Dynamic Access Control within Windows Server 8

    

As of now, the expected release date for Windows Server 8 is between Q3 2012 and early 2013. Our Directory & Messaging team at Rutter is excited for the introduction and the opportunities it will bring. One of the most anticipated features of this new edition of the Windows server is the injection of claims-based access control. For marketing purposes, this role has been branded as “Dynamic Access Control."

Before Windows Server 8, claims-based authentication was only recently prevalent with implementations of Active Directory Federation Services (ADFS) for SharePoint or Office 365. A claim is an assertion about an object, issued by a trusted identity provider. Now with a Windows Server 8 Directory, claim information can be injected into the Kerberos token. By doing so, claims can travel with the user’s security token.

Leveraging these claims, the Windows 8 directory allows for the creation of “Central Access Policies”. Using the Active Directory Administrative Center, policies can be setup to define access conditions for users and device claims. From these claims NTFS tags can be applied to files or Windows Server 8 file servers. So now centralized policies can be applied automatically to determine access to files by multiple criteria, such as department association, domain managed (authenticated workstation), etc.

For more information please contact us at info@rutter-net.com

The original presentation of this feature can be found below:
Video Presentation

Visit the Rutter Networking Website

Comments