Oauth - Brief Introduction
•Download as PPTX, PDF•
1 like•464 views
An introduction to Oauth, how it fits into Microsoft, where it came from and what it is doing on the internet.
Report
Share
Report
Share
Recommended
SSO_Good_Bad_Ugly
This document discusses Single Sign-On (SSO) including the pros and cons. It provides an overview of SSO and different standards and categories used for SSO. It discusses issues around ownership and implementation of SSO. Challenges with SSO requirements based on users, applications, and synchronization are outlined. Examples of SSO needs in different industries are also presented. The document concludes with considerations for the future direction of SSO.
Reduce, Reuse, Recycle: How Moneysupermarket.com Created APIs Without Startin...
The evolutThe evolution of the API’s used byMoneysupermarket.com’s highly successful Car Insurance application. Faced with having to re-engineer the entire application to meet the increasingly demands of security, accuracy & scale – how we incrementally refactored our application to create an OAUTH 2.0 API using Layer 7ion of the API’s used byMoneysupermarket.com’s highly successful Car Insurance application. Faced with having to re-engineer the entire application to meet the increasingly demands of security, accuracy & scale – how we incrementally refactored our application to create an OAUTH 2.0 API using Layer 7
Maximizing PayPal's New Identity Services to Create Seamless and Safe User Ex...
Maximizing PayPal's New Identity Services to Create Seamless and Safe User Ex...PayPalX Developer Network
Outsourcing identity-related services—such as customer authentication—to PayPal could speed your application development, save you the hassle of dealing with password resets, and give your customers a shorter and easier path to purchases. An authentication service is just one example of the identity services we've got planned. Come learn how all of them can improve business opportunities and enhance user experiences.Federation Services
The document discusses single sign-on (SSO) and identity management features of an SSO application. It describes various SSO scenarios for corporate login to cloud or internal applications. It also covers key features of the SSO manager including support for multiple protocols, security token services, adaptive authentication workflows, and a claims provider for applications like SharePoint. The document is a marketing piece that aims to outline the capabilities of an SSO application.
OAuth Assisted Token Flow for Single Page Applications
In this talk, Daniel Lindau, Solution Architect at Curity, will show how OAuth can be integrated into Single Page Applications (SPAs) using the assisted token flow — a new OAuth message exchange pattern introduced at IETF 101. He will contrast it with implicit flow and show how framing, token storage, and other nuances are handled using this new alternative flow. He will highlight the use of the HTML postMessage interface for passing tokens (vis-a-vis redirects used by other flows). He will also demo how this protocol can be used with various JavaScript frameworks, like JQuery, in just a few lines of code. He will conclude by giving a state of the draft and its future.
What is portal vs website
Presentation on difference between portal and website. It explains difference using examples of websites available online. WebSphere Portal represents aggregated content from different sources whereas website shows common source content. Portal can be customized for custom user experience and preferences.
Kerberos and WebVoyage
This document discusses integrating different login and access systems like SideCar, CUwebauth, and library cards into the WebVoyage catalog system. It proposes adding a login sequence to try different authentication methods and allow those without NetIDs to still login with library cards. Placement of explanatory text is discussed to help users understand the login process without being too intrusive. Feedback is requested on login placement and features to confirm user identity for request and borrowing functions. Users should be able to search the catalog without additional logins, with NetIDs or library cards.
MH Trailblazer Group - Understanding SSO Solution for Salesforce
This document provides an overview of single sign-on (SSO) solutions for Salesforce, covering key identity concepts, SSO protocols like SAML and OAuth, and demonstrations of implementing SSO with an identity provider. The agenda includes defining authentication and authorization, explaining identity provider and service provider terminology, demonstrating identity provider and service provider initiated SAML flows, the OAuth authorization code grant flow, and using a third-party identity provider like Facebook or Okta for SSO into Salesforce.
Recommended
SSO_Good_Bad_Ugly
This document discusses Single Sign-On (SSO) including the pros and cons. It provides an overview of SSO and different standards and categories used for SSO. It discusses issues around ownership and implementation of SSO. Challenges with SSO requirements based on users, applications, and synchronization are outlined. Examples of SSO needs in different industries are also presented. The document concludes with considerations for the future direction of SSO.
Reduce, Reuse, Recycle: How Moneysupermarket.com Created APIs Without Startin...
