Presentation is loading. Please wait.

Presentation is loading. Please wait.

Redmond Protocols Plugfest 2016 Randy Dong AD Family and BYOD Protocol Test Suite Updates Software Engineer.

Published byAlison Page Modified over 8 years ago

Similar presentations

Presentation on theme: "Redmond Protocols Plugfest 2016 Randy Dong AD Family and BYOD Protocol Test Suite Updates Software Engineer."— Presentation transcript:

1 Redmond Protocols Plugfest 2016 Randy Dong AD Family and BYOD Protocol Test Suite Updates Software Engineer

2 Agenda AD Family Protocol Test Suite Overview Updates BYOD Protocol Test Suites Overview Updates How to use (demo on MS-ADFSPIP test suite) Q&A

3 AD Family Protocol Test Suite

4 Test Suite Overview MS-ADTS-Schema MS-ADTS-LDAP MS-ADTS-PublishDC MS-ADTS-Security MS-SAMR MS-LSAD MS-LSAT MS-DRSR MS-FRS2 MS-NRPC MS-APDS All-in- One

5 ClassAttribute domainDNSmsDS-ExpirePasswordsOnSmartCardOnlyAccounts topmsDS-ObjectSoa msDS-SourceAnchor msDS-AuthNPolicymsDS-ServiceAllowedNTLMNetworkAuthentication msDS-UserAllowedNTLMNetworkAuthentication msDS-StrongNTLMPolicy securityPrincipalmsds-tokenGroupNames msds-tokenGroupNamesGlobalAndUniversal msds-tokenGroupNamesNoGCAcceptable Test Suite Updates - I MS-ADTS-Schema Upgraded schema version numbers (AD DS: 87, AD LDS: 31) Added test cases to validate new added schema attributes

6 Test Suite Updates - II MS-SAMR Added test cases for Non-DC configuration MS-DRSR Added test cases for new response message version for method IDL_DRSGetNCChanges Added test cases for new methods: IDL_DRSReadNgcKey, IDL_DRSWriteNgcKey Test Suite bugs fixed

7 BYOD Protocols

8 Protocol Overview Federation Server Farm Active Directory Contoso Company [MS-DVRD] [MS-OAPX] [MS-DVRE] [MS-DVRJ] File Sync Server Company Device Personal Device [MS-ECS] Web Application Server [MS-ADFSPIP] Azure Active Directory Federated Trust [MS-MDE] IT Admin [MS-MDM] Add Device Object https://.../EnrollmentServer Compliance Policies Proxy Allow information workers to access their individual data … that is centrally located on a traditional file server … from all of their devices … from wherever they are … while remaining in compliance with the corporate policies

9 Test Suites Overview 5 Test Suites: MS-DVRD-DVRE MS-OAPX MS-ECS MS-ADFSPIP MS-MDM-MDE Protocols: [MS-DVRD], [MS- DVRE] [MS-OAPX] [MS-ECS], [MS- FSVCA] [MS-ADFSPIP] [MS-MDM], [MS-MDE]

10 MS-ADFSPIP Pre-authentication for HTTP Basic application publishing New test cases were added Propagation of client IP address to backend applications Added validation check for the new HTTP header: X-MS-ADFS-Proxy-Client-IP New AD FS configure properties added Enabled user to configure AD FS behavior level in test suite Test Suite bugs fixed Test Suites Updates Web Application ProxyBrowser Federation Server Farm HTTP Request HTTP 302 Personal Device HTTP Basic (Credentials) Credentials Web Application Server Client IP Address New for Windows Server 2016 SAML WS-Fed OAuth SSL/TLS

11 MS-ADFSPIP Demo

12 Test Topology and Scenarios Federation Server Farm Contoso Company Personal Device Web Application Server Web Application Proxy Scenario 1: Deploy Web Application Proxy 1. Establish Trust 2. Get Service Configuration 3. Get Proxy Configuration Scenario 2: Manage Web Applications 1. Get relying party trusts 2. Add/Delete publish settings for the relying party Scenario 3: Pre-authenticate User Request 1. HTTP Request 2. Pre-authenticate SAML WS-Fed OAuth HTTP Basic 3. Authenticated Request 4. Update Proxy Configuration

13 Test Methodology Federation Server Farm Contoso Company Personal Device Web Application Server Web Application Proxy 1.Synthetic Client and Server Combined (Depend on Testing Scenario) 2.SUT Control Adapter (PowerShell/Interactive) 3.Everything in the same network (For simplicity) 4.Replace SUT (Web Application Proxy) and configure Test Suite Trigger Test Suite (Synthetic Server) Scenario 1: Deploy Proxy Scenario 2: Manage Applications Scenario 3: Pre-authentication Test Suite (Synthetic Server) Test Suite (Synthetic Client) Test Suite

14 Demo

15 Redmond Protocols Plugfest 2016 Questions or Comments?

16 Redmond Protocols Plugfest 2016 Thank You!

Download ppt "Redmond Protocols Plugfest 2016 Randy Dong AD Family and BYOD Protocol Test Suite Updates Software Engineer."

Similar presentations

Office 365 Identity June 2013 Microsoft Office365 4/2/2017

Office 365 Identity June 2013 Microsoft Office365 4/2/2017
Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
 Jan Alexander Program Manager Microsoft Corporation BB43.

 Jan Alexander Program Manager Microsoft Corporation BB43.
Core identity scenarios Federation and synchronization 2 3 Identity management overview 1 Additional features 4.

Core identity scenarios Federation and synchronization 2 3 Identity management overview 1 Additional features 4.
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.

Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
Implementing and Administering AD FS

Implementing and Administering AD FS
Microsoft Ignite /16/2017 4:55 PM

Microsoft Ignite /16/2017 4:55 PM
Implementing ISA Server Caching. Caching Overview ISA Server supports caching as a way to improve the speed of retrieving information from the Internet.

Implementing ISA Server Caching. Caching Overview ISA Server supports caching as a way to improve the speed of retrieving information from the Internet.
Conditional access DirectAccess & automatic VPN Desktop Virtualization.

Conditional access DirectAccess & automatic VPN Desktop Virtualization.
Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:

Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.

Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.
Understanding Active Directory

Understanding Active Directory
UAGSharePoint InternetIntranet.

UAGSharePoint InternetIntranet.
TechEd 2013 4/20/2017 2:02 AM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.

TechEd /20/2017 2:02 AM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Virtual techdays INDIA │ 18-20 august 2010 Secure Collaboration: All You Need to Know about Extending Active Directory Rights Management Services (AD RMS)

Virtual techdays INDIA │ august 2010 Secure Collaboration: All You Need to Know about Extending Active Directory Rights Management Services (AD RMS)
Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.

Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.
On-Premises Cloud On-PremisesHybridCloud.

On-Premises Cloud On-PremisesHybridCloud.
Introduction Please answer the survey questions posted at the end of this meeting. Let us know what sessions you want! Josh Topal at

Introduction Please answer the survey questions posted at the end of this meeting. Let us know what sessions you want! Josh Topal at
Module 1 Introduction to Managing Microsoft® Windows Server® 2008 Environment.

Module 1 Introduction to Managing Microsoft® Windows Server® 2008 Environment.

Similar presentations

Ads by Google