1 Oxford Identity Summit May, 25 th 2016 CREATING A CITIZEN IDENTITY.

Slides:

Advertisements

Similar presentations

System Center 2012 R2 Overview

Advertisements

Azure AD & Office Logon with Username / Password 2. MFA challenge 3. Reply to MFA challenge -1-way or 2-way SMS -Phone call -Mobile Application.

Association Management System Norman Campbell Director, Information Systems.

1 | SharePoint Saturday St. Louis 2015 Case Study An on premise challenge to move to the cloud. The migration to Azure and Office 365.

“It’s going to take a month to get a proof of concept going.” “I know VMM, but don’t know how it works with SPF and the Portal” “I know Azure, but.

Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

Windows Azure Networking & Active Directory Nasir (Muhammad Nasiruddin) Developer Evangelist - Azure Microsoft Corporation

Microsoft Azure Introduction ISYS 512. Microsoft Azure Microsoft Azure is a cloud.

©Kwan Sai Kit, All Rights Reserved Windows Small Business Server 2003 Features.

SharePoint Services Indiana University Cory P. Retherford May 9 th, 2011.

Single Sign-On with Microsoft Azure

…. PrePlanPrepareMigratePost Pre- Deployment PlanPrepareMigrate Post- Deployment First Mailbox.

©2015 EarthLink. All rights reserved Cloud Express ™ Optimize Your Business & Cloud Networks.

WINDOWS AZURE Scott Guthrie Corporate Vice President Windows Azure

Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.

Preview JUNE 2012 Introduced Windows Azure Infrastructure Services General Availability APRIL 2013 Commercially-backed SLA and formal support agreements.

Cloud Strategy made Simple David G. Fletcher. 2 Hybrid Cloud Approach Utah is building a private cloud to provision services from its virtualized infrastructure.

Microsoft Azure Active Directory. AD Microsoft Azure Active Directory.

Building consumer apps with Azure AD B2C

Craig Pringle & Derek Moir

SharePoint ShortUrl and SharePoint Document Merge SharePoint and Office 365 Add-ins to Increase Productivity and Improve User Adoption! OFFICE 365 APP.

Identities and Azure AD Premium

The VERSO Product Returns Portal Incorporates Office 365 Outlook and Excel Add-Ins to Create Seamless Workflow for All Participating Users OFFICE 365 APP.

Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.

BE-com.eu Brussel, 26 april 2016 EXCHANGE 2010 HYBRID (IN THE EXCHANGE 2016 WORLD)

Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.

Inspirirani ljudima. Ugasite mobitele. Hvala.. Paolo Pialorsi Senior Consultant PiaSys ( Publishing apps for SharePoint 2013 on Microsoft.

Agility Dev TestDeploy Learn Agility.

Barracuda Networks. Safe Public Cloud Transitions Why Barracuda? The Challenge When organizations move workloads to the public cloud, data protection.

Short Customer Presentation September The Company  Storgrid delivers a secure software platform for creating secure file sync and sharing solutions.

ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.

Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD

Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.

A deep dive into Azure AD B2C

Tools and Tips for Administering Office 365

Protect Manage Optimize Why LastPass Enterprise? Protect Manage Optimize.

A lap around Azure Active Directory Business to Consumer (B2C)

Max Fritz Senior Systems Consultant, Now Micro

LOCAL CLOUDINESS Dino Buljubašić Rijad Smajlović

Azure Active Directory - Business 2 Consumer

Azure Active Directory voor Developers

SaaS Application Deep Dive

Azure AD for the client management guy (or gal!)

The power of common identity across any cloud

9/4/2018 6:45 PM Secure your Office 365 environment with best practices recommended for political campaigns Ethan Chumley Campaign Technology Advisor Civic.

8/1/ :13 PM BRK2276 Azure Active Directory B2C: Modernize your customer identity management Saeed Akhter Senior Program Manager © Microsoft Corporation.

Power BI Security Best Practices

Design and Implement Cloud Data Platform Solutions

9/13/2018 4:54 PM BRK How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer.

Using AAD B2C for WordPress & Secure Deployment Scenario

Azure AD Application Proxy

Azure AD Deployment Are you maximising your Azure AD investment?

11/14/ :30 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

Office 365 Development July 2014.

Getting Started.

Cloud Platform Lowers Implementation Barriers, Offers Security for Mobile Scheduling Solution MINI-CASE STUDY “We wanted to focus on providing an optimal.

Microsoft Virtual Academy

Getting Started.

