New book: Modern Authentication with Azure Active Directory for Web Applications

We’re pleased to announce the availability of Modern Authentication with Azure Active Directory for Web Applications (ISBN 9780735696945), by Vittorio Bertocci.

Purchase from these online retailers:
Microsoft Press Store
Barnes & Noble
Independent booksellers – Shop local

Build advanced authentication solutions for any cloud or web environment

Active Directory has been transformed to reflect the cloud revolution, modern protocols, and today’s newest SaaS paradigms. This is an authoritative, deep-dive guide to building Active Directory authentication solutions for these new environments. Author Vittorio Bertocci drove these technologies from initial concept to general availability, playing key roles in everything from technical design to documentation. In this book, he delivers comprehensive guidance for building complete solutions. For each app type, Bertocci presents high-level scenarios and quick implementation steps, illuminates key concepts in greater depth, and helps you refine your solution to improve performance and reliability. He helps you make sense of highly abstract architectural diagrams and nitty-gritty protocol and implementation details. This is the book for people motivated to become experts.

Active Directory Program Manager Vittorio Bertocci shows you how to:

  • Address authentication challenges in the cloud or on-premises
  • Systematically protect apps with Azure AD and AD Federation Services
  • Power sign-in flows with OpenID Connect, Azure AD, and AD libraries
  • Make the most of OpenID Connect’s middleware and supporting classes
  • Work with the Azure AD representation of apps and their relationships
  • Provide fine-grained app access control via roles, groups, and permissions
  • Consume and expose Web APIs protected by Azure AD
  • Understand new authentication protocols without reading complex spec documents

About This Book

  • For architects, application designers, developer leads, and security consultants involved in authentication, access control, or personalization
  • For security and protocol experts who want to understand how Azure AD uses open protocols to perform its functions
  • For web developers and users of ASP.NET OWIN and the Active Directory Authentication Library (ADAL)

About the author

Vittorio Bertocci is a Microsoft Principal Program Manager responsible for developer experience related to identity services, both on premises and in the cloud. As Architect Evangelist at Microsoft, he spent several years helping major enterprises build advanced identity solutions based on new Microsoft technologies. He frequently speaks at international events such as TechEd, PDC, Build, and Ignite, and he blogs on identity topics at His books include Programming Windows Identity Foundation.