see in the portal interface with some additional things thrown in for good Read More......(read more)

Stephan Engberg on Touch2ID

Kim Cameron's Identity Weblog — Thu, 15 Jul 2010 19:02:24 GMT

Stephan calls for more discussion about the definition of privacy and the approaches that can be taken in creating such a definition Read More......(read more)

Navigating the Wilderness of CRL Checking

ISAserver.org Blogs — Tue, 13 Jul 2010 08:39:37 GMT

Hat tip to Jason Jones for finding some really useful information on the TechNet wiki! http://blog.msedge.org.uk/2010/05/certificate-revocation-list-crl.html On the TechNet wiki, the PKI team put up a nice list of products and applications that perform Read More......(read more)

Microsoft Forefront Unified Access Gateway (UAG) 2010 Best Practices Analyzer Tool

ISAserver.org Blogs — Tue, 13 Jul 2010 08:11:21 GMT

“The Forefront Unified Access Gateway (UAG) 2010 Best Practices Analyzer (BPA) Tool is designed for administrators who want to determine the overall health of their Forefront UAG computers and to diagnose current problems. The tool scans the configuration Read More......(read more)

Slipstream TMG Service Pack 1

ISAserver.org Blogs — Tue, 13 Jul 2010 08:05:32 GMT

Slipstreaming service packs into RTM media is always useful – it’s a big time saver! So, how about slipstreaming TMG SP1 into the TMG RTM? No problem – Richard Hicks has you covered. Check out his post on how to slipstream TMG SP1 into the RTM build over Read More......(read more)

Network Load Balancing and TMG Firewall Clients

ISAserver.org Blogs — Tue, 13 Jul 2010 07:58:33 GMT

First, I have to say that I LOVE that Richard Hicks calls the “TMG Client” the TMG Firewall Client. There was absolutely no reason to change the name of the Firewall Client to the “TMG client”. If they wanted to change the name, they should have been Read More......(read more)

Blizzard backtracks on real-names policy

Kim Cameron's Identity Weblog — Tue, 13 Jul 2010 06:25:22 GMT

Blizzard relents on plan to betray user privacy but clings to demented Facebook fantasy Read More......(read more)

Southworks seeds open source claims transformer

Kim Cameron's Identity Weblog — Tue, 13 Jul 2010 01:11:50 GMT

With Southworks' STS your apps can keep using WIF as the claims framework, no matter what your Identity Provider is. WS-Fed == enterprise, OpenID == consumer… Read More......(read more)

Trusting Mobile Technology

Kim Cameron's Identity Weblog — Sun, 11 Jul 2010 19:19:15 GMT

Influential European ICT expert Jacques Bus on my posts about MAC addresses and their use by Google and Apple Read More......(read more)

Using Consumer Identities for Business Interactions

Kim Cameron's Identity Weblog — Sat, 10 Jul 2010 19:13:50 GMT

Medtronic constructed an identity for the user containing both claims that came from the original PayPal identity and claims it added (“mashed-up”) to form a new, composite identity. Read More......(read more)

Diogenes and Shinder Crank Out Three New Forefront Books

ISAserver.org Blogs — Fri, 09 Jul 2010 10:04:47 GMT

Check out this post from Yuri Diogenes regarding three new Forefront books he and Tom have ready to come out in the near future: http://blogs.technet.com/b/yuridiogenes/archive/2010/07/08/new-forefront-books-by-microsoft-press.aspx HTH, Deb DEBRA LITTLEJOHN Read More......(read more)

TechEd 2010 Recordings on UAG DirectAccess

ISAserver.org Blogs — Fri, 09 Jul 2010 09:57:55 GMT

I had the chance to go to New Orleans this year to attend TechEd North America. I had a great time and got to meet a lot of people that I’ve had only online interaction with in the past. While I didn’t get to spend my time at the UAG and TMG booth (Tom Read More......(read more)

The Edge Man Talks About DirectAccess and VPN

ISAserver.org Blogs — Fri, 09 Jul 2010 09:40:14 GMT

Tom Shinder “The Edge Man” talks about DirectAccess and VPN in his technet blog entry over at: http://blogs.technet.com/b/tomshinder/archive/2010/06/28/directaccess-is-not-a-replacement-for-vpn.aspx I found this to be an interesting discussion because Read More......(read more)