SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

Slides:



Advertisements
Similar presentations
Service Bus Service Bus Access Control.
Advertisements

Office 365 Identity June 2013 Microsoft Office365 4/2/2017
Agenda AD to Windows Azure AD Sync Options Federation Architecture
DPR311. Traditional IT Infrastructure (as a Service) Platform (as a Service) Storage Servers Networking Operating System Middleware Virtualization.
SIM403. Claims Provider Trust Relying Party x Relying Party Trust Claims Provider Trust Your ADFS STS Partner ADFS STS & IP Relying Party Trust Partner.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
OSP206. Experience Office as it was meant to be… without the complexity of setting up servers.
Active Directory Integration with Microsoft Office 365
Cloud app Cloud app Cloud app Separate username/password sign-in Manual or semi-automated provisioning Active Directory App Separate username/password.
Active Directory Integration with Microsoft Office 365 Ross Adams & Jono Luk Program Managers Microsoft Corporation OSP321.
Building Integrated Microsoft Office 365, SharePoint Online, and Office Solutions Using BCS and LOB Data Donovan Follette Sr. Technical.
WSV314. MAP 5.5 Internet ExplorerWindows 7 Software Usage Tracking Heterogeneous Server & Database Inventory Windows Server 2008 R2 Hyper-V SQL Server.
Troubleshooting Federation, AD FS 2.0, and More…
WCL309. Demo.
SIM329. Certificate Enrollment Without CEP/CES Certificate Authority Active Directory Client Workstations LDAP RPC/DCOM.
SIM332 UserManagement GroupManagement CredentialManagement Common Platform WorkflowConnectorsLogging Web Service API Synchronization PolicyManagement.
SIM402. Kerberos, NTLM, Basic, Digest, Forms?
Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.
WCL318. MAP 5.5 Internet ExplorerWindows 7 Software Usage Tracking Heterogeneous Server & Database Inventory Windows Server 2008 R2 Hyper-V SQL Server.
SIM 320. Contoso customer premises AD MS Online Directory Sync Identity Services Provisioning platform Provisioning platform Lync Online Lync Online.
SIM314 Introduction Transport Layer Summary Network Layer.
Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.
Datacenter LOB web service LOB app Partner Mobile Device.
OUC204. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
COS303. Azure Enterprise CLOUDENTERPRISE Data Synchronization SQL Azure Data Sync Application-layer Connectivity & Messaging Service Bus Security.
Single Sign-On with Microsoft Azure
DPR302.
Tech Ed North America /24/2017 1:59 AM SESSION CODE: SIA327
A Lap Around Windows Azure Active Directory Stuart Kwan Lead Principal Program Manager Microsoft Corporation SIA209.
DPR305. Controller Model View Client Business Objects Server Business Objects Data.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Paul Andrew. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Office 365 deployment choices Cutover, Staged, Hybrid What is AD FS (Active Directory Federation Services) Attribute Stores, ADFS Configuration Database.
Alessandro Cardoso Microsoft MVP | Readify National Manager |
OSP324. Active Directory User directory synchronization User single-sign on Client distribution Availability monitoring User directory synchronization.
OSP325 ScenarioUse Directory Synchronization? Initial on-boarding/bulk Provisioning of users only* No Identity FederationYes Long-term.
Office 365: Identity and Access Solutions Suresh Menon Technology Specialist – Office 365 Microsoft Corporation India.
SIM401. A. Datum Account Forest Trey Research Resource Forest Federation Trust Microsoft (Users) E-Company Store (Resource) Contoso(Users)Contoso(Users)Fabrikam(Resource)Fabrikam(Resource)
Data transport Cloud Backend Data transport Cloud Backend Cloud Provider Backend Virtualization Sidechannels You Clients Logons Who’s responsibility.
DEV351.
Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows
Windows Azure for IT Pros Kurt CLAEYS (TSP Windows Azure, Microsoft EMEA)
Bronze Sky customer premises AD MS Online Directory Sync Provisioning platform Provisioning platform Lync Online Lync Online SharePoint Online SharePoint.
Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.
Access resources in a federation partner organization.
Redeploying from on-premises to the cloud SharePoint burst out to Azure Hybrid event based applications Building a private cloud.
Linus Joyeux Valerie Alonso Managing consultantLead consultant blue-infinity (Switzerland) Active Directory Federation Services v2.
#SPSMX Hybrid Environments SharePoint On-premises & SharePoint Online Luis Du Solier SharePoint Premier Field Engineer Microsoft.
SIM323. Active Directory ? ? ? ? ? ? ? ? ?
Identities and Azure AD Premium
Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
About Me AUTHENTICATION Identity Provider.
Private KEEP OFF! Private KEEP OFF! Open! What is a cloud? Cloud computing is a model for enabling convenient, on-demand network access to a shared.
Productivity Architect Meet Chris Bortlik Author, Blogger, Speaker.
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
Web SSO with Cloud Resources using AD Federation Services
Introduction to Windows Azure AppFabric
Azure AD for the client management guy (or gal!)
Extending Your On-Premises Apps with the Windows Azure Platform
Windows Azure AppFabric
Mark Wahl, CISA Architect Microsoft Corporation
SharePoint Online Management and Control
Integrating Microsoft SharePoint 2010 with Windows Azure
05 | AD to Windows Azure AD IT Professionals
Cross-Org Collaboration using SharePoint 2010 & AD FS 2.0
Office 365 Identity Management
2/27/2019 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Microsoft System Center and Private + Public Cloud: Better Together
Presentation transcript:

