Azure Active Directory

Similar documents
Microsoft Enterprise Mobility Suite

Azure Active Directory

Creating a Single Sign on Web Portal using Azure. Robert Crane Office 365

Ondřej Výšek Sales Lead, Microsoft MVP.

Bill Fiddes Learning and Development Specialist Rob Latino Program Manager in Office 365 Support

SINGLE & SAME SIGN-ON ASPECTS

Webinar Self-service in Microsoft Azure AD Premium

Identity + Mobile Management + Security = Enterprise Mobility Suite

Enterprise Mobility Suite (EMS) Sean Lewis Principal Partner Technology Strategist

Overview of Microsoft Enterprise Mobility Suite (EMS) Cloud University

Enterprise Mobility Services

Microsoft Enterprise Mobility Suite

Agenda. Enterprise challenges. Hybrid identity. Mobile device management. Data protection. Offering details

Planning your Microsoft Application Strategy in a Cloud Crazy World. Steve Soper Senior Managing Partner

Enterprise Mobility Suite Overview. Joe Kuster Catapult Systems

Technology Day 2015 Xylos

Centrify Cloud Connector Deployment Guide

Hybrid Cloud Identity and Access Management Challenges

LICENSTJEK OUTSOURCING

Agenda. Federation using ADFS and Extensibility options. Office 365 Identity overview. Federation and Synchronization

Identity and Access Management for the Hybrid Enterprise

Mod 2: User Management

TechReady. Are you ready to implement IT solutions? Training and Consulting

Cloud-Accelerated Hybrid Scenarios with SharePoint and Office 365

Microsoft Enterprise Mobility and Client Futures

Supporting Cloud Services

How Microsoft IT manages mobile device management

Andrej Zdravkovic Regional Vice President, Platform Solutions Intellinet

SPHOL300 Synchronizing Profile Pictures from On-Premises AD to SharePoint Online

Identity. Provide. ...to Office 365 & Beyond

Microsoft Azure Multi-Factor authentication. (Concept Overview Part 1)

Mobile device and application management. Speaker Name Date

Total Cost of Ownership Overview ADFS vs OneLogin WHITEPAPER

LAB 2: Identity Management

Security Best Practices for Microsoft Azure Applications

User Management Tool 1.5

Collaborating with External Users

How To Manage Your Online Experiences On Windows Achemosade Online (Windows) And On-Premises) With A Free Version Of Windows.Com (Windows.Com) On A Microsoft Powerbook (Windows).Com) For Free Recipe

Managing Enterprise Devices and Apps using System Center Configuration Manager

Alex Wong Senior Manager - Product Management Bruce Ong Director - Product Management

DIGIPASS Authentication for Citrix Access Gateway VPN Connections

Identity Federation: Bridging the Identity Gap. Michael Koyfman, Senior Global Security Solutions Architect

Office 365 from the ground to the cloud

WHITEPAPER. 13 Questions You Must Ask When Integrating Office 365 With Active Directory

White Pages Managed Service Solution Rapid Global Directory Implementation. White Paper

Office 365 deployment checklists

Advanced Configuration Steps

Dell World Software User Forum 2013

SAML SSO Configuration

Enterprise Mobility Suite (EMS) Overview

Azure Active Directory Solutions for Identity and Access Management. February 2015

Federation At Fermilab. Al Lilianstrom National Laboratories Information Technology Summit May 2015

AVG Business Secure Sign On Active Directory Quick Start Guide

Microsoft Implementing Microsoft Azure Infrastructure Solutions

Cloud Based Device Management Using Enterprise Mobility Suite Production Pilot Service Definition Document

Protect Everything: Networks, Applications and Cloud Services

Office 365. Migrating and Managing Your. Business in the Cloud. Matthew Katzer. Don Crawford

Flexible Identity Federation

WIPRO IDENTITY CLOUD UNLEASHING THE NEXT GENERATION OF IDENTITY AND ACCESS MANAGEMENT (IAM)

Microsoft SharePoint Architectural Models

Secure Collaboration within Organizations, B2B and B2C.

Extend your Exchange On Premises Organization to the Cloud

Apps. Devices. Users. Data. Deploying and managing applications across platforms is difficult.

The Top 5 Federated Single Sign-On Scenarios

SAP Cloud Identity Service

Identity & Access Management in the Cloud: Fewer passwords, more productivity

Office 365 deploym. ployment checklists. Chapter 27

Alexander De Houwer Technology Advisor Devices Win 10 Vincent Dal Technology Advisor Business Productivity

Security Overview Enterprise-Class Secure Mobile File Sharing

Getting Started with AD/LDAP SSO

Device Enrollment Guide

Cloud Services ADM. Agent Deployment Guide

Hosting Models. Business Model Software (as a Service) Platform (as a Service) Infrastructure (as a Service) On Premises. Applications. Data.

