Alex Tcherniakovsky posted on his blog very interesting video how to incorporate workflow based on Windows Workflow Foundation into user self provisioning scenario. Alex shows how to integrate WWF integrated with SharePoint 2007, Infopath and MIIS into solution which allows end-user to request access to particular system (Sun One in this case) which will be … Continue reading "MIIS and workflow integration"
Active Directory jigsaw
If You are looking for some picture to hang on the wall next to Your desk or in server room maybe You will want to get Active Directory jigsaw (PDF). This picture was originally published in Technet Magazine. It contains jigsaw of AD components and dependencies. It looks good especially when it is printed on … Continue reading "Active Directory jigsaw"
FireFox and CardSpace (InfoCards)
Kim Camreon posted lately link to Kevin Miller's blog who wrote FireFox plugin for CardSpace. CardSpace (InfoCards) is Windows implementation for user centric identity idea. To use CardSpace as authentication factor in the Internet Your browser has to support it with selector component. Till this moment selector was only available for Internet Explorer, now we can … Continue reading "FireFox and CardSpace (InfoCards)"
Complexity of authentication ("the Password problem")
Many IT people I know require their users to come up with complex passwords and require them to change them often. I guess this gives them a sense of security. It's actually not as secure as they think. Even after implementing a good (Microsoft ISA Server) firewall, implementing IPSec on your network, running NAP or NAC there are … Continue reading "Complexity of authentication ("the Password problem")"
How to check if I can update attribute?
Yesterday I was at customer site to talk about identity management and as it often happens some other topics were discussed with customer tech stuff after discussing main topics. In this discussion I was asked how to read and parse security descriptor for Active Directory object. After few questions we came to conclusion that they … Continue reading "How to check if I can update attribute?"
Windows Media Player and iPod
Some time ago (actually over the year now) I bought iPod Shuffle as a simple replacement for my old 256MB USB memory stick. I'm still using it mostly as USB memory, but sometimes when I have to travel (like tomorrow at 6 AM 🙁 ) or during the flight I'm using it to listen to … Continue reading "Windows Media Player and iPod"
Exchange Server 2007 and the Active Directory, Part 4
With Microsoft Exchange Server 2007 comes a new security model to publish your servers to the Internet: Microsoft Exchange Server 2007 boxes configured with the Edge Transport Server Role. This new model replaces the current Front-End / Back-end model.
Exchange Server 2007 is here! (RTM)
After three years of development the Microsoft Exchange team released Microsoft Exchange Server 2007, previously codenamed "E12" to manufacturing. (RTM)
Schema extensions for Vista new features
Vista introduces several new functionality and few of then (to be specific two) requires our AD environment to get prepared through schema extension. These schema extension needed to run new Vista's features will be part of LH schema, but LH is still somewhere behind the horizon and we have to take care about it by … Continue reading "Schema extensions for Vista new features"
Vista Group Policy Log View
Microsoft has published new Vista tool called Group Policy Log View. Its name tells everything about its purpose. Vista's GPO processing takes advantage of new event logging subsystem Crimson and stores a lot of data about GPO processing in event logs. This tool allows You to create TXT, XML or HTML report from these events. Report … Continue reading "Vista Group Policy Log View"