Application Authentication using Azure AD

Slides:

Advertisements

Similar presentations

The How of OAuth OAuth Hackathon – Six Apart

Advertisements

Identity Network Ideals – Heterogeneity & Co-existence

Office 365 Identity June 2013 Microsoft Office365 4/2/2017

steve plank “planky” microsoft Lest we forget windows azure appfab

Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.

WSO2 Identity Server Road Map

1 Trillion Azure AD authentications since the release of the service 50 M Office 365 users active every month >1 Billion authentications every.

Microsoft Ignite /16/2017 4:55 PM

GRDevDay March 21, 2015 Cloud-based Identity for Applications.

Active Directory federation user provisioning.

Cloud app Cloud app Cloud app Separate username/password sign-in Manual or semi-automated provisioning Active Directory App Separate username/password.

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

OFC-B317 Overview Identity Management in Office 365 Synchronization Topics Federation Topics Integration of SAML/OAUTH with Office Works with Office.

Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.

Maggie Myslinska (Program Manager) Microsoft Corporation SESSION CODE: ASI204.

Windows 8 Application Microsoft Word with Apps For Office Internal O365 SharePoint Site Windows Azure Cloud Services Windows Azure Workflow Server.

Authority of Information Technology Application National Center of Digital Signature Authentication Ninh Binh, June 25, 2010.

Windows Server Active Directory Intranet Managed Access Managed Identities Integrated Business Apps.

101 ways to authenticate with Azure Active Directory

Technofolies Brussels, Oct 29 & 30. Technofolies.

Building consumer apps with Azure AD B2C

Adxstudio Portals Training

Securing Angular Apps Brian Noyes

Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.

Today’s Applications Web API Browser Native app Web API Web API

Architectural Patterns For The Cloud Brian H. Prince | Microsoft.

Azure Active Directory is becoming one of, if not the, primary user identity management services for cloud applications. One of Azure Active Directory's.

New v2.0 Auth model to authenticate and authorize to Outlook.com APIs and the Microsoft Graph  Same OAuth2 protocols work for both consumer and commercial.

OpenID Connect: An Overview Pat Patterson Developer Evangelist Architect

Microsoft Ignite /20/2017 9:04 PM

11 | Managing User Info Jeremy Foster Michael Palermo

A deep dive into Azure AD B2C

Access Policy - Federation March 23, 2016

Secure Single Sign-On Across Security Domains

A lap around Azure Active Directory Business to Consumer (B2C)

Azure Active Directory - Business 2 Consumer

Introduction to Windows Azure AppFabric

Embed Power BI in your Web application

9/11/ :51 AM Cloud Roadshow © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO.

SaaS Application Deep Dive

Understand Hybrid Identity with Azure and Azure Stack

Windows Azure AppFabric

Exam : Implementing Microsoft Azure Infrastructure Solutions

9/13/2018 4:54 PM BRK How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer.

Azure AD Line Of Business Application Integration

Azure AD Application Proxy

Azure Active Directory

11/14/ :30 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

11/15/2018 9:06 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

OpenID Connect Working Group

ACS Functionality.

TechEd /7/2018 2:17 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.

Office 365 Identity Management

12/29/2018 8:46 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

Microsoft Virtual Academy

Authentication and Authorization Federation

1/3/2019 1:47 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS.

Matthew Levy Azure AD B2B vs B2C Matthew Levy

Office 365 Development.

Introduction into the Power BI REST API Jan Pieter Posthuma

Token-based Authentication

4/15/2019 1:57 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

Microsoft Ignite NZ October 2016 SKYCITY, Auckland.

07 | Introduction to Authentication

OpenID Connect Working Group

Computer Network Information Center, Chinese Academy of Sciences

A Lap Around Windows Azure Active Directory

A lap around Azure AD B2C custom policies

Presentation transcript:

Application Authentication using Azure AD

Who am I? Ashish Gupta .NET Developer by background Currently working as an Identity and Access Management Architect/Developer for LPL Financial, Charlotte Contact :- Email : ashishmgupta@hotmail.com Website : http://guptaashish.com Twitter : @ashishrocks

Agenda Authentication/Authorization Authentication techniques Basic Authentication techniques SAML, WS-Federation OAuth Open ID Connect Azure AD Overview Authentication using Azure AD

Back to basics Popular Authentication Techniques Pre-claims authentication techniques Passwords Domain authentication Claim-based identity SAML, WS-Federation OAuth, OpenID-Connect

Pre-claims Auth techniques Passwords Application specific – Not meant for the multi application access.

Pre-claims Auth techniques Domain Authentication Works well within the enterprise – but not outside.

Claim-based Auth Techniques High level Analogy Process of Boarding a plane Sign-On Protocol : Go to a check-in kiosk > print the boarding pass >TSA line > Boarding gate > Board the plane Authentication Protocol The passport/driver license Token The boarding pass WS-Federation Storing passwords? Read this :- http://bit.ly/1UpSOq5

Claim-based Auth Techniques SAML Enables an application to send Auth requests and obtain tokens that can be sent across domains SAML was introduced in year 2000. It uses SAML token which is XML format, very expressive but very verbose. SaaS vendors are more likely to support it than WS-Federation. On the other hand, if you are in a mostly Microsoft world, WS-Federation is more ubiquitous. URL of the image : https://documentation.pingidentity.com/display/PF66/SP-Initiated+SSO--POST-POST

Claim-based Auth Techniques WS-Federation Enables an application to send Auth requests and obtain tokens that can be sent across domains WS-Fed supports SAML tokens as well as the JWT. SAML protocol supports only SAML tokens. URL for the image : https://documentation.pingidentity.com/display/PF70/WS-Federation

Claim-based Auth Techniques Oauth 2.0 Authorization Protocol

Claim-based Auth Techniques Open ID Connect Oauth 2.0 + Authentication

Azure AD – An overview Identity and Access Management as a service (IDaaS) Identifies Apps, APIs and users using internet ready standards OpenID-Connect, WS-Fed Its free!! And free version is very capable. Up to about ½ million users authentication is supported. https://azure.microsoft.com/en-us/documentation/infographics/azure/

Thank you Questions?