Bring your data to life with Microsoft Power BI. Peter Myers Bitwise Solutions

ABOUT TOOLS4EVER ABOUT DELOITTE RISK SERVICES

Extend and Enhance AD FS

Table of Contents Introduction... 2 Azure ADSync Requirements/Prerequisites:... 2 Software Requirements... 2 Hardware Requirements...

Building High Growth Services on the Microsoft Cloud Platform. Rich Cannon Senior Director, US Partner Hosting and Cloud Services

Implementing Microsoft Azure Infrastructure Solutions

SAML-Based SSO Solution

ACTIVE MICROSOFT CERTIFICATIONS:

How To Make Your Computer System More Secure And Secure

Speeding Office 365 Implementation Using Identity-as-a-Service

Lync Online. Basic Administration Guide

MICROSOFT EXAM QUESTIONS & ANSWERS

MOC Deploying and Managing Windows 10 Using Enterprise Services

All your apps & data in the cloud, all in one place.

Deploying and Managing Windows 10 Using Enterprise Services

Course 20533: Implementing Microsoft Azure Infrastructure Solutions

Introduction to the EIS Guide

Windows Phone 8 Device Management

Samsung KNOX EMM Authentication Services. SDK Quick Start Guide

Office 365. Service Overview with a focus on Identity Federation and Directory Synchronization. Jono Luk, Program Manager jluk@microsoft.

IT Exam Training online / Bootcamp

Quick Start and Trial Guide (Mail) Version 3 For ios Devices

Managing Office 365 Identities and Services

How To Use Netscaler As An Afs Proxy

Manage all your Office365 users and licenses

Implementing Microsoft Azure Infrastructure Solutions

Transcription:

Azure Active Directory Mika Seitsonen Vartti tunnista

Kouluttajanne Mika Seitsonen Faktat M.Sc., University of Nottingham, U.K. DI, Lappeenrannan teknillinen yliopisto Co-author of "Inside Active Directory" Sovelto Senior-konsultti, vt. osaamisaluevastaava: Teknologia-asiantuntijat Microsoft Certified Trainer (MCT) vuodesta 1997, Microsoft Certification ID 414xxx MCSE: Communications MCSA: Office 365, Windows 2008, Windows 7 MS: Implementing Microsoft Azure Infrastructure Solutions Yhteystiedot e-mail mika.seitsonen@sovelto.fi Twitter @MikaSeitsonen Moottoriurheil(ija)un innokas seuraaja Kuvattuna Päijänteen Ympäriajo:ssa 2009

Identity considerations: Cloud, Sync or Federated? Cloud identity provides a solution where all identity resides in the cloud Identity sync enables customers to bridge their existing identity into the cloud Federated identity allows customers to retain all authentication on-premises B2B federated identity allows customers to securely share and collaborate with each other

Identity as the control plane Simple connection Self-service Single sign on Windows Server Active Directory Other Directories Username Azure Public cloud SaaS Office 365 On-premises Microsoft Azure Active Directory Cloud

What is Azure Active Directory? A comprehensive identity and access management cloud solution. It combines directory services, advanced identity governance, application access management and a rich standards-based platform for developers It is available in 3 editions: free, Basic and Premium

No Object Limit No Object Limit No Limit Advanced Security Reports Yes(Advanced)** Group-based access management/provisioning Yes Yes Premium + Basic Features Self-Service Password Reset for cloud users Yes Yes Company Branding (Logon Pages/Access Panel customization) Yes Yes SLA Yes Yes Kurantti informaatio osoitteessa https://msdn.microsoft.com/en-us/library/dn532272.aspx

* Azure Active Directory Connect * PowerShell SQL (ODBC) Microsoft Azure Active Directory LDAP v3 Web Services ( SOAP, JAVA, REST) Other Directories

DirSync Azure Active Directory Sync FIM+Azure Active Directory Connector Sync Engine Azure Active Directory Connect Consolidated deployment assistant for your identity bridge components Progressive learning while configuring the components ADFS is optional

Microsoft Azure Microsoft Azure

Other Directories Microsoft Azure Active Directory SaaS apps

Other Directories Microsoft Azure Active Directory Identities and applications in one place. SaaS apps Web Apps (Azure Active Directory Application Proxy) Integrated custom apps

A connector that auto connects to the cloud service Microsoft Azure Active Directory https://app1- contoso.msappproxy.net/ DMZ http://app1 Corporate Network

IT professional

alerts.

alerts.

