Stack Overflow
Stack Overflow

Questions tagged [wif]

The Windows Identity Foundation is a free Microsoft library that enables claims based authentication and use federated identity/single sign-on in their applications.

The Windows Identity Foundation is a free Microsoft .NET library that enables claims based authentication and use federated identity/single sign-on in their applications.

It is part of Microsoft's wider identity and access management strategy which includes Active Directory Federation Services and Windows Azure Access Control Services.

1279 questions
6
votes
1 answer

Authenticating against AD FS from a .Net 4.5 Console App

I'm in the process of getting my head round using AD FS to authenticate a user in a .NET 4.5 app. I can't find any examples of requesting/receiving the token from a console app and converting that token into a ClaimsPrinciple. The only examples I…
Gavin
  • 17,053
  • 19
  • 64
  • 110
6
votes
2 answers

Identity check failed for outgoing message. The expected DNS identity of the remote endpoint was XXX

I am having problems with a WCF Service which is being authenticated via certificate. The error I get is Identity check failed for outgoing message. The expected DNS identity of the remote endpoint was xxx.... I have seen lots of posts about this…
Luke Wilkinson
  • 439
  • 8
  • 17
6
votes
2 answers

Getting "not a valid Base-64 string" on federated identity token

I am randomly getting a base 64 encoding error when browsing my mvc3 azure web role. I am using WIF with passive authentication to authenticate against my ADFS server. I have not be able to isolate where this is coming from, but I have an idea and…
Ben Tidman
  • 2,129
  • 17
  • 30
6
votes
2 answers

Windows Identity Foundation does not officially support SAML 2.0; use WIF CTP or stick with SAML 1.1?

We would like to use SAML 2.0 for a Single Sign On solution. As a typical Microsoft shop, we prefer to use Microsoft components as much as possible. Windows Identity Foundation supports SAML 2.0, but the extension is still in Community Technology…
Venkat
  • 785
  • 3
  • 10
  • 22
6
votes
2 answers

When not to use ACS?

I've been researching the Azure Access Control Service (ACS), and it looks like it's especially good at handling authentication from heterogeneous (configurable) identity providers. Then there are a number of additional scenarios that it appears to…
Lars Kemmann
  • 5,509
  • 3
  • 35
  • 67
5
votes
2 answers

WIF, STS and Membership tables

I'm currently looking into using WIF for an upcoming project and would appreciate some help finding information. I've looked around a bit and don't have a decisive answer. I have a current site that runs off ASP membership, and I have a large number…
Bob
  • 3,074
  • 11
  • 43
  • 62
5
votes
2 answers

Azure ACS - Claims URL exposed in browser history - security hole?

Found this official ACS demo http://www.fabrikamshipping.com/ while researching on ACS. In the app itself, when logging in with one of the providers ( I chose Google ), I can see in the browser history the URL that contains the claims returned from…
Yaron Levi
  • 12,535
  • 16
  • 69
  • 118
5
votes
2 answers

Azure ACS - Best Practice Implementation

We are building an ASP.NET MCV 3 application from scratch running on Windows Azure. About Authentication and Authorization layer we are thinking to use the Access Control Service. I went through some articles about ACS where I got the basic idea but…
Francesco
  • 491
  • 6
  • 14
5
votes
0 answers

Configuring SSL (https) for ws2007FederationHttpBinding Endpoint 404 No Endpoint found

Another WIF related problem - can anyone point me in the direction of how to configure https in wcf for a ws2007FederationHttpBinding endpoint. I have the certificates and bindings all set-up in IIS, but whenever I try to connect to the endpoint I…
Matt Whetton
  • 6,616
  • 5
  • 36
  • 57
5
votes
1 answer

Using WIF with asp.net MVC 3, where do I define the STS Sign out endpoint?

I see that the FedMetadata document can provide signout notification and subscription endpoints, and web.config defines the issuer url for sign in requests, but I can't find where WIF knows to send sign out requests. If the STS I'm using defines…
ryanhallcs
  • 237
  • 1
  • 14
5
votes
3 answers

Custom WIF Request Validator Infinite Loop

While fixing the problem described here, I created another that I can seem to find anywhere else on the web: SignInResponseMessage message = WSFederationMessage.CreateFromFormPost(context.Request) as SignInResponseMessage; The above code keeps…
ryanhallcs
  • 237
  • 1
  • 14
5
votes
2 answers

How do I handle the event SessionSecurityTokenReceived in Global.asax?

I'm trying to set up sliding sessions in WIF and need to handle SessionSecurityTokenReceived. I'm sure I'm doing something dumb here... but VS2010 keeps on telling me that There is no applicable variable or member in the spot illustrated below. Can…
makerofthings7
  • 60,103
  • 53
  • 215
  • 448
5
votes
1 answer

Single Sign on With WIF

I have successfully integrated SSO with WIF on my two Web Domain. Now I have a requirement that some users sign on using SSO and other users do not use SSO. How I can achieve this thing? I would appreciate your help, Thanks Shahram Javed
shary
  • 178
  • 2
  • 12
5
votes
2 answers

ADFS 2.0 - How can I Debug "401 - Unauthorized"

I setup a test Server 2008 box with Active Directory and ADFS 2.0. I have an ASP.NET app which uses WIF to federate identity. ADFS is configured to use Active Directory for identity info. I used WIF to configure the client app to use the ADFS…
chief7
  • 14,263
  • 14
  • 47
  • 80
5
votes
1 answer

Securing backend WCF service with WIF using ADFS2 as IP

I’m having an issue using ADFS2 to secure a back-end WCF service that is being called from Passively Federated Website. I have the passive federation working on the website, but the back-end service is giving me problems. The pieces of the puzzle.…
Eugene S.
  • 3,256
  • 1
  • 25
  • 36
1 2 3
85 86