Assurances in Identity

Code sample showing how to build a web application using Hello.js that performs identity management with Azure AD B2C: https://github.com/Azure-Samples/active-directory-b2c-javascript-singlepageapp-dotnet-webapi

New look and feel to the AAD Access Panel @  https://myapps.microsoft.com , which is more mobile-friendly and improves the user experience. https://blogs.technet.microsoft.com/enterprisemobility/2016/11/28/new-azuread-access-panel-is-now-generally-available/

Android for Work is now GA, you can block Windows PC from Exchange Online and SharePoint Online, MAM support is now built into all the Intune SDK tools and more. Check it out! New in Intune: More conditional access, App SDK updates, and Android for Work!

Microsoft's  Cloud App Security allows you to Discover, Control and Protect your organization from an internal Shadow IT.  What is Shadow IT?  It's your employees' unsanctioned use of Cloud applications, which could expose you to breaches through compromised credentials or the loss of sensitive corporate data. Read on to see how CAS can help your organization deal with the Shadow IT. Shadow IT leaves you vulnerable – Learn how to get control now Cheers, Marc

After a long hiatus, I'm looking to get this blog up and running again.  I'll be posting about interesting blogs and articles in the space of identity, mobility and security. Stay tuned for more!

Microsoft has quietly released Service Pack 1 (SP1) for their Forefront Identity Manager 2010 R2 product.  A lot of performance enhancements have been included, along with additional support for the latest versions of Microsoft technologies, such as Windows 8, Exchange 2013, etc.  The following links will provide more information: What's New in Forefront Identity Manager 2010 R2 SP1 Release Notes for Forefront Identity Manager 2010 R2 SP1 The BHOLD component has also seen some additional enhancements and new capabilities, check out the following links: What's New in Microsoft BHOLD Suite SP1 Release Notes for BHOLD Suite SP1   Also to note, Microsoft has published a list of features that are now considered deprecated, to be removed in some future version.  The following list should be reviewed to determine how this will impact your existing deployment: Deprecated Features And Planning For The Future   Enjoy!

A new FIM 2010 rollup hotfix has been released by Microsoft, bringing the current version of FIM to 4.0.3573.2. The information can be found here: KB 2417774 . This is the same KB article for version 4.0.3561.2, building upon it. It's a little difficult to tease out what is new to version 4.0.3573.2, but one feature definitely is. A new asynchronous export mode for FIM MA that can be enabled for initial load operations promises to significantly cut down on the amount of time required for exports to the FIM service. I'm looking forward to seeing how well this optimizes the export process. More information in the KB article!

I received word on July 1st, i.e. Canada Day (great timing), that I have been awarded the 2010 MVP award. Many thanks to the community and Microsoft for the recognition.

Looks like FIM 2010 may have RTM'ed! A new evaluation version is now available from Microsoft. Find it here: Microsoft® Forefront™ Identity Manager 2010 Evaluation Version [Update] It looks like Microsoft made the announcement at the 2010 RSA Conference in San Francisco today. For more information, please visit: RSA Conference 2010: Identity at the Forefront

Microsoft has just released Service Pack 1 for Identity Lifecycle Manager (ILM) 2007 FP1. The big new feature with this release is support for provisioning to Exchange 2010. You can find more information on Identity Management . You can find SP1 on the Microsoft Support site .

Microsoft has released a Hyper-V based demo of FIM 2010 RC1 Demo. You can find it here: Forefront(TM) Identity Manager 2010 RC1 Demo Virtual Hard Disk Image Props to Jorge over at Jorge 's Quest For Knowledge! for finding the link!

For those of you waiting to get the features available in PowerShell 2.0 (originally released with Windows 7 and Windows Server 2008 R2), your time has come. Microsoft has just released the Windows Management Framework, which includes: Windows PowerShell 2.0 Windows Remote Management (WinRM) 2.0 Background Intelligent Transfer Service (BITS) 4.0 Lots of good stuff in there, so go take a look! Windows Management Framework on Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008

You may not have noticed this in my previous posting, but ADFS 2.0 (formerly known as 'Geneva') has passed the Liberty Alliance SAML 2.0 Interoperability Testing, which means ADFS 2.0 can interoperate with heterogeneous environments and provide federation. You can find more information on the 'Geneva' Team Blog and on the Liberty Alliance Project site .

Forefront Identity Manager 2010 RC1 has been released! The announcement can be found here: MSFT Identity and Access news: Forefront Identity Manager RC1 and ADFS 2.0 SAML interoperability You can find the download bits here: Forefront™ Identity Manager 2010 Release Candidate 1

Well, it's been awhile since my last posting. Since that time, summer has come and gone and we're now into the Fall season. Summer was quite busy. Back in July, I received the Microsoft Most Valuable Professional (MVP) award. I'd like to thank David Lundell, over at ILM Best Practice , for his nomination. I'm quite honoured to have received the award. I've worked on a number of ILM 2007 projects, both on the Certificate Management side as well as Identity Synchronization. A few of them are still on-going, keeping me very busy. One project involves FIM 2010; I'm quite keen to get my hands on RC1 to see what Microsoft has been working on for the last several months. It shouldn't be long now before it's released, if Microsoft holds to the Q3 2009 deadline.

It's official! Microsoft has finally settled on a name for ILM '2': Forefront Identity Manager 2010 or FIM for short. Check out its new home: Microsoft Forefront: Identity Manager 2010 . If you're interested, Brad Turner over at 1dent1ty cHa0s has a brief perspective on FIM's lineage . And if you haven't already heard, or figured it out, the target release date is Q1 2010 .

Michael Wittenburg, a colleague with MCS - UK, recently sent through a link to a case study of a project I was involved in with him. The Internet Access to Shared Service (IASS) project aimed to provide the UK Ministry of Defence with secure remote access to its line-of-business applications . You can find the case study here: Case Study - The Ministry of Defence . The IASS solution used combination of multiple products to enable the secure remote access, including: Microsoft Active Directory Directory Services Microsoft Intelligent Application Gateway (IAG) Microsoft .NET Framework Microsoft BizTalk Server 2006 Microsoft Identity Lifecycle Manager 2007 FP1 (ILM) Microsoft Internet Security and Acceleration Server 2006 Gemalto Chip & PIN (EMV) .Net Smart cards I spent quite a few weeks at the Microsoft Technolo...

ILM 2007, through its Certificate Management solution, or Certificate Lifecycle Manager (CLM) as it used to be known, allows an organization to manage credentials within their Windows Server 2003 and 2008 certification authorities. It acts like an administrative proxy, allowing you issue and manage digital certificates and smartcards through a web interface. The solution provides three different APIs (i.e. Provision, SQL and Notification) and a number of customizable interfaces, all of which allow you to customize CLM. This gives you the ability to greatly extend and expand the product's capabilities. For an overview of these APIs and interfaces, have a look at the Certificate Lifecycle Manager Overview on MSDN. Over the next few postings, I'll be looking at these APIs and interfaces in greater detail, to show you how they work and how they could be put to use in your CLM deployment. And I'd like to add a quick shout-out to David Lundell, over at ILM Best Practices , f...