Azure Enables Mobility, Easy Sync and Share, and Allows Companies to Retain Data Control MINI-CASE STUDY “Azure provides the full stack of technology that.

Ease of Scale Allows Businesses to Connect with Individuals Using Social Conversations MINI-CASE STUDY “Microsoft Azure has allowed iSwarm to scale our.

Matthew Levy Azure AD B2B vs B2C Matthew Levy

SharePoint Online Authentication Patterns

Office 365 Development.

Microsoft Data Insights Summit

Office 365 Development July 2014.

Microsoft Virtual Academy

INTRODUCTION TO AZURE AD

Recommendation Tree from a Marketing Manager

Presentation transcript:

1 Oxford Identity Summit May, 25 th 2016 CREATING A CITIZEN IDENTITY

2 THE INDIANA IDENTITY STORY The state saved Indiana taxpayers $13.9 million annually IOT acts as a consulting company to most of the state agencies providing in house solutions and projects management. The Secretary of State (SOS) project - One stop shop to setup a new business in Indiana Streamline the registration processes for new businesses. It took an act of congress! Agencies were mandated to participate in INBiz.

3 Providing infrastructure was the easy part. Looked to IOT to provide solution for Citizen ID’s. They had multiple requirements that need to be meet for the Citizen ID’s and authentication. » Self service options » Customer experience » Needed to be secure » Highly available » Scalable THE IOT RESPONSIBILITIES.

4 IOT was challenged to find a place to store all citizen IDs. AD was not a solution for a citizen logon/portal Self service was a must have Finding a technology to do this was the challenge at hand » Other 3 rd party solution » Azure AD Premium » LDAP Microsoft’s B2C was a new offering CHALLENGES IN FINDING A SOLUTION

5 It took a lot of convincing It was in private preview – not production Other Indiana Agencies worried about security issues. At the end of the day, B2C was pitched as a vehicle for authentication, and not as an Identity. ACCEPTANCE OF B2C

6 Low cost – Pay as you grow. Ease of use Self service Highly Available Scalable – 6 million potential identities REST-based Graph API Easy integration with websites. Industry Standard Protocols such as OpenID Connect Secure Logons - MFA First step in creating a place for all Citizen logons. WHY IOT CHOSE B2C

7 DEMO

8 CHALLENGE Verification s Problem – s were coming from “Microsoft on behalf of One Indiana Access” with an address of This configuration was causing several of the s to get blocked by spam filters. Some users where unable to get registered for the site Solutions – s: Worked with the Azure B2C product group to drop “Microsoft on behalf of” from the verification s and set address to

9 CHALLENGE (CONTINUED) Verification s Solutions – Graph API Application: Some users will still unable to create their accounts. Mainly around not getting the verification s. INBIZ has a business hour only support team so users could call in and request an account be created for them. IOT created a simple application that we gave to the support desk via Azure Remote App to create the user accounts

10 CHALLENGE (CONTINUED) Verification s

11 CHALLENGE (CONTINUED) Verification s INBIZ User Creator

12 INBIZ SUCCESSES Over 20,000 registrations. Generated revenue from day one. Minimal Support needed.

13 ONE INDIANA ACCESS Next Steps Move away from separate Sign In and Sign Up policies to the new single Sign-In/Sign-Up policy Create custom and styled Sign-In/Sign Up pages branded for each application. Create a MY Indiana Citizen portal so each citizen has a customized location to access all of their applications for doing business with the State of Indiana.

14 INDIANA AND AZURE Besides Azure B2C, the State of Indiana is using Azure for other workloads Department of Workforce Development With Azure, DWD is able to scale from 1 to 100 Linux VMs in 10 minutes to analyze unemployment. Being to able to then tear down those VMs saves DWD money by not having to keep those VMs around. DWD is also utilizing Azure Automation and SQL DBs

15 INDIANA AND AZURE (CONTINUED) Indiana Economic Development Commission Using Azure Web Apps for their ADX Studio Portal. Having different deployment slots for Dev, UAT and PROD was a huge benefit for the agency Indiana Office of Technology Azure Remote App for access to management tools for Mac users Dev Test Labs for application testing Azure Storage for SharePoint Online migrations

16 INDIANA AND THE CLOUD Microsoft Advanced Threat Analytics Privileged Access Management Azure Multi-Factor Authentication MIM / Self Service Password Reset SharePoint Online / One Drive for Business Exchange Online

17 CONCLUSION IOT now has traction for a true Citizen portal All new applications being written for in.gov will use B2C. Using B2C has opened the door for other workloads to be moved to a cloud solution.