The evolutThe evolution of the API’s used byMoneysupermarket.com’s highly successful Car Insurance application. Faced with having to re-engineer the entire application to meet the increasingly demands of security, accuracy & scale – how we incrementally refactored our application to create an OAUTH 2.0 API using Layer 7ion of the API’s used byMoneysupermarket.com’s highly successful Car Insurance application. Faced with having to re-engineer the entire application to meet the increasingly demands of security, accuracy & scale – how we incrementally refactored our application to create an OAUTH 2.0 API using Layer 7
Maximizing PayPal's New Identity Services to Create Seamless and Safe User Ex...
Maximizing PayPal's New Identity Services to Create Seamless and Safe User Ex...PayPalX Developer Network
Outsourcing identity-related services—such as customer authentication—to PayPal could speed your application development, save you the hassle of dealing with password resets, and give your customers a shorter and easier path to purchases. An authentication service is just one example of the identity services we've got planned. Come learn how all of them can improve business opportunities and enhance user experiences.Federation Services
The document discusses single sign-on (SSO) and identity management features of an SSO application. It describes various SSO scenarios for corporate login to cloud or internal applications. It also covers key features of the SSO manager including support for multiple protocols, security token services, adaptive authentication workflows, and a claims provider for applications like SharePoint. The document is a marketing piece that aims to outline the capabilities of an SSO application.
OAuth Assisted Token Flow for Single Page Applications
In this talk, Daniel Lindau, Solution Architect at Curity, will show how OAuth can be integrated into Single Page Applications (SPAs) using the assisted token flow — a new OAuth message exchange pattern introduced at IETF 101. He will contrast it with implicit flow and show how framing, token storage, and other nuances are handled using this new alternative flow. He will highlight the use of the HTML postMessage interface for passing tokens (vis-a-vis redirects used by other flows). He will also demo how this protocol can be used with various JavaScript frameworks, like JQuery, in just a few lines of code. He will conclude by giving a state of the draft and its future.
What is portal vs website
Presentation on difference between portal and website. It explains difference using examples of websites available online. WebSphere Portal represents aggregated content from different sources whereas website shows common source content. Portal can be customized for custom user experience and preferences.
Kerberos and WebVoyage
This document discusses integrating different login and access systems like SideCar, CUwebauth, and library cards into the WebVoyage catalog system. It proposes adding a login sequence to try different authentication methods and allow those without NetIDs to still login with library cards. Placement of explanatory text is discussed to help users understand the login process without being too intrusive. Feedback is requested on login placement and features to confirm user identity for request and borrowing functions. Users should be able to search the catalog without additional logins, with NetIDs or library cards.
MH Trailblazer Group - Understanding SSO Solution for Salesforce
This document provides an overview of single sign-on (SSO) solutions for Salesforce, covering key identity concepts, SSO protocols like SAML and OAuth, and demonstrations of implementing SSO with an identity provider. The agenda includes defining authentication and authorization, explaining identity provider and service provider terminology, demonstrating identity provider and service provider initiated SAML flows, the OAuth authorization code grant flow, and using a third-party identity provider like Facebook or Okta for SSO into Salesforce.
Oauth and SharePoint 2013 Provider Hosted apps
A deep dive into Oauth and a look at provider hosted apps in SharePoint 2013, including how to host an app in Azure, but added to SharePoint
Who’s Knocking? Identity for APIs, Web and Mobile
This document discusses identity management for APIs, web, and mobile applications. It begins with an overview of trends in cloud computing and APIs. It then discusses how traditional network security is inadequate for these new architectures and that identity has become the new perimeter. The document outlines recommendations for an API identity strategy, including implementing OAuth 2.0 for authorization instead of passwords and leveraging an identity provider to apply enterprise security policies to cloud applications and APIs. It recommends architects design for interoperability across multiple devices, users, locations, and protocols.
SSO Manager
Overview of EmpowerID SSO Manager. SSO Manager enables single sign-on for corporate and cloud applications
SPCA2013 - It’s Me, and Here’s My ProofIdentity & Authentication in SharePoin...
This document provides an overview of identity and authentication in SharePoint 2013 and Office 365. It begins with a primer on authentication and authorization concepts. It then covers Windows authentication, trusted claims providers, service delegation between servers, and authorization for apps. It discusses the various identity management options for integrating on-premises Active Directory with Office 365 through options like online IDs, directory synchronization, and federation.
The “I” in API is for Identity (Nordic APIS April 2014)
The document discusses identity management standards for APIs, including OAuth 2.0, SAML, and OpenID Connect. It provides an overview of each standard, including how they work and examples of them in action. The document recommends either using SAML + OAuth 2.0 due to broad SAML adoption, or OpenID Connect as it is simpler, works across all clients, and uses OAuth access tokens. It also describes Ping Identity's solution for implementing these identity standards for APIs.
