Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD

Slides:



Advertisements
Similar presentations
Office 365 Identity June 2013 Microsoft Office365 4/2/2017
Advertisements

Agenda AD to Windows Azure AD Sync Options Federation Architecture
Microsoft Ignite /16/2017 3:28 PM
Identity management integration options for Office 365
Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.
Microsoft Ignite /16/2017 4:55 PM
Sessions about to start – Get your rig on!. Notes from the field – Implement Hybrid Search and OneDrive for Business Chris Zhong - Microsoft Aaron Dinnage.
IT can provide users with a common identity across on-premises or cloud- based services, leveraging Windows Server Active Directory and Azure Active.
Today’s challenges Deliver applications to mobile platforms (BYOD) Respond to dynamic business requirements for IT: Seasonal/temporary workers Vendors.
Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:
Cloud app Cloud app Cloud app Separate username/password sign-in Manual or semi-automated provisioning Active Directory App Separate username/password.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Demi Albuz SENIOR PRODUCT MARKETING MANAGER Samim Erdogan PRINCIPAL ENGINEERING MANAGER Thomas Willingham TECHNICAL PRODUCT MANAGER.
Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Windows Azure Networking & Active Directory Nasir (Muhammad Nasiruddin) Developer Evangelist - Azure Microsoft Corporation
Cross Platform Mobile Backend with Mobile Services James
ARC312. Security Policy Governance Audit Reporting Analysis Data Quality Directory Logon Mobility Provisioning Development Access Control Authentication.
OUC204. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.
PCIT313. Today’s challenges Deliver applications to mobile platforms (BYOD) Respond to dynamic business requirements for IT: Seasonal/temporary workers.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Paul Andrew. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Identity Decision Tree Framework Quick Reference Guides.
Alessandro Cardoso Microsoft MVP | Readify National Manager |
Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows
ON YOUR TERMS Business needs * Enhanced by upcoming Azure IAAS features GoodBetterBest * * GoodBetterBestGoodBetterBestGoodBetterBestGoodBetterBestGoodBetterBest.
Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.
Access resources in a federation partner organization.
Configuration Manager and InTune Gemeinsam oder einsam?
User and Device Management
Identities and Azure AD Premium
Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.
Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
Cloud, big data, and mobility Your phone today probably meets the minimum requirements to run Windows Server 2003 Transformational change up.
Hybrid Identity Deep dive Ross Adams 2016 Redmond Summit | Identity Without Boundaries May 25 th 2016 Azure AD
One Foot in the Cloud, Another On-Premises Ross Adams 2016 Redmond Summit | Identity Without Boundaries May 25 th 2016 Azure AD
Enabling the Modern Workstyle with Windows 10 & Azure Active Directory Venkatesh Gopalakrishnan 2016 Redmond Summit | Identity Without Boundaries May 25,
EMS in action Hugh Simpson-Wells and Mark Riley 2016 Redmond Summit | Identity Without Boundaries
SaaS apps.
ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.
Gregor Šuster, Microsoft Azure Active Directory. Kaj je in kaj ni Azure Active Directory (AAD)? Različice storitve Azure Active Directory Predstavitev.
of employees use personal devices for work purposes.* of employees that typically work on employer premises, also frequently work away from their desks.***
Managing Devices in the Enterprise: From EMS zero to Hero in only 60 minutes Ken Goossens Herman Arnedo Mahr.
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
61% of workers mix personal and work tasks in their devices* * Forrester Research: “BT Futures Report: Info workers will erase boundary between enterprise.
Today’s challenges Data Users Apps Devices
Microsoft Ignite /27/2018 9:00 AM THR2016
Azure Active Directory - Business 2 Consumer
SaaS Application Deep Dive
Azure AD for the client management guy (or gal!)
The power of common identity across any cloud
Examine common architectures for hybrid identity
Secure Remote Access to on-premises Web Apps using Azure AD
9/13/2018 4:54 PM BRK How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer.
Microsoft Ignite NZ October 2016 SKYCITY, Auckland.
Cloud Connect Seamlessly
Azure AD Application Proxy
Access and Information Protection Product Overview October 2013
PCIT-B313 Hybrid Identity
TechEd /9/2018 1:09 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Office 365 Identity Management
12/29/2018 8:46 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.
Matthew Levy Azure AD B2B vs B2C Matthew Levy
System Center Marketing
TechEd /6/ :24 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Windows Azure Hybrid Architectures and Patterns
PCIT-B314 BYOD and WS2012R2 Adam Hall
Azure AD Simon May Technical Evangelist.
Microsoft Virtual Academy
Presentation transcript:

Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD

Customers Azure AD as the control plane On-premises Partners Azure Cloud Public cloud Microsoft Azure Active Directory BYO Windows Server Active Directory A modern identity management system spanning cloud and on-premises, providing federation, identity management, device registration, user provisioning, application access control & data protection.

