NIST just released 2 draft documents on Cloud Security
Guidelines on Security and Privacy in Public Cloud Computing: SP 800-144 (DRAFT)
http://csrc.nist.gov/publications/drafts/800-144/Draft-SP-800-144_cloud-computing.pdf
NIST Definition of Cloud Computing: SP 800-145 (DRAFT)
http://csrc.nist.gov/publications/drafts/800-145/Draft-SP-800-145_cloud-definition.pdf
This video demonstration shows how to use FIM 2010 Certificate Management to request and issue an SSL certificate. The solution shown in this demo is created to satisfy the following requirements:
- SSL certificates must be approved by RA Manager.
- Simplify the enrollment process and remove guessing from the subscriber.
- Certificate Subject name must be in Geopolitical format, such as: cn=hostname, ou=devices, o=adatum, c=us
- SubjectAltName extension must have actual name(s) for the URL the cert will be used for.
- SubjectAltName must also include subscriber e-mail address.
Please watch this video in Full screen and in HD for higher quality and better user experience. Let me know if you have any questions.
If you would like to know how to build solution shown in this demonstration then stay tuned, because I’m going to show you in step-step video demonstration how to do just that.
Who said that implementing PKI is hard? The following one hour video demonstration shows how to implement the most common PKI solution – two tier PKI with Root CA and Subordinate Issuing CA. I’ll discuss the design and why it is done this way, discuss best settings for PKI implementation and show how to do it, step—by-step. After watching this video you will be able to do the same. This video is in High Definition, so you can through it on big screen if you like and watch in all glory details. You can forward and pause, rewind and watch it all over as long as you like.
Here is the basic flow of this video demonstration:
- Discuss two-tier PKI design.
- Show how to install Root CA.
- Perform post installation configuration on the Root CA.
- Perform pre installation tasks on the Issuing CA.
- Show how to install Issuing CA.
- Sign Issuing CA cert at the Root CA.
- Perform post installation configuration on the Issuing CA.
- Verify that our solution is healthy.
- Issue Domain Controller Certificate via auto-enrollment.
Stay tuned for future video demonstrations, I’m putting together demonstration on how to implement FIM 2010 Certificate Management solution and use it to issue SSL certificates with management approval workflow.
This video demonstration is another installment in the “Implementing FIM 2010”. It shows how to configure a Management Agent (MA) for joining and then do some breadcrumb of the dirty data. You can watch all video demonstration in the “Implementing FIM 2010” by going to my “Implementing FIM 2010” video channel.
Please watch this video in Full screen and in HD for higher quality and better user experience. Let me know if you have any questions.
This is a the second lab from the Implementing Forefront Identity Manager 2010 training. Before watching this demonstration it might be helpful to watch prior demonstrations, but not required.
In this demonstration we are going to perform the following tasks:
- Connect to an HR data source and import identity data
- Create an MA to connect to the HR SQL database
- Create and Run Some Profiles
- Examine the Metaverse
- Search the metaverse and establish that the data has been projected
- Create a search filter clause
- Select which Columns to see
- View the Search Results
- Index the employeeID attribute
- Importing Changes
- Modify the HR Data and import it into FIM
Please watch this video in Full screen and in HD for higher quality and better user experience. Let me know if you have any questions.
This is a continuation of the first lab from the Implementing Forefront Identity Manager 2010 training. Before watching this demonstration it might be helpful to watch the prior two demonstrations, but not required.
In this demonstration we are going to perform the following tasks:
- Log on to Windows as a Contractor employee and reset his password via FIM 2010 Password management
- Use Microsoft Office Outlook 2007 to join a group and edit personal details
- Log on as HR employee and see how different permissions being applied
Please watch this video in Full screen and in HD for higher quality and better user experience. Let me know if you have any questions.
This is a continuation of the first lab from the Implementing Forefront Identity Manager 2010 training. You can watch the first part of the lab here.
In this demonstration we are going to perform the following tasks:
- Add new users and examine group memberships
- Add full-time employee
- Add a contractor
- Examine how groups are managed
- Criteria-based groups
- Manager-based groups
- Manual groups
Please watch this video in Full screen and in HD for higher quality and better user experience. Let me know if you have any questions.
Here is the recording of the first lab exercise from the Implementing Forefront Identity Manager 2010 training.
In this exercise we are going to edit user identity data and observe the effect on other connected systems.
Please watch this video in Full screen and in HD for higher quality and better user experience. Let me know if you have any questions.
Security and Identity in the Cloud 