Identity soup
When it comes to identity and access management (IAM) for your application, it's good to warm-up with a good cup of identity protocol soup. Key ingredients include SAML, OAuth, OpenID and OpenID Connect. In this session, learn how developers create world-class private and public applications that are secure, mobile and can be easily provisioned -- all leveraging these standards-based protocols.
CIS 2015 Extreme OpenID Connect - John Bradley
This document discusses advanced features of OpenID Connect including:
- The use of Authorization Cross-Domain Code (ACDC) and Proof Key for Code Exchange (PKCE) to enable authentication flows for native mobile applications.
- How ACDC allows native apps to leverage an enterprise or social identity provider to obtain tokens without embedding credentials in the app.
- The concept of a Token Agent that performs authentication on behalf of other native apps to provide single sign-on capabilities.
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
Protiviti is a global consulting firm that helps large companies and government agencies solve problems in various areas including finance, technology, operations, and risk management. The document discusses how claims-based authentication and authorization works in SharePoint and its benefits over traditional permissions-based security. It provides an overview of configuring claims-based authentication with a trusted identity provider and customizing the claims process. Common customer scenarios where claims could provide more granular access control are also presented.
OAuth
OAuth 2.0 is an open standard for authorization that allows third-party applications to securely access private user data from APIs, without requiring the user to share their username and password. It specifies a process for users to authorize applications to access their data on other servers, issuing access tokens that applications can use to make API requests on the user's behalf. OAuth addresses issues with passwords by allowing temporary, limited access without exposing user credentials.
CIS13: Taking the Hyperspace Bypass: Controlling User Access to Other Worlds
Dale Olds, Senior Staff Engineer, VMware
If identity is the new perimeter, then users must be able to access applications anywhere: on premise, in the cloud or on partner sites. To enable this access we must take identity information into other worlds, and there is no Babel Fish. This session will explain how to enable access to distributed applications without making users feel like Marvin the Paranoid Android. We will cover topics like federated authentication, browser single sign-on and delegated authorization for cloud APIs. Standards in this area are essential, but SAML, OAuth2, SCIM and OpenID can sound like Vogon poetry. We'll touch on the standards, but keep the Vogon poetry to a minimum.
CIS13: Introduction to OAuth 2.0
This document provides an overview of OAuth 2.0 and how it addresses issues with the previous "password anti-pattern" approach to API authentication. It describes the key actors in OAuth - clients, authorization servers, and resource servers. It also summarizes the different flows for obtaining access tokens, common use cases for OAuth, and how OAuth compares to SAML for SSO and authorization.
Introduction to OAuth2
OAuth is an authorization framework that allows users to approve third-party access to private resources like files and profiles. It involves roles like resource owners, clients, authorization servers, and resource servers. Common grant types are authorization code and implicit grants, which allow clients to obtain authorization codes or tokens to access resources. An example flow shows a client obtaining a one-time authorization code from the authorization server, then exchanging it for an access token to use to access private user resources stored on the resource server.
Open Id, O Auth And Webservices
This document provides an overview of OpenID, OAuth, and web services for single sign-on and authorization. It describes how OpenID allows a user to log in to multiple websites using one identity and how OAuth allows websites to access user data from another site without needing the user's password. REST and SOAP web services approaches are also briefly discussed.
Integrando Azure AD B2C con Xamarin.Forms
This document discusses authentication and authorization approaches. It begins by describing simple login forms authentication, then discusses disadvantages of this approach like security and maintenance issues. It outlines earlier authentication scenarios like single sign-on. It introduces OAuth 2.0 terminology like resource owner, client, authorization server, and access token. It explains how OAuth 2.0 allows delegated authorization where a client like Yelp can access a user's data from a resource server like Google contacts with the user's permission. It diagrams the OAuth 2.0 authorization code flow. It also mentions other OAuth 2.0 terms like front channel, back channel. It discusses implementing these standards using Azure Active Directory, highlighting its capabilities and market adoption.
.NET MAUI + Azure AD B2C
The document discusses authentication, authorization, and login processes. It begins by describing a basic login form with username and password. It then covers the disadvantages of this approach and scenarios before 2010, noting that OAuth and OpenID Connect have become industry standards. The document explains key OAuth 2.0 terms and the authorization code flow process. It presents Azure Active Directory as a way to implement authentication standards, noting its large user base. The end discusses Azure AD use cases for access management, security, compliance, and mobile application management.
