What is LDAPS? LDAP stands for Lightweight Directory Access Protocol. It is the protocol used to talk to Active Directory (AD). Some people confuse to two and refer to AD as LDAP. LDAPS is the LDAP protocol but with security similar to HTTP and HTTPS. an SSL certificate is used to encrypt the traffic flowing… Read More »
Anyone that has had to work with these FedAuth tokens would have experienced errors with the format of the FedAuth tokens. My initial response always is – how? This is Microsoft code, I don’t encode or decode the tokens how can something be wrong. Well… the bottom line is – something goes wrong when the… Read More »
The error ‘The revocation function was unable to check revocation because the revocation server was offline.’ is raised when an application is trying to check if the provided certificate is valid but it is unable to connect to the revocation server. The usual cause is that the server is fire-walled and cannot connect out to… Read More »
I recently implemented a centralized security token cache and observed that although the user signs-out and the session cookie is removed from the browser the session token was never removed from the SecurityTokenCache. This is something I would never have observed if I did not implement this cache.
The authentication schemes configured on the host (‘IntegratedWindowsAuthentication’) do not allow those configured on the binding ‘WS2007HttpBinding’ (‘Anonymous’). Please ensure that the SecurityMode is set to Transport or TransportCredentialOnly. Additionally, this may be resolved by changing the authentication schemes for this application through the IIS management tool, through the ServiceHost.Authentication.AuthenticationSchemes property, in the application configuration… Read More »
First day of trying the understand OWIN, I follow the steps from the microsoft site and are greeted by this error message. Could not load file or assembly ‘Owin, Version=22.214.171.124, Culture=neutral, PublicKeyToken=f0ebd12fd5e55cc5’ or one of its dependencies. The located assembly’s manifest definition does not match the assembly reference. (Exception from HRESULT: 0x80131040) There are possible… Read More »
This turned out to be tricky topic. I was banging my head against the wall for a few hours and could not get my initial solution working. I was aiming to retrieve the SAML xml that I know is locked inside the FedAuth cookie. Alas I could not get that working but I did manage to… Read More »