Federated Identity How-To (Windows Live Domains or Google Apps)

by on Jun 3, 2008 | 2 comments

Note: This is a seriously techy article – but very useful to those that need this type of information.

Question: What is a federated identity?

Answer: Wikipedia describes it as “the process of a user’s authentication across multiple IT systems or even organizations.”

The layman’s answer: It’s the thing that allows you to use your domain e-mail login with a chat service (Google Talk or Windows Live Messenger depending on what service you have.)

If you use Google Apps or Windows Live Domains, you’ve probably gotten everything to work except the fact you can’t chat – but you really want to.

The problem is that your host provider doesn’t allow it.

Why is this?

It’s a technical limitation due to the fact the host provider doesn’t allow customers to manually edit SRV records.

Control panel software (like H-Sphere) hasn’t progressed to the point where SRV record editing is the norm. More often than not you’ll see it as a “feature request” in the forums for that particular software.

Is there anything you can do NOW to get chat with Google Talk or Windows Live Messenger working?

Absolutely. Use an alternate DNS provider that does have SRV record editing ability.

In my recent switch to Windows Live Domains I really wanted to get the chat working with the messenger software. After scouring ’round the internet, I found that by using an alternate DNS provide you can do the following:

  1. Keep your existing web host provider. No need to switch.
  2. Get more control over everything. “A” records, “CNAME”, “SRV”, “MX”, “AAAA” and more. You’ll get control over stuff you probably didn’t have prior with your DNS.
  3. Do the above for free.

The DNS provider I use is EditDNS.

If you use Google Apps, you’re in luck because these guys have some auto-configure options that will completely set up everything for Google Apps automatically. The MX servers, CNAME and of course the all-important SRV for Google Talk ability.

If you use Windows Live Domains there is no automatic option, however it’s relatively easy to do.

This is what EditDNS looks like in the admin interface:

image

(Note: I’m using my personal domain as an example.)

As you can see, all the bases are covered. The As, CNAMEs, MX, NS (name servers), the TXT for SPF and the SRV.

Once finished, you login to your registrar, switch over the DNS servers and 12 to 48 hours later, ta-da.. you’re off to the races.

Yes, I’ve done this myself. It does work and works well.

Special note for Google Apps users: Google uses A TON of servers. To use their e-mail service for your domain requires 7 MX entries. I’m not kidding. It is highly recommended you read this forum thread to get up to speed before taking the plunge.

Free eBook!

Like what you read?

If so, please join over 28,000 people who receive our exclusive weekly newsletter and computer tips, and get FREE COPIES of 5 eBooks we created, as our gift to you for subscribing. Just enter your name and email below:

Post A Comment Using Facebook

  • David Bullock

    Incidentally, Dreamhost does have manual SRV record editing in their control panel, AND they have one-click integration with Google Apps for your Domain as well.

    • http://www.menga.net Rich Menga

      I wish I could post a “master list” of sorts stating which web host providers (like Dreamhost) offer SRV record editing and which do not. It sure would make it a whole lot easier to pick one. :-)

      Thanks for the info about DH, much appreciated. Hopefully more web host providers will follow suit and offer the same ability.

What’s Your Preference?

Daily Alerts

Each day we send out a quick email to thousands of PCMECH readers to notify them of new posts. This email is just a short, plain email with titles and links to our latest posts. You can unsubscribe from this service at any time.

You can subscribe to it by leaving your email address in the following field and confirming your subscription when you get an email asking you to do so.

Enter your email address for
Daily Updates:

Weekly Newsletter

Running for over 6 years, the PCMECH weekly newsletter helps you keep tabs on the world of tech. Each issue includes news bits, an article, an exclusive rant as well as a download of the week. This newsletter is subscribed to by over 28,000 readers (many who also subscribe to the other option) - come join the community!

To subscribe to this weekly newsletter simply add your email address to the following field and then follow the confirmation prompts. You will be able to unsubscribe at any time.

Enter your email address for
Free Weekly Newsletter: