Re: Fine-grained Entitlement Management in SOA Microsoft Environment

You could probably build something around AzMan. That wouldn't work with your UNIX apps though. Have you looked at Securent? It's Java-based but you can write to it with Microsoft code. It'll support Microsoft stuff like MOSS, SQL, and custom apps. It'll also support your UNIX apps. For full disclosure, I haven't implemented Securent because we haven't had the right customer yet. I think it'll do everything you want though.

"Olly Speed" <OllySpeed@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:8A705A43-87A8-480C-9150-DED23CBE1D7A@xxxxxxxxxxxxxxxx
Hi,

We are looking for is a way to do XACML-based fine-grained Entitlement
Mangement. We have been looking at a number of products from providers, and
are wondering if Microsoft have such an enterprise product, or if
constructing one ourselves in-house is an achievable thing to do. It would be
a bonus if such a solution was accessible from Unix applications as well, but
this is a "nice to have".

We would like to have a single enterprise solution that can link to Active
Directory on the back-end, and allow us to check that a particular user (via
the group they are attached to) has got the privilige to access certain web
services/methods, or business processes, or functions within our home-grown
C# applications. It will also need to prevent calls from non-Production
environments accessing Production services.

We currently have some SOAP Web Services, and are at the beginning of a
process of rewriting all of our VB6 distributed n-tier applications into C#.
NB: We currently code in VS 2005 on XP, and our servers are W2003.

Many thanks,
--
Application Solutions Architect
Racing & Wagering Western Australia

.