SIM205

(On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime Other Manages You manage Platform (as a Service) Other Manages You manage Storage Servers Networking O/S Middleware Virtualization Applications Runtime Data Software (as a Service) Other Manages Storage Servers Networking O/S Middleware Virtualization Applications Runtime Data Common Identity Leveraging on-premises Active Directory Federating based on industry standards Provisioning objects to services where needed Enabling cloud identity providers

Private Cloud On-Premises Public Cloud Partners SaaS PaaS User Public Cloud SaaS PaaS

Private Cloud On-Premises Partners Public Cloud SaaS PaaS AD Federation Services AD Certificate Services AD Rights Management Services AppFabric Access Control service SAML OAUTH WS-Trust, SAML User Claims based applications

a claims store and so much more Active Directory Domain Service the developer experience Windows Identity Foundation cloud hosted STS AppFabric Access Control Service on-premises STS Active Directory Federation Service on-premises identity management Forefront Identity Manager cloud identity provider + much more Windows Live ID SaaS - Exchange Online, SharePoint Online… Office 365 / BPOS PaaS - a cloud-OS offering a development, service-hosting and service-management environment Windows Azure

Relationship Claims Provider (Security Token Service) Claims Provider (Security Token Service) 2. Get claims 3. Send claims 1. Require claims SUBJECT Resource Provider

End User Configure: Claims Rules (Federation Metadata) Configure: Establish Relationship / Trust (Signing key) 3. Get claims 2. AuthN (Creds) Claims Framework (WIF) Claims Framework (WIF) App Business Logic App Business Logic 4. AuthN (Claims) 1. Get policy 5. Grant/deny access Resource Provider Claims-aware application Security Token Service (AD FS) Directory (AD DS)

Credential Management Group Management User Management Policy Management

Define Role in Hyper-V AzMan or VMM Add Groups to roles Manage Groups in FIM Secure Delegated Administra tion System Center Forefront Identity Manager Private Cloud management

Active Directory Other Providers WS-* and SAML On Premises Use of Active Directory identities and groups through federation Enable seamless access experience with other corporate applications tied to AD Integration with 3 rd party systems through WS-* and SAML 2.0 open standards In the next release of AppFabric Access Control Services (ACS 2.0), single sign-on with popular Internet identity providers

Access Control Service Your Service 2. Request token (pass input claims) 4. Return token (receive output claims) 5. Send message with token 0. Establish trust via key exchange Customer 1. Define access control rules for an identity provider 3. Map input claims to output claims based on access control rules 6. Process token

demo

On Premises AD Online Directory Sync Identity services Provisioning platform Provisioning platform Lync SharePoint Exchange Active Directory Federation Services Trust IdP Directory Store Admin portal Authentication platform IdP Forefront Identity Manager 2010 Small/Medium Customer

Windows Integrated/Kerberos FIM 2010 HR System Workflow ADDS Phone Title Department Manager Group Identity directories Exchange GAL & DL SharePoint Profiles and Access SAP and other apps AD FS 2.0 WS-* and SAML Claims Partner Claims-Aware Applications Claims- Aware Applications SQL Server Role Client List Self Service MS Online Directory Synchronization

Sessions On-Demand & CommunityMicrosoft Certification & Training Resources Resources for IT ProfessionalsResources for Developers Connect. Share. Discuss.

Scan the Tag to evaluate this session now on myTechEd Mobile

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.