Questions tagged [azman]

AzMan (Windows Authorization Manager) is a role-based access control (RBAC) framework that provides an administrative tool to manage authorization policy and a runtime that allows applications to perform access checks against that policy.

The AzMan administration tool (AzMan.msc) is supplied as a Microsoft Management Console (MMC) snap-in. Role-based authorization policy specifies access in terms of user roles that reflect an application's authorization requirements. Users are assigned to roles based on their job functions and these roles are granted permissions to perform related tasks.

Authorization policy is managed separately from an application’s code. The application designer defines the set of low-level operations that are considered security sensitive and then defines a set of tasks that map onto those operations. The tasks, but not the operations, are designed to be understandable by administrators and business analysts.

Administrators use the AzMan snap-in to manage which roles should have access to which tasks. As the business evolves and roles need to be modified, the administrator makes changes to the authorization policy; the underlying business application does not need to be changed. Federation-aware applications employ AzMan for access control decisions by mapping federation claims to AzMan roles.

http://msdn.microsoft.com/en-us/library/bb897401.aspx

79 questions

votes

8 answers

Which authentication and authorization schemes are you using - and why?

We're beginning to design a whole bunch of new services to create (WCF, ADO.NET Data Services, possibly in the cloud at some point) and one question that pops up is what authentication and authorization scheme to use - there are quite a few! We…

asked Apr 16 '09 at 18:30

marc_s

732,580
175
1,330
1,459

votes

3 answers

Azman Obsolete? What is the new alternative to Azman?

Is there a replacement for Azman, that is a new way to apply security. Previously we were using EntLib 3 and used Azman for our security and authorisation. However an article I read about the vision of EntLib 6.0 is to deprecate Security(link…

c# security authorization enterprise-library azman

asked Jan 09 '13 at 06:50

Donald N. Mafa

5,131
10
39
56

votes

2 answers

NetSqlAzMan vs AzMan vs (?????)

I've been trying to "read between the lines" about the original (and/or current) motivation for the NetSqlAzMan project. Was this written for? An adapter for Windows Authorization Manager (AzMan). Where the methods in the NetSqlAzMan just passes…

c# .net security azman netsqlazman

asked Jan 05 '12 at 21:52

granadaCoder

26,328
10
113
146

votes

2 answers

Is Windows Authorization Manager (AzMan) Obsolete? Is it good to use in a new ASP.NET application?

Does anyone use Windows Authorization Manager (AzMan) anymore for "greenfield" projects? If so, are there any benefits to using the technology in an ASP.NET application as a membership/role provider?

asp.net security membership azman authorizationmanager

asked Apr 22 '11 at 15:22

Jason

4,897
2
33
40

votes

3 answers

Relative connection string to AzMan XML store when using security application block

Is it possible to specify a relative connection string for an AzMan XML store? My current connection string is connectionString="msxml://c:/azman.xml" but I really need to make that relative so other developers and automated builds can get the…

enterprise-library relative-path azman

asked Feb 05 '09 at 02:05

David Hall

32,624
10
90
127

votes

1 answer

Getting a list of Tasks that belong to a Role from Azman

I'm using the AZROLESLib which is from the COM references "azroles 1.0 Type Library" and I am trying to create a list of the designated tasks for each role that I have currently set in my authorization manager but when I loop through the tasks for…

c# roles task azman

asked Oct 26 '09 at 22:38

user196942

votes

2 answers

Azman 64 bit using VS2010: BadImageFormatException

I recently upgraded a solution from VS2008 to VS2010. Just a solution upgrade, nothing else. I am targeting .Net 3.5. The solution is set to build build for "any CPU". Now, after the solution upgrade, I get a BadImageFormatException when trying to…

visual-studio-2010 azman

asked Dec 09 '10 at 10:24

David

votes

0 answers

Cast UserPrincipal to WindowsIdentity

I've created a WCF service to authorize my apps through AzMan services. I've been trying to cast an UserPrincipal to WindowsIdentity by many ways. My scenario is: A Web MVC calling a WCF service which needs to pass a windows identity variable to an…

c# asp.net-mvc wcf impersonation azman

asked Jun 15 '15 at 18:39

gandarez

2,609
4
34
47

votes

2 answers

WPF Application - Role Management Recommendations

I have a WPF application with a WCF service layer and a SQL database. I now want to restrict elements of the application so that certain functions are only available to those users with a particular role. For example, you will only be able to…

c# wpf azman

asked May 13 '10 at 13:40

David Ward

3,739
10
44
66

votes

1 answer

AzMan versus Windows Identity Foundation

What is the current guidance on managing authorisation in a .NET application? Specifically whether to use Authorization Manager (AzMan), Windows Identity Foundation (WIF) or a combination of the two. The Identity Team last mentioned the two in…

.net authorization wif azman

asked Jun 13 '14 at 07:26

David Gardiner

16,892
20
80
117

votes

2 answers

Authorization and Entitlement solution on .Net like earlier in AzMan

What is the best way to achieve application authorization and entitlement in .Net. Earlier AzMan use to be the standard way. With the advent of provider model, at least roles are taken care of but I am not sure about the authorization & entitlement.…

.net security authorization azman entitlements

asked Mar 02 '10 at 19:30

Kabeer

4,138
7
40
62

votes

2 answers

Why do I get the error "Unable to update the password" when calling AzMan?

I'm doing a authorization check from a WinForms application with the help of the AzMan authorization provider from Enterprise Library and am receiving the the following error: Unable to update the password. The value provided as the current…

c# winforms authorization adam azman

asked Aug 14 '08 at 08:38

Magnus Lindhe

7,157
5
48
60

votes

1 answer

Issue in retrieving the task list from AuthorizationManager (AzMan)

I am using authorization Manager in one of my application and my requirement is to copy the AzMan store from one location to another location. My source location is Active directory and destination is xml and I have the path for both of these. When…

azman authorizationmanager

asked Mar 17 '09 at 10:03

Kapil

9,469
10
40
53

votes

1 answer

Is AzMan being deprecated as the role based authorization technology for Windows apps?

There doesn't seem to have been any new development on AzMan for a few years now. I'm wondering if it is still the recommended solution for implementing role based authorization for a Windows application using AD authentication? Windows Identity…

.net asp.net authorization windows-server azman

asked Jun 13 '11 at 16:28

Craig Fisher

1,681
2
19
26

votes

1 answer

AZMan: InitializeClientContextFromName failing with "Value does not fall within the expected range."

The following code, fails at the InitializeClientContextFromName, with "Value does not fall within the expected range." It works on another developer's machine. any clues I should follow up? I'm not really familiar with AzMan at all... private…

c# .net-4.0 azman

asked May 05 '11 at 09:58

kpollock

3,899
9
42
61

2 3 4 5 6 Next