Identity and Access Tool

Microsoft Free

Identity and Access Tool for Visual Studio 2012. Use this package to secure your application with claims based identity and accept users from multiple identity providers.

Microsoft
(30) Review
Visual Studio
2012
Download (52,927)
3/25/2013
1.1.0
View
E-mail Twitter del.icio.us Digg Facebook
Add to favorites
Description
Reviews (30)
Q and A (47)
Sign in to write a review
Sort by:

by Aaron [MVP] | January 10 2014

by Amsterdams | November 22 2013

I get this error
{"No version of the CardSpace service was found to be installed on the machine. Please install CardSpace and retry the operation."}


I was trying to implement this http://msdn.microsoft.com/en-us/library/jj161104.aspx

I have both 2012 and 2012 VS installed. Not sure if that is the problem

by Simerjot Kaur | October 11 2013

Unfortunately I have not been able to use the tool get which is very sorry since I really need such a tool. Even in a very simple scenario with a wcf service application and a windows console application when using the adfs it won’t work for me.

When executing the whole i always run into following exception:
{"No version of the CardSpace service was found to be installed on the machine. Please install CardSpace and retry the operation."}

by Vinny Jo | August 29 2013

Using ADFS 2.0. With Claims.... and Framework 4.5 (Mvc 4 project template)
Few issues:
The web.config produced contains issuerNameRegistry\authority and should be issuerNameRegistry\trustedIssuers (Framework 4.5)

the FederationMetadata.xml does not have any details about ds:Signature, KeyDescriptor, fed:ClaimTypesRequested. (can not specified certificate)

Tried Visual studio 2010 (Claim web project template) Add STS Reference option produced the right FederationMetada.xml.




by Mithun_daa | August 13 2013

I ran into the same issue as some of you here where the package was failing to load. Please make sure you close all instances of VS and restart it.

by ytr32323 | July 22 2013

by Srilatha Inavolu - MSFT | June 19 2013

Hi All,

Please run "devenv.exe /ResetSettings" if you have issues with VS loading the package.

If that doesn't work, please try the remaining steps in this post :
http://tinyurl.com/nx7bj4x

Hope this helps,
Sri.

by shriji1111 | June 05 2013

I found an error with this tool... it seems that it's bug
for more detail you may refer my microsoft forum page
http://social.msdn.microsoft.com/Forums/en-US/windowsazuredevelopment/thread/67d9f40a-1701-4b5a-9eb2-b2523f772dbe

by Quynh H. Nguyen | May 20 2013

by Vittorio Bertocci - MSFT | May 17 2013

Sorry to read that you are having issues with the tool and Update 2.
I have Update 2 on multiple machines and the tool works as expected. If you want us to help troubleshoot, I suggest you use the Q & A tab.

by rjygraham | May 16 2013

+1 for broken in Update 2. Still broken in Update 3 CTP even after an uninstall/reinstall.

by ggobbe | May 14 2013

Not working on visual studio 2012 update 2... The Identify and Access menu (to add an STS Reference) is missing.

by David Donabedian | May 12 2013

Not working with VS2012 Update 2

by Frank Robijn | May 11 2013

This type of extension is very welcome, but the current version is difficult to work with - it might not work at all. Tried to use it on a very simple WCF project, but it complains about a missing certificate. It tells you where to expect it (at C:\Users\...\AppData\Local\Microsoft\VisualStudio\11.0\Extensions\uv2jfeqz.qr2\LocalHost.pfx) and behold - that file exists! Unfortunately there is no information at all on how to solve this type of problem. It's a mess.

by Sergio Parra | April 27 2013

Thanks! nice job!

by Per Ekstedt | April 26 2013

Unfortunately I have not been able to use the tool get which is very sorry since I really need such a tool. Even in a very simple scenario with a wcf service application and a windows console application when using the local development STS it won’t work for me.

I can successfully configure the service application just clicking next and with SAML 2.0 chosen and it seems right even when I make a service reference in the console application to.

When executing the whole i always run into following exception:
{"No version of the CardSpace service was found to be installed on the machine. Please install CardSpace and retry the operation."}

Sometimes the LocalSTS don’t start but I get the error started or not.

Am I alone on this?

by _arash | April 07 2013

Thanks, it's great to see things are improving with identity tool

by Richard D | February 12 2013

The idea of the I&A tool is really great.

Unfortunately the software is very far from ready. Continiously there are errors, with no (or very fuzzy) error details to debug on.

This is not software you can rely your application on (not yet).

Microsoft is absent in the support.

by neoscoob | February 09 2013

The fact that this is not supported on Express editions is completely stupid.

by Brent Schmaltz - MSFT | February 04 2013

I haven't been able to repro the <system.ServiceModel> issue.

Andrey M_ have you seen it lately? Anyone else?

1 - 20 of 30 Items   
Sign in to start a discussion


  • Menu item not appearing in VS2012 Update 3 (with workaroud)
    1 Posts | Last post July 11, 2013
    • I've had problems getting the Identity and Access menu item to appear on VS2012 Update 3. I'm pretty sure I'd had it installed and working prior to applying Update 3.
      