How it works

http://myapps.microsoft.com

http://myapps.microsoft.com

Azure Active Directory 12-month investments Business to Business Business to Consumers Device Registration Administrative Units Conditional Access Cloud Domain Joined (Windows 10)

Roles Based Access Control Assign roles to users and groups at subscription, resource group, or resource level Today RBAC to Azure Tomorrow RBAC to 3 rd Party SASS apps Assignments inherit down the hierarchy Subscription SasS SasS Use built-in roles with preconfigured permissions (at preview) SasS SasS Sas S SasS Sas S Create custom roles (post preview) Reade r Owne r Contributor Reade r Owne r Contributor SasS

B2B: cross-organization collaboration I need to let my partners access my company s apps using their own credentials. Share without complex configuration or duplicate users. A user at a large partner may log into my company s apps with their Active Directory usernames and passwords. A user at a smaller partner may log into my company s apps with their Office 365 usernames and passwords. Admin configures sharing for cloud apps. I can t email my 25 MB file and need to share it with a partner using Box.com. Seamlessly provide Azure Active Directory to customers & partners For example, a user at a partner can set up everyone in their company. Users can bring their own email-based or social identities.

Administrative Units: In private preview Support for distributed organizational models Autonomous mgmt. while keeping common identity and org boundary Delegate administration to subsidiaries User management App procurement and mgmt. Scope policy Contoso North Am Europe Asia US East Germany India Global admins Org-wide permissions Manage global settings Create structure and policy Delegate permissions and resources Regional admins Manage regional users, devices, and applications Set local policy Regional policy and app management Must login with MFA Have license/access to regional apps Azure Active Directory

Azure Active Directory B2C(Business-to-Consumer ) Azure Active Directory B2C offering is tailored for enterprises who serve large populations (100 s of thousands to millions) of individual customers, and whose business success depends upon consumer adoption of web applications for improving customer satisfaction and reducing operational costs. Azure Active Directory B2C will include : Self-Service User registration Login with Social IdP or create your own credentials Optional MFA Bulk user import tools SSO to multiple web sites User interface customization

Cloud Domain Join Cloud Domain Join makes it possible to connect work-owned Windows devices to your company s Azure Active Directory tenancy in the cloud. Users can sign-in to Windows with their cloud-hosted work credentials and enjoy modern Windows experiences. Enterprise compliant Services Roaming Settings, Windows backup/restore, Store access Data stored in enterprise compliant backend services on Azure. No need to add a personal Microsoft account. SSO from the desktop to org resources SSO from desktop to Office 365 and 1,000 s of enterprise apps, websites and resources. Access enterprise-curated Store and install apps using a work account. Management Automatic MDM enrollment during first-run experience. Support for hybrid environments Traditional Domain Joined PCs also benefit from Cloud Domain Join functionality when the on-prem Active Directory is connected with an Azure Active Directory in the cloud. Cloud Domain Joined Devices

Mitä sinun pitää tehdä (ellet ole jo tehnyt) Luo ja sen jälkeen kokeile maksutonta Office 365 -tilausta http://products.office.com/fi-fi/try Luo ja sen jälkeen kokeile maksutonta Intune-tilausta http://www.microsoft.com/en-us/server-cloud/products/microsoft-intune/try.aspx Muista kirjautua O365-tililläsi Luo ja sen jälkeen kokeile maksutonta Azure-tilausta http://azure.microsoft.com Huom: vaatii luottokortin numeron, luottokorttia ei laskuteta 26

Lisäinformaatiota EMS-testiympäristö minuuteissa käyttöön http://simon-may.com/get-started-enterprise-mobility-suite-minutes/ Oma labra pystyyn http://blogs.technet.com/b/mydigitalworkthoughts/ 27

Sovelton kursseja aiheen tiimoilta Microsoft kumppaneille Business Anywhere (vain Microsoft-kumppaneille) 26.1. tai 4.5. Partner Practice Enablement: Microsoft Enterprise Mobility Suite (EMS) 23.-24.2. tai 23.-24.3. Kaikille asiantuntijoille Microsoft Intune hallinta 22.-23.4. 55065 Microsoft Azure IT-asiantuntijoille 11.-13.3. 20533 Implementing Microsoft Azure Infrastructure Solutions 13.-15.4. 20532 Developing Microsoft Azure Solutions 10.-13.3. 28

KIITOS! 29

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information