Practical Federated Identity
This document discusses practical use cases of federated identity in real world scenarios. It begins by defining identity and explaining problems with digital identity, such as having separate identities in different applications. It then introduces federated identity as a way to make identities portable across domains. Key requirements for federated identity include identity management, authentication, trust between domains, attribute mapping, and attribute exchange. Common protocols for federated identity include OpenID, SAML, and WS-Trust. The document provides examples of federated identity patterns using WSO2 Identity Server and discusses use cases such as a SaaS application with trusted identity providers.
[WSO2Con USA 2018] Identity APIs is the New Black
This slide deck discusses how identity APIs have evolved over time and real-world scenarios where tough identity challenges have been successfully tackled by using them.
Con8811 converged identity governance for speeding up business and reducing c...
The document discusses Oracle's converged identity governance solution. It addresses key business problems such as simplifying access management, maintaining compliance, and reducing fragmentation and costs. The solution provides a platform approach to identity governance, provisioning, access requests, policy management, and reporting. It aims to simplify access, reduce risk, and improve compliance. The presentation includes a customer panel discussion on their identity governance implementations.
Claim based authentaication
Claim based authentication provides a solution to common problems with user authentication across multiple websites. It allows an identity provider like Google or Facebook to authenticate a user and issue tokens containing claims like user details. Applications can then request specific claims from an identity provider through a selector. The identity provider signs the token and applications can verify the signature to trust the identity provider. This avoids the need for each application to implement its own authentication and allows users to reuse their login from an identity provider on multiple applications.
The New Venn of Access Control in the API-Mobile-IOT Era
Presentation from the 2014 IRM Summit in Phoenix, Arizona by Eve Maler, Principal Analyst Serving Security & Risk Professionals at Forrester.
DevOps Kata Modern Debugging
Visual Studio provides integrated tools to support DevOps practices like continuous integration, delivery, deployment and monitoring across the development and production environments. It allows teams to plan, develop, test and release applications while optimizing resources, managing technical debt, and gaining insights from evidence in production to refine future work.
MS Cloud Design Patterns Infographic 2015
This document provides an overview of common design patterns for cloud applications. It discusses patterns related to performance and scalability, security, resiliency, data management, messaging, management and monitoring, and availability. For each problem area, it summarizes example patterns that can help address related challenges, such as throttling to control resource usage, static content hosting to improve performance, and leader election to coordinate distributed tasks.
More Related Content
Similar to Oauth - Brief Introduction
Oauth and SharePoint 2013 Provider Hosted apps
A deep dive into Oauth and a look at provider hosted apps in SharePoint 2013, including how to host an app in Azure, but added to SharePoint
Who’s Knocking? Identity for APIs, Web and Mobile
This document discusses identity management for APIs, web, and mobile applications. It begins with an overview of trends in cloud computing and APIs. It then discusses how traditional network security is inadequate for these new architectures and that identity has become the new perimeter. The document outlines recommendations for an API identity strategy, including implementing OAuth 2.0 for authorization instead of passwords and leveraging an identity provider to apply enterprise security policies to cloud applications and APIs. It recommends architects design for interoperability across multiple devices, users, locations, and protocols.
SSO Manager
Overview of EmpowerID SSO Manager. SSO Manager enables single sign-on for corporate and cloud applications
SPCA2013 - It’s Me, and Here’s My ProofIdentity & Authentication in SharePoin...
This document provides an overview of identity and authentication in SharePoint 2013 and Office 365. It begins with a primer on authentication and authorization concepts. It then covers Windows authentication, trusted claims providers, service delegation between servers, and authorization for apps. It discusses the various identity management options for integrating on-premises Active Directory with Office 365 through options like online IDs, directory synchronization, and federation.
The “I” in API is for Identity (Nordic APIS April 2014)
The document discusses identity management standards for APIs, including OAuth 2.0, SAML, and OpenID Connect. It provides an overview of each standard, including how they work and examples of them in action. The document recommends either using SAML + OAuth 2.0 due to broad SAML adoption, or OpenID Connect as it is simpler, works across all clients, and uses OAuth access tokens. It also describes Ping Identity's solution for implementing these identity standards for APIs.
Identity soup
When it comes to identity and access management (IAM) for your application, it's good to warm-up with a good cup of identity protocol soup. Key ingredients include SAML, OAuth, OpenID and OpenID Connect. In this session, learn how developers create world-class private and public applications that are secure, mobile and can be easily provisioned -- all leveraging these standards-based protocols.