      I've tried various things - uninstalling, reinstalling, as admin, logging, etc. Nothing helped.
      
      It looks to be installed ok. If go into the screen to customise the popup project menu, I can see the menu item there. But it just won't display when I right-click on the project.
      
      What has worked for me is to go into Options!Environment!Keyboard and assign a keyboard shortcut to the Identity and Access command.
      
      Pressing the newly created shortcut, triggers the wizard.
  • Error while load custom STS Federation Metadata
    3 Posts | Last post July 05, 2013
    • Hi,
      
      I am getting error while loading my custom STS Federation Metadata by using 'Identity and Access Tool'. This error is ID1116: MetaData download/parsing error, ID0011: There is no valid metadata document located 'path' at signature verification failed.
      
      Regards,
      Yasir
    • Hi Yasir,
      can you verify that your metadata document works correctly with other tools?
      thanks
      V.
    • I am getting a similar error.  Can you please let me know what "other tools" are?
      
      Thank,
      
      Eric
  • Any plans to support JWT in Local STS
    2 Posts | Last post July 03, 2013
    • Are there any plans to support the JWT (JSON web token) format in the Local Development STS? That's what we're using in production and it would make development easier if it were added to the tool.
    • Yes, it is pretty simple.
      JwtSecurityTokenHandler has GA'd and you can read about it here.  If you add it to the collection of security token handlers and set the token requested to JWT it should just work.
      
      http://www.cloudidentity.com/blog/2013/06/06/the-json-web-token-handler-for-net-4-5-reaches-ga/
      
      if you have any issues let me know.
      
      
  • VS2012 Update 2 & Update 3 CTP
    6 Posts | Last post June 20, 2013
    • Hi Vittorio, 
      
      As I mentioned in on Twitter, after applying Update 2 to my installation of VS2012 the Identity and Access menu disappears. Is there anything I can check to see why it is not showing up?
      
      Thanks,
      Ryan
    • Ryan, we are looking in the setup data you sent but for the time being there's nothing that stands out (apart from the fact that they refer to Update 3 CTP).
      The update 2 should have no effect on the tool setup, I am wondering if there is anything else at play. Can you please describe in details what verification flow are you using? What is the project that when opened before applying Update 2 was showing the IDA tool and now no longer shows it? 
    • Hey Vittorio,
      
      I was able to get some more information but I'm not sure if it'll help. On my work laptop with Update 2, I got this from the ActivityLog.xml after VS2012 told me there was an error:
      
      <entry>
          <record>531</record>
          <time>2013/06/10 19:56:19.673</time>
          <type>Error</type>
          <source>VisualStudio</source>
          <description>SetSite failed for package [IdentityAndAccessVSPackage]</description>
          <guid>{97E6CB8F-C650-43EA-A6F3-2B4A51ECC8D5}</guid>
          <hr>80004003 - E_POINTER</hr>
          <errorinfo>Object reference not set to an instance of an object.</errorinfo>
        </entry>
      
      IDA tool is not working for MVC nor WebForm sites.
      
      Sorry, it took so long to respond - I didn't get any notification saying that you responded to me.
      
      Thanks,
      Ryan
    • Ryan,
      
      Can you please double check if the tool is still installed under Tools -> Extensions and Updates ?
      
      Do you have WIF SDK installed on your machine ? If not, can you please install it and see if that makes a difference ?
      
      WIF SDK : http://www.microsoft.com/en-us/download/details.aspx?id=4451
      
      Thanks,
      Sri.
    • Ryan,
      
      Can you please try devenv.exe /ResetSettings ? If that doesn't work, please try the remaining steps mentioned in this post, http://social.msdn.microsoft.com/Forums/vstudio/en-US/fc763995-beed-4287-97de-6e47d3e87865/multiple-package-failures-on-load-of-ide ?
      
      Thanks,
      Sri.
    • OK, so I hate when this happens because it makes me uneasy, however the "Identity and Access..." started showing up again out of nowhere on my home machine.
      
      I'll try these steps on my work machine ASAP and report back.
      
      Thanks for looking into this and providing the suggestions above.
      
      Ryan
  • Stupid questions
    2 Posts | Last post June 18, 2013
    • Hi sorry for these questions, but it is unclear to me what is the difference between the following options when using the tool:
      
      1) Enter the APP ID URI (realm) of your application in the providers tab
      2) Enter the APP ID URI (realm) of your application in the configurations tab
      3) Enter the Audience Uri for your application in the configurations tab
      
      The second question is :
      In the provides tab in the option for 
      Enter the path to the STS metadata document: 
      should I put:
      https://localhost/MyApplication/FederationMedatada/2007-06/FederationMedatada.xml
      
      or
      
      C:\Projects\MyApplication\FederationMedatada\2007-06\FederationMetadada\FederationMetadada.xml
    • Hi Julio,
      
      Answer for First question : They are all the same with subtle differences in the usages.
      
