Gregor Šuster, Microsoft Azure Active Directory. Kaj je in kaj ni Azure Active Directory (AAD)? Različice storitve Azure Active Directory Predstavitev.

Slides:



Advertisements
Similar presentations
Agenda AD to Windows Azure AD Sync Options Federation Architecture
Advertisements

Azure AD & Office Logon with Username / Password 2. MFA challenge 3. Reply to MFA challenge -1-way or 2-way SMS -Phone call -Mobile Application.
Identity Manager vNext
Microsoft Ignite /16/2017 3:28 PM
Identity management integration options for Office 365
Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.
Microsoft Ignite /16/2017 4:55 PM
Sessions about to start – Get your rig on!. Notes from the field – Implement Hybrid Search and OneDrive for Business Chris Zhong - Microsoft Aaron Dinnage.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
IT can provide users with a common identity across on-premises or cloud- based services, leveraging Windows Server Active Directory and Azure Active.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Microsoft Identity and Access Solutions Market Trends and Futures
Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.
OUC204. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Single Sign-On with Microsoft Azure
Windows Azure Conference 2014 Windows Azure AD – All about WAAD & integration with on- premises AD.
PCIT313. Today’s challenges Deliver applications to mobile platforms (BYOD) Respond to dynamic business requirements for IT: Seasonal/temporary workers.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Paul Andrew. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Identity Decision Tree Framework Quick Reference Guides.
Alessandro Cardoso Microsoft MVP | Readify National Manager |
Office 365 Directory Synchronization Update: Deploying Password Sync.
Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows
Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.
FND2851. Mobile First | Cloud First Sixty-one percent of workers mix personal and work tasks on their devices* >Seventy-five percent of network intrusions.
Access resources in a federation partner organization.
Configuration Manager and InTune Gemeinsam oder einsam?
Craig Pringle & Derek Moir
Identities and Azure AD Premium
Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.
Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.
Enterprise Mobility Suite: Simplify security, stay productive Protect data and empower workers Unsecured company data can cost millions in lost research,
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
Hybrid Identity Deep dive Ross Adams 2016 Redmond Summit | Identity Without Boundaries May 25 th 2016 Azure AD
Enabling the Modern Workstyle with Windows 10 & Azure Active Directory Venkatesh Gopalakrishnan 2016 Redmond Summit | Identity Without Boundaries May 25,
EMS in action Hugh Simpson-Wells and Mark Riley 2016 Redmond Summit | Identity Without Boundaries
SaaS apps.
Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
61% of workers mix personal and work tasks in their devices* * Forrester Research: “BT Futures Report: Info workers will erase boundary between enterprise.
BRK3111. Provide one persona to the workforce for SSO to 1000s of cloud and on-premises apps Manage access at scale Manage identities and access at scale.
Recording Brief EMS Partner Bootcamp Variables Values Module Title
Active Directory Modernization Technical competitive comparison
Implementing and Managing Azure Multi-factor Authentication
Microsoft 365 Security and Compliance: Training and Resources
Azure Active Directory voor Developers
SaaS Application Deep Dive
Azure AD for the client management guy (or gal!)
9/13/2018 4:54 PM BRK How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer.
Leverage your on-premise investments with cloud innovation
Cloud Connect Seamlessly
11/15/2018 3:42 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.
Microsoft Ignite NZ October 2016 SKYCITY, Auckland.
Office 365 and Azure Active Directory Premium
Microsoft Virtual Academy
Office 365 Identity Management
12/29/2018 8:46 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.
M3: Guidance for choosing the right integration option
Microsoft Ignite /24/2019 6:23 PM
4/3/2019 3:20 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS.
Protecting your data with Azure AD
4/9/2019 5:05 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS.
Empower your users with Azure Active Directory Premium
Microsoft 365 Business Technical Fundamentals Series
7/18/2019 7:04 PM Pregled scenarijev uporabe storitve Azure Active Directory pri integraciji in nadzoru identitete uporabnika Gregor Šuster Microsoft Slovenija.
Microsoft 365 Business Technical Fundamentals Series
Azure AD Simon May Technical Evangelist.
INTRODUCTION TO AZURE AD
Presentation transcript:

Gregor Šuster, Microsoft Azure Active Directory

Kaj je in kaj ni Azure Active Directory (AAD)? Različice storitve Azure Active Directory Predstavitev nekaterih funkcionalnosti storitve AAD Agenda

Rešitev (storitev) namenjena definiranju identitete v oblaku ter upravljanju z le-to. Sestavlja jo imenik, napredno upravljanje z identiteto, varnostjo in dostopom do aplikacij, razvijalcem pa ponuja s standardi podprto platformo za zagotavljanje avtorizacije in nadzora. Kaj je Azure Active Directory?