CIS 2015 Extreme OpenID Connect - John Bradley
This document discusses advanced features of OpenID Connect including:
- The use of Authorization Cross-Domain Code (ACDC) and Proof Key for Code Exchange (PKCE) to enable authentication flows for native mobile applications.
- How ACDC allows native apps to leverage an enterprise or social identity provider to obtain tokens without embedding credentials in the app.
- The concept of a Token Agent that performs authentication on behalf of other native apps to provide single sign-on capabilities.
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
Protiviti is a global consulting firm that helps large companies and government agencies solve problems in various areas including finance, technology, operations, and risk management. The document discusses how claims-based authentication and authorization works in SharePoint and its benefits over traditional permissions-based security. It provides an overview of configuring claims-based authentication with a trusted identity provider and customizing the claims process. Common customer scenarios where claims could provide more granular access control are also presented.
OAuth
OAuth 2.0 is an open standard for authorization that allows third-party applications to securely access private user data from APIs, without requiring the user to share their username and password. It specifies a process for users to authorize applications to access their data on other servers, issuing access tokens that applications can use to make API requests on the user's behalf. OAuth addresses issues with passwords by allowing temporary, limited access without exposing user credentials.
CIS13: Taking the Hyperspace Bypass: Controlling User Access to Other Worlds
Dale Olds, Senior Staff Engineer, VMware
If identity is the new perimeter, then users must be able to access applications anywhere: on premise, in the cloud or on partner sites. To enable this access we must take identity information into other worlds, and there is no Babel Fish. This session will explain how to enable access to distributed applications without making users feel like Marvin the Paranoid Android. We will cover topics like federated authentication, browser single sign-on and delegated authorization for cloud APIs. Standards in this area are essential, but SAML, OAuth2, SCIM and OpenID can sound like Vogon poetry. We'll touch on the standards, but keep the Vogon poetry to a minimum.
CIS13: Introduction to OAuth 2.0
This document provides an overview of OAuth 2.0 and how it addresses issues with the previous "password anti-pattern" approach to API authentication. It describes the key actors in OAuth - clients, authorization servers, and resource servers. It also summarizes the different flows for obtaining access tokens, common use cases for OAuth, and how OAuth compares to SAML for SSO and authorization.
Introduction to OAuth2
OAuth is an authorization framework that allows users to approve third-party access to private resources like files and profiles. It involves roles like resource owners, clients, authorization servers, and resource servers. Common grant types are authorization code and implicit grants, which allow clients to obtain authorization codes or tokens to access resources. An example flow shows a client obtaining a one-time authorization code from the authorization server, then exchanging it for an access token to use to access private user resources stored on the resource server.
Open Id, O Auth And Webservices
This document provides an overview of OpenID, OAuth, and web services for single sign-on and authorization. It describes how OpenID allows a user to log in to multiple websites using one identity and how OAuth allows websites to access user data from another site without needing the user's password. REST and SOAP web services approaches are also briefly discussed.
Integrando Azure AD B2C con Xamarin.Forms
This document discusses authentication and authorization approaches. It begins by describing simple login forms authentication, then discusses disadvantages of this approach like security and maintenance issues. It outlines earlier authentication scenarios like single sign-on. It introduces OAuth 2.0 terminology like resource owner, client, authorization server, and access token. It explains how OAuth 2.0 allows delegated authorization where a client like Yelp can access a user's data from a resource server like Google contacts with the user's permission. It diagrams the OAuth 2.0 authorization code flow. It also mentions other OAuth 2.0 terms like front channel, back channel. It discusses implementing these standards using Azure Active Directory, highlighting its capabilities and market adoption.
.NET MAUI + Azure AD B2C
The document discusses authentication, authorization, and login processes. It begins by describing a basic login form with username and password. It then covers the disadvantages of this approach and scenarios before 2010, noting that OAuth and OpenID Connect have become industry standards. The document explains key OAuth 2.0 terms and the authorization code flow process. It presents Azure Active Directory as a way to implement authentication standards, noting its large user base. The end discusses Azure AD use cases for access management, security, compliance, and mobile application management.
Practical Federated Identity
This document discusses practical use cases of federated identity in real world scenarios. It begins by defining identity and explaining problems with digital identity, such as having separate identities in different applications. It then introduces federated identity as a way to make identities portable across domains. Key requirements for federated identity include identity management, authentication, trust between domains, attribute mapping, and attribute exchange. Common protocols for federated identity include OpenID, SAML, and WS-Trust. The document provides examples of federated identity patterns using WSO2 Identity Server and discusses use cases such as a SaaS application with trusted identity providers.