       The APP ID URI (realm) in the providers tab is used to create/update the relying party application in ACS. 
      
       The APP ID URI (realm) in Configuration tab gets updated with the value that is entered in the Providers tab. It is used to update the realm attribute in the wsFederation element in web.config. 
      
       The Audience Uri is used to update the audienceUris element in web.config, the value of Audience Uri should be the same as the realm. 
      
      Answer for Second question : Either of the paths could be provided, just make sure that the PassiveRequestorEndpoint element in the FederationMetadata document is where the STS is actually listening at.
      
      Thanks,
      Sri.
  • Bug/ Error in the tool
    1 Posts | Last post June 05, 2013
    • I found an error with this tool... it seems that it's bug
      for more detail you may refer my microsoft forum page
      http://social.msdn.microsoft.com/Forums/en-US/windowsazuredevelopment/thread/67d9f40a-1701-4b5a-9eb2-b2523f772dbe
  • Creating an RP STS project binding to varoius STS
    1 Posts | Last post May 25, 2013
    • Hi, 
      how is possible to create an RP STS project in Visual Studio 2012, binding to various STS (Development STS for test, ADFS 2, and custom STS) ?
      I read on various forum and documentation but all refer to Visual Studio 2010.
      Is that still possible in VS 2012?
      Thanks
  • Local STS does not start when web-project is in solution folder
    2 Posts | Last post May 18, 2013
    • Hi,
      
      If I put the web-project in a solution folder the local STS will not start. It will only start if I put the web-project in the root of the solution. I like the local STS and want to use it but need to have the web-project in a solution folder so I just want to check if there is an update planned for this?
      
      See this for more info:
      
      http://stackoverflow.com/questions/14168774/wif-4-5-local-development-sts-not-running
      
      Thanks!
      
    • Hi Jonas,
      thanks for reporting this! For the time being I would suggest using the workaround mentioned in the stackoverflow thread.
  • Support for Visual Studio 2012 Express
    2 Posts | Last post May 18, 2013
    • Am I correct in believing that this tool does not support use with Visual Studio 2012 Express?
      
      Assuming this is true, any ideas for alternatives to allow MVC4 developed in Visual Studio 2012 Express to use Azure ACS.
    • Hi Mark,
      you are correct. Visual Studio Express does not directly support extensions.
      Without the tools, things are a bit convoluted. You can follow the instructions in http://www.windowsazure.com/en-us/develop/net/how-to-guides/access-control/ but create the web.config of your app manually. You can use the config in http://code.msdn.microsoft.com/Claims-Aware-MVC-523e079b as a starting point.
      Another alternative would be to get a trial of Visual Studio (http://www.microsoft.com/visualstudio/eng/downloads) and use the tool there to create the initial configuration. You can then work on the project in Express. 
      HTH
      V.
  • Error: The Calling thread must be STA, because many UI components require this.
    7 Posts | Last post February 22, 2013
    • After installing the Identity and Access tool v.1.0.2, and filling in the data I got this error message:
      
      The Calling thread must be STA, because many UI components require this.
      
      After clicking OK, the message pops up.
      
      Seems to me a bug in the tool. Can anyone help?
    • Some extra info:
      
      After deleting all the relying parties in the Azure Management Portal, I'm able to reconfigure again. The problems keeps returning though.
      
      Unfortunately the configuration works when deployed locally, but not when deployed to Azure (of course I've modified the Real, return URL and Audience URI) is doesn't work.
      
      After clicking on the button that should bring me to the login pages, the page appears, but the list of Identity Providers is empty. No error shown.
    • Richard, can you provide more details on what are you configuring in the tool, what project type you are using, what options are you enabling, and so on?
      Also: note that the tool does not do anything specific for Windows Azure, there are some steps you might need to take (like the ones you mentioned) in order for it to work when deployed in the cloud or in the emulator.
    • Hi Richard,
      responding here given that reviews don't offer a mechanism for doing so.
      Sorry for not having responded on this thread right away. This is the right place for discussing the tool.
      However I would like to understand what you meant with "Blogs entries on http://blogs.msdn.com/b/vbertocci/ simply disappaer." 
      That's my personal blog, and I can assure you I never deleted any blog post :-)
    • And lo. It was AVG antivirus
      
      For some reason the combination of AVG and Identity and Access addin causes this issue. 
      
      I have tried disabling various components of AVG but it seems that the only solution is to disable it entirely. 
      
      So given that, who can recommend an AV that won't intefere with development activities?
      
      
      
      Thanks for trying to help. 
    • Sorry, replied to wrong one. }:8)
    • I'm using a MVC 4 application targeting .NET 4.5 framework.
      
      - I use Windows Live & Google as IP
      - Azure Access Control Service as STS
      
      Goal: I want to generate a controller to handle the authentication (as described on Vittorio's blog http://blogs.msdn.com/b/vbertocci/archive/2012/10/23/windows-identity-foundation-tools-for-visual-studio-2012-rtm.aspx 
      
      Hopes this clarifies my case.
11 - 20 of 47 Items