{"id":745,"date":"2007-04-05T20:51:26","date_gmt":"2007-04-06T04:51:26","guid":{"rendered":"\/?p=745"},"modified":"2007-04-05T21:50:13","modified_gmt":"2007-04-06T05:50:13","slug":"cobblers-children","status":"publish","type":"post","link":"https:\/\/www.identityblog.com\/?p=745","title":{"rendered":"Cobbler&#39;s children"},"content":{"rendered":"<p>Here&#39;s an &#8220;ouch that hurts&#8221; <a href=\"http:\/\/jacksonshaw.blogspot.com\/2007\/03\/cobblers-children.html\">posting <\/a>by Jackson Shaw at Quest:<\/p>\n<p style=\"margin-left: 30px\">I received this email today regarding my identity partner&#39;s account that I have at Microsoft. Isn&#39;t it unfortunate that given Active Directory Federation Services (ADFS) and CardSpace that I have to do this?<\/p>\n<p style=\"margin-left: 60px\">Shaw, Jackson, The password for the extranet account issued to <em>blah<\/em>\\JShaw will expire on Mar 15 2007. Please proceed to the following URL to change the password: <a href=\"https:\/\/home.ep.microsoft.com\/login.aspx\" class=\"broken_link\"><font color=\"#6699cc\">https:\/\/Home.EP.Microsoft.com\/login.aspx<\/font><\/a><\/p>\n<p style=\"margin-left: 60px\">NOTE: Failure to change the password before the expiration date will result in the account being locked and access will no longer be provided.<\/p>\n<p style=\"margin-left: 60px\">Thank you, The Extranet Management Tool Team<\/p>\n<p style=\"margin-left: 60px\">For assistance, please contact your administrator, site owner or support team.<\/p>\n<p style=\"margin-left: 30px\">I have zero time to figure out who my administrator, site owner or support team is.<\/p>\n<p style=\"margin-left: 30px\">I do know my Quest userid and password and wouldn&#39;t it be nice if that just worked??<\/p>\n<p>Jackson&nbsp;is&nbsp;right.&nbsp; Everything about this is bizarre.&nbsp; I too love those &#8220;contact your administrator&#8221; messages &#8211; best of all, when I&#39;m the administrator, but in all other cases too.&nbsp;<\/p>\n<p>Anyway, we are now&nbsp;getting close to the point where&nbsp;Microsoft&nbsp;marketing and other sites will start to light up.<\/p>\n<p>With the sheer number of sites we have, and the attacks on our perimeter, our IT guys have to go about this in&nbsp;an organized way.&nbsp; I spoke with Microsoft&#39;s internal IT security architects not&nbsp;long ago and&nbsp;was amazed at&nbsp;how well they have thought through the implications of&nbsp;the claims-based approach, privacy issues,&nbsp;uses for&nbsp;CardSpace, and so on.&nbsp;<\/p>\n<p>Meanwhile a lot of our&nbsp;sites are&nbsp;tied to Windows Live ID, so when it&nbsp;turns on Information Card support,&nbsp;the benefits&nbsp;should&nbsp;start to be widely&nbsp;felt.<\/p>\n<p>Today <a href=\"http:\/\/jacksonshaw.blogspot.com\/2007\/04\/seven-laws-of-identity-in-nutshell.html\">Jackson did a piece <\/a>outlining the <a href=\"http:\/\/jacksonshaw.blogspot.com\/2007\/04\/seven-laws-of-identity-in-nutshell.html\">Laws of Identity<\/a>&nbsp;and &nbsp;concludes:<\/p>\n<p style=\"margin-left: 30px\">I installed WinFX the other night on my Windows XP system and created my own Information Cards and then used one to logon to <a href=\"https:\/\/www.identityblog.com\/\"><font color=\"#6699cc\">Kim&#39;s blog<\/font><\/a> &#8211; it worked! <em>[He&#39;s so surprised? &#8211; Kim]<\/em><\/p>\n<p style=\"margin-left: 30px\">Now if I could a Quest property or two to accept either OpenIDs or InfoCards&#8230;<\/p>\n<p>Hey,&nbsp;Jackson&nbsp;&#8211; let&#39;s get some live company-to-company&nbsp;interaction&nbsp;happening with the technologies we all&nbsp;want to introduce.&nbsp; Why don&#39;t we approach the Extranet Management issue from both ends &#8211; you from the quest end, me from this end?&nbsp; Maybe others would want to jump on as well&#8230; The proof of the shoe is in the walking.<\/p>\n<p>P.S.&nbsp; Why don&#39;t you talk with <a href=\"http:\/\/pamelaproject.com\/\">Pamela<\/a> about getting onto blogging software that accepts Information Cards too?&nbsp; Mike Jones <a href=\"\/?p=742\">has done it<\/a>.<\/p>\n<p>UPDATE: <a href=\"http:\/\/www.microsoft.com\/technet\/technetmag\/issues\/2007\/04\/InsideMSCOM\/default.aspx\">Here is a posting <\/a>on our progress in getting ADFS (Federation Services) going on our extranet, so the collaboration proposed above should be &#8220;way simple&#8221;.&nbsp; And it&#39;s <a href=\"\/?p=745\">good to see<\/a> that Brian Puhl not only listened to your original comment&nbsp;but did so much to move things ahead.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>I installed WinFX the other night on my Windows XP system and created my own Information Cards and then used one to logon to Kim&#39;s blog &#8211; it worked! <\/p>\n","protected":false},"author":68,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[10,8,5,4],"tags":[],"_links":{"self":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/745"}],"collection":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/users\/68"}],"replies":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=745"}],"version-history":[{"count":0,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/745\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=745"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=745"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=745"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}