[WSO2Con USA 2018] Identity APIs is the New Black
This slide deck discusses how identity APIs have evolved over time and real-world scenarios where tough identity challenges have been successfully tackled by using them.
Con8811 converged identity governance for speeding up business and reducing c...
The document discusses Oracle's converged identity governance solution. It addresses key business problems such as simplifying access management, maintaining compliance, and reducing fragmentation and costs. The solution provides a platform approach to identity governance, provisioning, access requests, policy management, and reporting. It aims to simplify access, reduce risk, and improve compliance. The presentation includes a customer panel discussion on their identity governance implementations.
Claim based authentaication
Claim based authentication provides a solution to common problems with user authentication across multiple websites. It allows an identity provider like Google or Facebook to authenticate a user and issue tokens containing claims like user details. Applications can then request specific claims from an identity provider through a selector. The identity provider signs the token and applications can verify the signature to trust the identity provider. This avoids the need for each application to implement its own authentication and allows users to reuse their login from an identity provider on multiple applications.
The New Venn of Access Control in the API-Mobile-IOT Era
Presentation from the 2014 IRM Summit in Phoenix, Arizona by Eve Maler, Principal Analyst Serving Security & Risk Professionals at Forrester.
Similar to Oauth - Brief Introduction (20)
SPCA2013 - It’s Me, and Here’s My ProofIdentity & Authentication in SharePoin...
SPCA2013 - It’s Me, and Here’s My ProofIdentity & Authentication in SharePoin...
The “I” in API is for Identity (Nordic APIS April 2014)
The “I” in API is for Identity (Nordic APIS April 2014)
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
How Claims is Changing the Way We Authenticate and Authorize in SharePoint
CIS13: Taking the Hyperspace Bypass: Controlling User Access to Other Worlds
CIS13: Taking the Hyperspace Bypass: Controlling User Access to Other Worlds
Con8811 converged identity governance for speeding up business and reducing c...
Con8811 converged identity governance for speeding up business and reducing c...
The New Venn of Access Control in the API-Mobile-IOT Era
The New Venn of Access Control in the API-Mobile-IOT Era
More from James Tramel
DevOps Kata Modern Debugging
Visual Studio provides integrated tools to support DevOps practices like continuous integration, delivery, deployment and monitoring across the development and production environments. It allows teams to plan, develop, test and release applications while optimizing resources, managing technical debt, and gaining insights from evidence in production to refine future work.
MS Cloud Design Patterns Infographic 2015
This document provides an overview of common design patterns for cloud applications. It discusses patterns related to performance and scalability, security, resiliency, data management, messaging, management and monitoring, and availability. For each problem area, it summarizes example patterns that can help address related challenges, such as throttling to control resource usage, static content hosting to improve performance, and leader election to coordinate distributed tasks.
Microsoft and DevOps
The document discusses key statistics related to DevOps practices and challenges. It finds that outperforming teams are 54% more likely to adopt DevOps. Adoption of DevOps is higher among developers than IT operations teams. The average hourly cost of infrastructure failure is $100,000 and it takes 200 minutes on average to diagnose and repair production issues. Bugs found later in the development cycle cost 100x more to fix than earlier bugs.
SharePoint 2013 Apps and the App Model
SharePoint 2013 Apps - deep dive. We'll look at they work, what they look like, what they do and how to us apps. Its all about the apps. Apps are good, very good.
Office 365 and SharePoint
A closer look at office 365 and specifically SharePoint online, one of four components of 365. From DNS to Security groups, branding to Metadata, Public to Private, BCS to UPS, admin console to user solutions, search to service apps, site collection management to user Management, quotas to storage – we’ll try to get through some of the nuances from what you might otherwise take for granted. Some things are the same, and some things are quite different from SharePoint 2010, primarily what you expect to be able to do, just might not be there. After migrating an ASP site and BPOS site to 365, he’s learned a lot of what’s in this talk the hard way.
Forefront UAG
Forefront 2010 Unified Access Gateway with SharePoint 2010 takes considerable planning and considerations depending on your topology. Here are a few things to note about it, and at least one way to do it. Specifically, we’ll look at some of the gotchas of putting the two products together in a basic remote/direct access, single sign-on methodology.
Information architecture in share point 2010
Planning a SharePoint implementation is very important, both from a financial/physical resource and knowledge management perspective. Knowing how to combine the most basic information elements into a design can help you implement a working product pragmatically and functionally, rather than blindly. We’ll discuss basic topology and planning of SharePoint 2010, as well as implementation.
