Subscribe: Alex Tcherniakhovski - Security
http://blogs.msdn.com/alextch/rss.aspx
Preview: Alex Tcherniakhovski - Security

Alex Tcherniakhovski – Security





Last Build Date: Mon, 20 Jul 2015 15:50:01 +0000

 



Using PostSharp in FIM Synchronization rules to reduce code complexity, and improve readability.

Thu, 02 Aug 2012 08:59:00 +0000

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm Maintainability of FIM Sync rules is probably one of the most often raised issues by the customers, especially when the rules were developed by someone else. For this reason,...



Programmatically confirming projection and join operation in FIM Synchronization Service during integration testing

Wed, 18 Jul 2012 11:34:00 +0000

  The objective of this blog is to provide FIM Synchronization Service integration testers with tools to automate validation of projection and join operations.   This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm Integration testing Pattern FIM...



Testing with Entity Framework dbContext, and NoTracking option

Mon, 09 Jul 2012 07:19:27 +0000

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm During unit or integration tests, which involve database modifications, the following pattern is often utilized - var preChangeIntroducedValue = GetValueFromDB(); // introduce change var postChangeIntoroducedValue = GetValueFromDB(); // Assert...



Sample C# code to invoke execution of a run profile on Forefront Identity Server Synchronization Service

Fri, 06 Jul 2012 07:04:09 +0000

During integration testing of FIM Synchronization Service it is often useful to programmatically invoke run profiles of FIM Sync Service, and later query the Metaverse and/or Connector spaces for the results of the run to validate proper rule execution. The sample below shows how to programmatically invoke run profiles. Note that profiles run synchronously.  ...



How to set Active Directory Password from Java application

Tue, 15 May 2012 07:46:57 +0000

  This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm Business Scenario Many Java applications now utilize Active Directory as a source of authentication, in some situations it may be required to set Active Directory password from within...



Sample C# code to create SHA1 Salted (SSHA) password hashes for OpenLDAP

Sat, 12 May 2012 07:36:32 +0000

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm   Since SSHA (Salted SHA1) is now most commonly used in storing password hashes in OpenLDAP, folks who need to create accounts on this system from .NET (ex. Forefront...



Sample code to query OpenLDAP directory via .NET System.DirectoryServices.Protocols

Mon, 07 May 2012 07:00:22 +0000

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm The sample code below provides a helper class, which performs a paged search against an LDAP directory. I tested this code against OpenLDAP 2.4.31. The code is based on...



Configuring OpenLDAP pass-through authentication to Active Directory

Wed, 25 Apr 2012 18:25:47 +0000

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm From OpenLDAP 2.4 Administration guide, “Since OpenLDAP 2.0 slapd has had the ability to delegate password verification to a separate process. This uses the sasl_checkpass function so it can...



Detecting cross-nested groups in Active Directory with SSIS and SQL

Thu, 12 Apr 2012 09:47:53 +0000

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm Cross-nested groups, in my definition, constitute a scenario where GroupA is nested into GroupB, and GroupB is nested into GroupA (GroupA <-> GroupB). Why would you consider detecting this...



Debuggin ASP.NET application in IIS – building development environment

Fri, 23 Mar 2012 13:56:00 +0000

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm When you application is deployed into production it will be probably accessed like this http://myapp.mycompnay.com. It will also be subjected to various IIS configuration settings: authentication, authorization, custom routing,...