Galin Iliev's blog

NenoLoje wrote:

Seriously, there a lots of applications that implement their own user & role administration and permission concept.

What many of them do not know is there is a ready-to-use-solution - called Authorization Manager (short: AzMan) - by Microsoft that allows you to provide Role-Based Access and Control of your applications and providing a greater degree of flexibility to the IT staff running it.

• Role-Based Access Control Using Windows Server 2003 Authorization Manager
• Use Role-Based Security in Your Middle Tier .NET Apps with Authorization Manager
• How To: Use Authorization Manager (AzMan) with ASP.NET 2.0 (by Microsoft Patterns & Practices)
• MSDN Architecture Webcast: Authorization Manager from the Developer Perspective (Level 200)
• Download: Windows Server 2003 Service Pack 1 Administration Tools Pack

Don't reinvent the wheel every time - especially in the case of security / identity / authentication - systems!

Thanks Neno, This is great info