Sharepoint and SQL Server 2012
The document discusses new features in SQL Server 2012 related to performance, business intelligence (BI), and disaster recovery (DR). It focuses on enhancements to the database engine, analysis services, and AlwaysOn availability groups which allow for high availability and failover clustering across multiple SQL Server instances. The presentation includes demos and discussions of columnstore indexes, partition support, and other tools to improve scalability and performance.
More from James Tramel (8)
Recently uploaded
Presentation of the OECD Artificial Intelligence Review of Germany
Consult the full report at https://www.oecd.org/digital/oecd-artificial-intelligence-review-of-germany-609808d6-en.htm
Fueling AI with Great Data with Airbyte Webinar
This talk will focus on how to collect data from a variety of sources, leveraging this data for RAG and other GenAI use cases, and finally charting your course to productionalization.
Best 20 SEO Techniques To Improve Website Visibility In SERP
Boost your website's visibility with proven SEO techniques! Our latest blog dives into essential strategies to enhance your online presence, increase traffic, and rank higher on search engines. From keyword optimization to quality content creation, learn how to make your site stand out in the crowded digital landscape. Discover actionable tips and expert insights to elevate your SEO game.
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
ABSTRACT: A prima vista, un mattoncino Lego e la backdoor XZ potrebbero avere in comune il fatto di essere entrambi blocchi di costruzione, o dipendenze di progetti creativi e software. La realtà è che un mattoncino Lego e il caso della backdoor XZ hanno molto di più di tutto ciò in comune.
Partecipate alla presentazione per immergervi in una storia di interoperabilità, standard e formati aperti, per poi discutere del ruolo importante che i contributori hanno in una comunità open source sostenibile.
BIO: Sostenitrice del software libero e dei formati standard e aperti. È stata un membro attivo dei progetti Fedora e openSUSE e ha co-fondato l'Associazione LibreItalia dove è stata coinvolta in diversi eventi, migrazioni e formazione relativi a LibreOffice. In precedenza ha lavorato a migrazioni e corsi di formazione su LibreOffice per diverse amministrazioni pubbliche e privati. Da gennaio 2020 lavora in SUSE come Software Release Engineer per Uyuni e SUSE Manager e quando non segue la sua passione per i computer e per Geeko coltiva la sua curiosità per l'astronomia (da cui deriva il suo nickname deneb_alpha).
20240605 QFM017 Machine Intelligence Reading List May 2024
Everything I found interesting about machines behaving intelligently during May 2024
Microsoft - Power Platform_G.Aspiotis.pdf
Revolutionizing Application Development
with AI-powered low-code, presentation by George Aspiotis, Sr. Partner Development Manager, Microsoft
Monitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift
Overview
Dive into the world of anomaly detection on edge devices with our comprehensive hands-on tutorial. This SlideShare presentation will guide you through the entire process, from data collection and model training to edge deployment and real-time monitoring. Perfect for those looking to implement robust anomaly detection systems on resource-constrained IoT/edge devices.
Key Topics Covered
1. Introduction to Anomaly Detection
- Understand the fundamentals of anomaly detection and its importance in identifying unusual behavior or failures in systems.
2. Understanding Edge (IoT)
- Learn about edge computing and IoT, and how they enable real-time data processing and decision-making at the source.
3. What is ArgoCD?
- Discover ArgoCD, a declarative, GitOps continuous delivery tool for Kubernetes, and its role in deploying applications on edge devices.
4. Deployment Using ArgoCD for Edge Devices
- Step-by-step guide on deploying anomaly detection models on edge devices using ArgoCD.
5. Introduction to Apache Kafka and S3
- Explore Apache Kafka for real-time data streaming and Amazon S3 for scalable storage solutions.
6. Viewing Kafka Messages in the Data Lake
- Learn how to view and analyze Kafka messages stored in a data lake for better insights.
7. What is Prometheus?
- Get to know Prometheus, an open-source monitoring and alerting toolkit, and its application in monitoring edge devices.
8. Monitoring Application Metrics with Prometheus
- Detailed instructions on setting up Prometheus to monitor the performance and health of your anomaly detection system.
9. What is Camel K?
- Introduction to Camel K, a lightweight integration framework built on Apache Camel, designed for Kubernetes.
10. Configuring Camel K Integrations for Data Pipelines
- Learn how to configure Camel K for seamless data pipeline integrations in your anomaly detection workflow.
11. What is a Jupyter Notebook?
- Overview of Jupyter Notebooks, an open-source web application for creating and sharing documents with live code, equations, visualizations, and narrative text.
12. Jupyter Notebooks with Code Examples
- Hands-on examples and code snippets in Jupyter Notebooks to help you implement and test anomaly detection models.
