Microsoft begins adding single-sign on support to its Azure cloud

Microsoft begins adding single-sign on support to its Azure cloud

Summary: Microsoft is adding federated-identity support for providers including Google, Facebook, LiveID and OpenID to its Azure cloud platform via a new update to its Windows Azure AppFabric component.

SHARE:

Microsoft is adding federated-identity support for providers including Google, Facebook, LiveID and OpenID to its Azure cloud platform via a new update to its Windows Azure AppFabric component.

Windows Azure AppFabric is the new name for .Net Services, and currently includes service bus and access control only. Microsoft has started making regular, monthly updates to Azure AppFabric. The August update -- which the Softies are characterizing as a major one -- includes a number of identity-specific updates to the access control piece.

The August Azure AppFabric update is available via the AppFabric LABS environment, which is where the AppFabric team showcases some of its early bits and makes them available for free to get user feedback. (Microsoft characterizes the features it delivers via AppFabric LABS as "similar to a Community Technology Preview," but notes that these technologies "may occasionally be even farther away from commercial availability."

Included in the August access-control update to Azure AppFabric are the following new features:

  • Integration with Windows Identity Foundation (WIF) and tooling
  • Out-of-the-box support for web identity providers including: Windows Live ID, OpenID, Google, Yahoo, and Facebook
  • Out-of-the-box support for Active Directory Federation Server v2.0
  • Support for OAuth WRAP, WS-Trust, and WS-Federation protocols
  • Support for the SAML 1.1, SAML 2.0, and Simple Web Token (SWT) token formats
  • Integrated and customizable Home Realm Discovery that allows end-users to choose their identity provider
  • An OData-based Management Service that provides programmatic access to ACS configuration
  • A Web Portal that allows administrative access to ACS configuration

Microsoft officials outlined the company's plans to add single sign-on/federated identity support to Azure in the fall of 2009. Microsoft execs recently said that the company is working to add federated-identity support to Microsoft's Business Productivity Online Suite (BPOS) of hosted applications. (BPOS is not yet running on Azure, just to be clear; however, it's still running in Microsoft datacenters.)

How major are these new AppFabric updates? Sergejus, a .Net developer, tweeted: "Finally, Azure #AppFabric supports LiveID, OpenID, Google and Facebook authentication. Now real development starts!"

Topics: Software, Browser, CXO, Collaboration, Enterprise Software, Microsoft, Operating Systems, Windows

About

Mary Jo has covered the tech industry for 30 years for a variety of publications and Web sites, and is a frequent guest on radio, TV and podcasts, speaking about all things Microsoft-related. She is the author of Microsoft 2.0: How Microsoft plans to stay relevant in the post-Gates era (John Wiley & Sons, 2008).

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

9 comments
Log in or register to join the discussion
  • Well, if Sergejus thinks so...let's get on it!

    and he's a .Net developer to boot!
    mpantana
    • RE: Microsoft begins adding single-sign on support to its Azure cloud

      @mpantana I'd be happy if <a href="http://www.trsohbet.com">sohbet</a> got rid of the ribbon and gave us <a href="http://www.trsohbet.com">chat</a> users the pull-down menus that existed before Office 2007 for <a href="http://www.forumuz.net/">forum</a>. I like getting Outlook for the <a href="http://www.trsohbet.com/portal/">portal</a>. It has grown on me since my new Windows <a href="http://video.trsohbet.com">izlesene</a> box had to use Outlook since <a href="http://www.trsohbet.com">chat sohbet</a> was removed. <a href="http://www.trsohbet.com">sohbet odalari</a> email client is weak.
      timaeus
      • RE: Microsoft begins adding single-sign on support to its Azure cloud

        @timaeus Hello Alp <img border="0" src="http://www.cnet.com/i/mb/emoticons/happy.gif" alt="happy"> I'm not sure - it's possible that there are issues around performance, cost, or both, or that MS is just new to this area. I know that it's unusually complex to write software to run on any of these clusters, so I'd guess that factors like the expertise of those writing the software, compatibility with existing apps, and similar might be involved. <a href="http://www.arabaoyunlarimiz.gen.tr/araba/tabu-oyna-2-kisilik/">tabu oyna</a>
        Arabalar
  • Passport, anyone?

    I'm on the fence regarding single sign-on. It's always been one of those "wouldn't it be cool if..." ideas, but has always turned into a poor end-user experience. It also brings it's own security headaches.
    croberts
  • If it's good enough for Tweeter Sergejus....

    That last paragraph is an absolute hoot. Well-researched journalism at its best! :)
    dschmoldt
  • RE: Microsoft begins adding single-sign on support to its Azure cloud

    Nice blog having nice information. some times we ignore this sort of things & also suffer a lot as well.
    <a href="http://www.hertzcarsales.com/content/content.aspx">car values</a>
    KAnkur007
  • RE: Microsoft begins adding single-sign on support to its Azure cloud

    Wow, I didn't know that Microsoft has an azure cloud, this is one great news to people who wanted to avail an external data center. <a href="http://www.jogosdeculinaria.org">JogosDeCulinaria</a>
    krisrian
  • RE: Microsoft begins adding single-sign on support to its Azure cloud

    One feature added to the Pro edition for Azure is support for Microsoft's Storage Analytics tool, which lets Azure developers monitor and report on how efficiently their storage and bandwidth are being used. Storage Analytics provides reports on such metrics as number of object requests per hour, average server-side and end-to-end latencies, and total number of successful and failed requests. <a href="http://www.rtv.rs/sr_lat/vojvodina/subotica/moguc-oporavak-fidelinke_266234.html">Mineco</a>
    JerryS01
  • RE: Microsoft begins adding single-sign on support to its Azure cloud

    Great critical info [url=http://www.buy-mulberry.co.uk/]mulberry bag[/url] combined with surprising form your company [url=http://www.buy-mulberry.co.uk/]buy mulberry[/url] acquired preferred what follows! I could possibly will need to thanks for [url=http://www.buy-mulberry.co.uk/]mulberry bag sale[/url] using your opinions or in time into your items share!!
    makrejktt5001-24353686006706287362027889362929