Presentation is loading. Please wait.

Presentation is loading. Please wait.

9/13/2018 4:54 PM BRK2332 - How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer.

Published byAbner Lawrence Modified over 6 years ago

Similar presentations

Presentation on theme: "9/13/2018 4:54 PM BRK2332 - How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer."— Presentation transcript:

1 9/13/2018 4:54 PM BRK How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer Experience team Identity Division © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Is the new control plane
9/13/2018 4:54 PM Identity Is the new control plane On-premises / Private cloud © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION. 2

3 Azure Active Directory in the Marketplace Every Office 365 and Microsoft Azure customer uses Azure Active Directory organizations 12.8M users 950M 3rd party apps in Azure AD 272K paid Azure AD / EMS customers 56K of Fortune 500 companies use Azure AD 90% Governance Security Reporting Access Reviews HR App Integration Microsoft Authenticator - Password-less Access Self-Service capabilities SSO to SaaS Azure AD B2C B2B collaboration MDM-auto enrollment / Enterprise State Roaming Privileged Identity Management Azure AD Join Remote Access to on-premises apps Addition of custom cloud apps Conditional Access Multi-Factor Authentication Identity Protection Dynamic Groups Azure AD DS Provisioning-Deprovisioning Azure AD Connect Connect Health Office 365 App Launcher Group-Based Licensing Access Panel/MyApps +30% YoY +45% YoY +200% YoY +74% YoY © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

4 Customers use Azure AD for other SaaS and custom apps
9/13/2018 4:54 PM Google Apps Customers use Azure AD for other SaaS and custom apps Workday ServiceNow Cornerstone OnDemand SuccessFactors Salesforce 272,000 Clever Workplace by Facebook Canvas Active apps Zscaler Two © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

5 Must know about Identity in Office 365
9/13/2018 4:54 PM Cloud identity. Manage your user accounts in Office 365 only. Must know about Identity in Office 365 Synchronized identity. Synchronize on-premises directory with Office 365 and manage your users on-premises. Federated identity. Synchronize on-premises directory objects with Office 365 and manage your users on-premises. Authenticate with federation servers on premises or third party IdaaS. © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 Office 365 Identity Management options
Password Hash Sync  Pass-through Authentication Federated Identity 3rd Party Federated ` Azure Active Directory Azure Active Directory Azure Active Directory Azure Active Directory Azure AD Connect Azure AD Connect Azure AD Connect Authentication Provisioning Azure AD Connect sync AuthN Agent(s) Azure AD Connect sync AD FS Ping Federate Azure AD Connect sync Pros: Cloud based authentication with same password as on-premises. Quickest and Easiest to deploy. Seamless SSO. Can be used with PTA and ADFS. Cons: Disabling or editing user on prem needs sync cycle to complete Pros: Cloud based authentication with PW validation on prem. Minimal on prem footprint Seamless SSO Cons: Legacy Office clients not supported. Pros: Windows Integrated Desktop SSO, Certificate Based Auth, 3rd Party MFA integration Cons: On premises deployment. DMZ deployment. Pros: 3rd party tools and services pre-tested for basic auth scenarios with WS-Fed Cons: Only basic scenarios. Second directory store in cloud. Multiple support channels Provisioning only using PowerShell and Graph API

7 You have Azure AD – use it to enable and protect your business

8 Identity and Access Management Use Cases
Azure AD Connect B2B collaboration Provisioning-Deprovisioning Conditional Access SSO to SaaS Self-Service capabilities Connect Health Multi-Factor Authentication 1 I want to provide my employees secure and easy access to every application from any location and any device Addition of custom cloud apps Access Panel/MyApps Dynamic Groups Identity Protection 2 I want to quickly deploy applications to devices, do more with less and automate Join/Move/Leave processes Remote Access to on-premises apps Azure AD B2C Group-Based Licensing Privileged Identity Management 3 I need my customers and partners to access the apps they need from everywhere and collaborate seamlessly Microsoft Authenticator - Password-less Access Azure AD Join MDM-auto enrollment / Enterprise State Roaming Security Reporting 4 I want to protect access to my resources from advanced threats 5 I need to comply with industry regulation and national data protection laws Azure AD DS Office 365 App Launcher HR App Integration Access Reviews 6 I want to write applications that work with my corporate identities in Azure Active Directory

9 Administrative tasks with Azure AD Premium
Protect Conditional Access incl different policy for each Office 365 service Identity Protection Privileged ID Management (JIT) Manage users Password Writeback to AD MFA for All apps SSO to other SaaS and On-premises apps Manage Groups Dynamic membership Writeback O365 Groups to AD Manage access, provisioning users to SaaS apps Auto Expiration of Office 365 Groups Operating identity bridge Azure AD Connect Health

10 End User Experiences With Azure AD Premium
Don’t have to call helpdesk as often Reset password and unlock user account I can request access to new applications Can add applications to my launcher Quickly get connected and productive with new device or PC Can create and manage both Office 365 Groups and Security Groups Simplifies my daily work Less authentication prompts Access other SaaS and on-premises applications into Office launcher Don’t need to launch VPN to get access to main web apps on premises Single Sign on and single multifactor service across cloud and on premises My Identity is protected Realtime protection of your account MFA when needed and not all the time

11 Repeat Friday 9-945 @ Hyatt Regency Windermere W

Download ppt "9/13/2018 4:54 PM BRK2332 - How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer."

Similar presentations

Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
Identity Manager vNext

Identity Manager vNext
Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.

Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.
Microsoft Ignite /16/2017 4:55 PM

Microsoft Ignite /16/2017 4:55 PM
IT can provide users with a common identity across on-premises or cloud- based services, leveraging Windows Server Active Directory and Azure Active.

IT can provide users with a common identity across on-premises or cloud- based services, leveraging Windows Server Active Directory and Azure Active.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Microsoft Identity and Access Solutions Market Trends and Futures

Microsoft Identity and Access Solutions Market Trends and Futures
Empower Enterprise Mobility Jasbir Gill Azure Mobility.

Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Single Sign-On with Microsoft Azure

Single Sign-On with Microsoft Azure
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.

Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows Infra @MaccaMSOz.

Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows
Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.

Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.
Access resources in a federation partner organization.

Access resources in a federation partner organization.
Identities and Azure AD Premium

Identities and Azure AD Premium
Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.

Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.
Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.

Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.
Enabling the Modern Workstyle with Windows 10 & Azure Active Directory Venkatesh Gopalakrishnan 2016 Redmond Summit | Identity Without Boundaries May 25,

Enabling the Modern Workstyle with Windows 10 & Azure Active Directory Venkatesh Gopalakrishnan 2016 Redmond Summit | Identity Without Boundaries May 25,
EMS in action Hugh Simpson-Wells and Mark Riley 2016 Redmond Summit | Identity Without Boundaries

EMS in action Hugh Simpson-Wells and Mark Riley 2016 Redmond Summit | Identity Without Boundaries
Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD

Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.

Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.

Similar presentations

Ads by Google