10 M organizations >1.3 B Authentications a day 78 K active 3 rd party apps 700 % YoY growth 696 M users Azure Active Directory

Secure the EnterpriseIncrease ProductivityManage at scale 1000s of Apps, 1 identity Protect apps, users and devices On-Premises and the Cloud Empowering users and organizations at scale

AAD “LOCAL” DATACENTERS AAD GLOBAL DATACENTERS

Azure Active Directory Active PrimaryPassive PrimarySecondary Replica’s … Handle Reads Writes Data center boundary

Azure Active Directory

Manage at scale 9 Strong governance on protecting customer data Protection of directory data at rest Supporting rapid failover, with no loss of data

Increase Productivity SaaS Apps, 1 Identity

Web apps (Azure Active Directory Application Proxy) Integrated LOB apps SaaS apps HR and Other Directories popular SaaS apps Connect and sync on-premises directories with Azure Easily publish on-premises web apps via Application Proxy + Custom apps through a rich standards-based platform Microsoft Azure Increase Productivity SaaS Apps, 1 Identity Cloud HR

Manage your account and groups Company branded, personalized application Access Panel: + iOS and Android Mobile Apps Increase Productivity SaaS Apps, 1 Identity Self-service password reset Application access requests Integrated O365 app launching

Increase Productivity SaaS Apps, 1 Identity 1.Create a security group 2.Configure the rule on the group 3.Assign the group to applications 4.Verify that the right users have access New group All users where... RULE

Increase Productivity SaaS Apps, 1 Identity Logical operators: Value operators: (depends on value type) Rule syntax  One or more conditions  conditions contain a claim/value pair Simple rules  single condition  E.g. All users where department = “Sales” Complex rules  A combination of conditions  All sales managers worldwide and all marketing users in Greece

Increase Productivity SaaS Apps, 1 Identity ( () ) )(() condition Designing the rule All Sales Managers worldwide and all Marketing users in Greece

“We needed to quickly and cost effectively stand up new IT infrastructure, including extranet applications for thousands of business partners. Azure AD B2B collaboration provides a simple and secure way for partners, large and small, to use their own credentials to access Kodak Alaris systems.” partners Increase Productivity SaaS Apps, 1 Identity Share without complex configuration or duplicate users Partners use their own credentials to access your org Users lose access when leaving the partner org No external directories No per partner federation You manage access You control partner access in your directory: app assignment group membership custom attributes Partners of all sizes Bulk invite 1000s at a time Partners with Azure AD sign in to accept invite Other partners simply sign up to accept invite

Increase Productivity SaaS Apps, 1 Identity Windows Server Active Directory Other Directories Microsoft Azure Active Directory Cloud and Web Applications Graph Applications To Azure AD From multiple sources Inbound provisioning Outbound provisioning, SSO and licensing Write back to on-premises AD

Increase Productivity SaaS Apps, 1 Identity 19  Automatically add, update, and disable user accounts in applications  Configure attribute mappings per application  Provisioning and usage reports Microsoft Azure

Increase Productivity SaaS Apps, 1 Identity 20 Import Workday users and groups into Azure AD  Automatically import new employees when hired.  Groups can be provisioned and managed from Workday provisioning groups. Ongoing synchronization:  Groups  Users  Group membership Writeback users to AD:  Attribute authority remains with Workday  Password authority in AD

2016 Redmond Summit Sponsors

Thank you!

Subscribe to SaaS applications Switch to using SaaS versions of the app eg. Office 365 Leverage Azure AD for SaaS app management SaaS application gallery Easy provisioning, conditional access control Rewrite existing applications Rewrite apps to leverage Azure PaaS Leverage Azure AD OAuth/OpenID Connect for modern authz. Ubiquitous developer libraries. Graph API – modern directory API Lift-and-shift on-premises applications to IaaS Move existing legacy ISV or LOB applications to Azure IaaS May not have access to source code or vendor support.

What about identity in the cloud? My apps depend on AD Domain Services 1 I can’t modify some ISV apps – I don’t have source code. 1 AD Domain Services Domain join Group policy LDAP bind/authentication Kerberos, NTLM LDAP read/write

1 - VPN Gateway/ExpressRoute connection2 - Domain Controller VM in Azure

Contoso’s Virtual Network Azure AD Domain Services AAD Connect Contoso’s Azure IaaS workloads/apps Contoso premises Managed domain

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.