20240609 QFM020 Irresponsible AI Reading List May 2024
Everything I found interesting about the irresponsible use of machine intelligence in May 2024
AI-Powered Food Delivery Transforming App Development in Saudi Arabia.pdf
In this blog post, we'll delve into the intersection of AI and app development in Saudi Arabia, focusing on the food delivery sector. We'll explore how AI is revolutionizing the way Saudi consumers order food, how restaurants manage their operations, and how delivery partners navigate the bustling streets of cities like Riyadh, Jeddah, and Dammam. Through real-world case studies, we'll showcase how leading Saudi food delivery apps are leveraging AI to redefine convenience, personalization, and efficiency.
Climate Impact of Software Testing at Nordic Testing Days
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
OpenID AuthZEN Interop Read Out - Authorization
During Identiverse 2024 and EIC 2024, members of the OpenID AuthZEN WG got together and demoed their authorization endpoints conforming to the AuthZEN API
Uni Systems Copilot event_05062024_C.Vlachos.pdf
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for life science domain, where you retriever information from biomedical knowledge graphs using LLMs to increase the accuracy and performance of generated answers
Full-RAG: A modern architecture for hyper-personalization
Mike Del Balso, CEO & Co-Founder at Tecton, presents "Full RAG," a novel approach to AI recommendation systems, aiming to push beyond the limitations of traditional models through a deep integration of contextual insights and real-time data, leveraging the Retrieval-Augmented Generation architecture. This talk will outline Full RAG's potential to significantly enhance personalization, address engineering challenges such as data management and model training, and introduce data enrichment with reranking as a key solution. Attendees will gain crucial insights into the importance of hyperpersonalization in AI, the capabilities of Full RAG for advanced personalization, and strategies for managing complex data integrations for deploying cutting-edge AI solutions.
Essentials of Automations: The Art of Triggers and Actions in FME
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
Video Streaming: Then, Now, and in the Future
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Recently uploaded (20)
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
Best 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERP
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
20240605 QFM017 Machine Intelligence Reading List May 2024
20240605 QFM017 Machine Intelligence Reading List May 2024
Monitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift.pdf
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
AI-Powered Food Delivery Transforming App Development in Saudi Arabia.pdf
AI-Powered Food Delivery Transforming App Development in Saudi Arabia.pdf
Climate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing Days
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracy
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
Oauth - Brief Introduction
- 1. 1118 West Main Street Richmond, Virginia 23220 804.355.0511 ©2012 CapTech Ventures www.captechconsulting.com Tri-State SharePoint Auth in 2013 James Tramel December 11, 2012
- 2. ©2012 CapTech Ventures, Inc. All rights reserved. Agenda Intro 2013 Auth Authorization vs Authentication Oauth The Dance Basic Demo SharePoint Demo
- 3. ©2012 CapTech Ventures, Inc. All rights reserved. SP 2013 Auth Claims, Claims, Claims (Kerberos, SAML, Forms) • Classic is being deprecated (see InfoPath) • Convert-SpWebApplication • Distributed Cache Server to Server • Exchange, Lync App Authentication (App Model / App Catalog / CSOM) • Create apps that use Oauth, VS auto gen Client ID and client secret • App Permission Policies (User/App, App Only, User Only) Page 3
- 4. ©2012 CapTech Ventures, Inc. All rights reserved. Authentication vs Authorization Page 4 Authentication is the verification of the credentials of the connection attempt •Who is the user? •Is the user really who he/she represents himself to be? Authorization is the verification that the connection attempt is allowed •Is user X authorized to access resource R? •Is user X authorized to perform operation P? •Is user X authorized to perform operation P on resource R?
- 5. ©2012 CapTech Ventures, Inc. All rights reserved. Oauth • OAuth is an open standard for authorization • OAuth is not OpenID (authentication/digital ID) • Valet Key • Access Token • Scopes Page 5
- 6. ©2012 CapTech Ventures, Inc. All rights reserved. The Dance Page 6
- 7. ©2012 CapTech Ventures, Inc. All rights reserved. BCS Hybrid and Oauth – The Dance (Example) Page 7
- 8. ©2012 CapTech Ventures, Inc. All rights reserved. Demo Page 8
- 9. ©2012 CapTech Ventures, Inc. All rights reserved. SharePoint Demo Page 9
- 10. ©2012 CapTech Ventures, Inc. All rights reserved. References • Technet, MSDN, Wikipedia • Robert G Carter, Duke Uniersity OIT Page 10