Re: Fine-grained Entitlement Management in SOA Microsoft Environme

Thanks Steve, we'll look into it...
Olly.
--
Application Solutions Architect
Racing & Wagering Western Australia


"Steve Riley [MSFT]" wrote:

Have you checked out Authorization Manager in Windows Server 2003? This
might be what you need. Other than its existence, I'm not familiar with
this, though (the developer side of security isn't my expertise). So check
out the resources below.

http://technet2.microsoft.com/WindowsServer/en/Library/72b55950-86cc-4c7f-8fbf-3063276cd0b61033.mspx?mfr=true
http://msdn2.microsoft.com/en-us/library/Aa480244.aspx

--
Steve Riley
steve.riley@xxxxxxxxxxxxx
http://blogs.technet.com/steriley
http://www.protectyourwindowsnetwork.com


"Olly Speed" <OllySpeed@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:8A705A43-87A8-480C-9150-DED23CBE1D7A@xxxxxxxxxxxxxxxx
Hi,

We are looking for is a way to do XACML-based fine-grained Entitlement
Mangement. We have been looking at a number of products from providers,
and
are wondering if Microsoft have such an enterprise product, or if
constructing one ourselves in-house is an achievable thing to do. It would
be
a bonus if such a solution was accessible from Unix applications as well,
but
this is a "nice to have".

We would like to have a single enterprise solution that can link to Active
Directory on the back-end, and allow us to check that a particular user
(via
the group they are attached to) has got the privilige to access certain
web
services/methods, or business processes, or functions within our
home-grown
C# applications. It will also need to prevent calls from non-Production
environments accessing Production services.

We currently have some SOAP Web Services, and are at the beginning of a
process of rewriting all of our VB6 distributed n-tier applications into
C#.
NB: We currently code in VS 2005 on XP, and our servers are W2003.

Many thanks,
--
Application Solutions Architect
Racing & Wagering Western Australia


.