Mitigate Phishing Attacks
What is a Phishing attack? What can organizations do to prevent phishing attacks? How does EvilJinx and FIDO come into play?
Jan. 15, 2024
What is a Phishing attack? What can organizations do to prevent phishing attacks? How does EvilJinx and FIDO come into play?
Jan. 15, 2024
When discussing security, we often divide it into two parts: authentication and authorization. So, what's the difference between the two? When should I be using a claim, and why shouldn't i use it to drive policy?
Nov. 23, 2023
Enforcer 3.0 makes it even easier to develop and maintain authorization policy written in ALFA. The 3.0 release enhances the IDE experience, providing tools such as rename, goto definition and find all references
Sep. 05, 2023
Do you want to create a Single Sign-On (SSO) solution based on Duende IdentityServer? Do you want a management UI for managing users and IdentityServer configuration? Then look no further; our Duende IdentityServer & AdminUI code template will have you up and running in less than 15 minutes.
Aug. 28, 2023
At first glance SMS sounds like a reasonable technology for password reset. However, it's far from it.
Aug. 22, 2023
It is important to consider the potential risks associated with using email as a form of two-factor authentication. It may be worth exploring alternative options that offer increased security.
Jun. 27, 2023
Discover the Dynamic Authentication Providers feature for AdminUI, including its functionality and a video demonstration.
May. 02, 2023
Since its inception, AdminUI has been an application requiring no development effort to get it running. However, it is not as flexible as some of our customers require. So let's fix that!
Feb. 28, 2023
As of January 2023, Rock Solid Knowledge is proud to announce that we are a Certified B -Corporation™. B Corp questions assess every aspect of your organisation - from the environment to governance to how we treat our workers and customers.
Feb. 22, 2023
Client-Initiated Backchannel Authentication (CIBA) is a new OpenID Connect specification that describes decoupled authentication flows. This article describes how to implement a CIBA flow inside Duende IdentityServer.
Nov. 16, 2022
IdentityServer4 will no longer be supported from 13th December 2022. We outline our product-specific support and migration steps to Duende IdentityServer
Nov. 04, 2022
Are you looking to support WS-Federation clients into your IdentityServer? If so, this tutorial will help you implement a cross-protocol SSO.
Oct. 11, 2022
AdminUI now supports custom identity implementations for users with their own identity schemas or extensions of the ASP.NET Identity schema.
Sep. 21, 2022
Creating a secure login experience that defends against password stuffing and spraying can lead to an unpleasant user experience. Using Risk-Based Authentication allows you to adapt the login experience based on the current threat level, resulting in a secure and, more often than not, pleasant user experience.
Aug. 18, 2022
IdentityServer uses a persisted grants table to store reference and refresh tokens. Clean-up code needs to be run periodically to remove expired tokens. The built-in functionality works for small/medium usage, but alternative approaches should be considered for high usage. This article outlines an alternative approach using a SQL stored procedure.
Aug. 15, 2022
Are you looking to support SAML clients or external SAML identity providers in your IdentityServer? If so, this tutorial will help you implement a cross-protocol SSO.
Jul. 29, 2022
To align AdminUI and Duende IdentityServer licensing, newly purchased copies of AdminUI come with a lower cost annual license
Apr. 04, 2022
This article will build upon your existing OAuth knowledge to learn about Open Banking’s architecture, its new acronyms, and what implementation is the best fit for you.
Mar. 08, 2022
Rsk.Saml v5 includes new features, improvements and breaking changes. Such as support for .NET 6, Duende IdentityServer v6 and HTTP Artifact binding.
Feb. 08, 2022
Duende IdentityServer (IDS) 6 was released earlier this year – our products continue to support the framework in its latest update.
Feb. 07, 2022
SAML implementations typically exchange sensitive user data via the browser. This considerably increases the attack surface of your Single Sign-On (SSO) solution. Luckily, SAML offers an alternative mechanism called HTTP Artifact binding that allows protocol messages to be transported more securely.
Nov. 18, 2021
If you are new to SSO, the learning curve can appear quite daunting; not only do you have to change the way your applications perform authentication, you also need to configure and deploy the single sign-on server. Our All in one solution gets you started in minutes.
Sep. 01, 2021
AdminUI has recently been made available as a universal project, meaning we now support a Linux installation scenario rather than recommending Docker as a multiplatform approach. This article will go through the steps needed to get AdminUI up and running on Linux.
Jun. 24, 2021
Microservices is a common architectural pattern, but how best to integrate it with Attribute Based Access Control (ABAC).
Mar. 05, 2021
Our products and services for IdentityServer are loved by so many. Here are just a few...
We are proud to be a Certified B Corporation, meeting the highest standards of social and environmental impact.