Kaj Azure Active Directory NI?

Self-service Single sign on Username Zakaj Azure Active Directory? Simple connection Cloud SaaS Azure Office 365 Public cloud Other Directories Windows Server Active Directory On-premises Microsoft Azure Active Directory

Zakaj Azure Active Directory? Azure AD Active Directory AD FS Active Directory Domain Services Sync

The current reality…

Ne glede na različico, v ozadju je tehnološko enaka storitev Različica pomeni zgolj dostop do različnih funkcionalnosti, ki so na razpolago Različice: AAD Free, AAD Basic, AAD Premium Različice storitve Azure Active Directory

Azure Active Directory različice + Office 365 IAM features Azure AD FreeAzure AD Basic Azure AD Premium Office 365 IAM features Common Features Directory as a Service 500,000 Object Limit No Object Limit No Object limit for Office 365 user accounts User/Group Management (add/update/delete)Yes SSO to pre-integrated SAAS Applications /Custom Apps10 apps per user No Limit10 apps per user User-Based access management/provisioningYes Self-Service Password Change for cloud usersYes Identity Synchronization Tool (Windows Server AD integration, Multi Forest) Yes Security Reports3 Basic Reports Advanced Security Reports 3 Basic Reports Cloud App Discovery*Yes(Basic) Yes(Advanced)**Yes(Basic) Premium+ Basic Features Group-based access management/provisioningYes Self-Service Password Reset for cloud usersYes Company Branding (Logon Pages/Access Panel customization)Yes SLAYes Premium Features Identity Synchronization Tool advanced write-back capabilities * (FY15 Roadmap) Yes Self-Service Group ManagementYes Self-Service Password Reset/Change with on-premises write-backYes Advanced Usage ReportingYes Multi-Factor Authentication (Cloud and On-premises (MFA Server))Yes Limited Cloud only features for accessing Office 365 Azure AD Application proxy*Yes MIM CAL + MIM ServerYes Administrative Delegation* (FY15 Roadmap)Yes

Azure Active Directory GA features Your directory in the cloud Connect on-premises directories to Azure AD Azure AD Sync Multi-Forest Support Single Sign-on to thousands SaaS apps+ LoB and Custom application support Application Proxy Enterprise SLA of 99.9 percent Empower users Self-service password change Self-Service password reset Delegated group management Self-Service security settings management Single Sign-On to on- premises applications from the Access Panel (Azure AD Application Proxy) Centrally managed identities and access Group-based user assignment to SaaS apps Group-based provisioning Company branding Password writeback Monitor and protect access to applications Advanced Security reporting and analytics Application usage reports Alerting/Notifications Multi-factor authentication

Upravljanje s skupinami

Password Reset

Povezava identitet z MFA Multi-factor Authentication

Dostop do SaaS aplikacij

Nekaj SaaS aplikacij

Application Proxy (Preview)

Potreben outbound promet Azure Application Proxy Port Number Description 443 To enable user authentication against Azure AD (required only for the Connector registration process) 9352, 5671, – To enable communication between the Connector toward the Azure service for incoming requests Optional. To enable better performance for incoming requests To enable LOB HTTP responses sent back to the proxy 8080 To enable the Connector bootstrap sequence and to enable Connector automatic update 9090 To enable Connector registration (required only for the Connector registration process) 9091 To enable Connector trust certificate automatic renewal

Objava aplikacije

Perimeter Network Private Network Connector Application

The following features are currently in public preview and will be added soon: Administrative units: a new Azure Active Directory container of resources that can be used for delegating administrative permissions over subsets of users and applying policies to a subset of users. Add your own SaaS applications to Azure Active Directory. Azure Active Directory Connect Health: monitor the health of your on premises Active Directory infrastructure and get usage analytics. Password rollover for Facebook, Twitter, and LinkedIn. For more information, read this article. Dynamic group membership. For more information, see this article. Conditional Access: Multifactor Authentication per application. HR application integration: Workday Privileged Identity Management: Privileged identity management provides improved oversight to help meet service level agreements and regulatory compliance requirements. Self-service application requests: Administrators can provide a list of SaaS apps to users from which so that users can choose the ones they want to use, and the apps either will be available immediately or after approval. Azure reporting API: data for every security report of Azure Active Directory will be available to other monitoring or SIEM tools. Vir: Funkcionalnosti v bodoče…

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.