Presentation is loading. Please wait.

Presentation is loading. Please wait.

Office 365 Identity Management

Published byRoger Haynes Modified over 6 years ago

Similar presentations

Presentation on theme: "Office 365 Identity Management"— Presentation transcript:

1 Office 365 Identity Management

2 Meet Paul Andrew | @pndrw
Office 365 Technical Product Manager Office 365 datacenter, networking, identity management Passion for informing and inspiring IT Professionals to create simpler solutions to complex problems Meet Nasos Kladakis Azure Senior Product Marketing Manager Azure Active Directory Azure Multi-Factor Authentication

3 M5: Multi-Factor Authentication use with Office 365

4 Agenda What is Multi-Factor Authentication
Multi-Factor Authentication in Office 365 Azure Multi-Factor Authentication Demo of Office 365 Multi-Factor Authentication

5 What is Multi-Factor Authentication?
11/13/2018 What is Multi-Factor Authentication? Multiple factors are required for sign-In Familiar to consumer cloud service users such as the Microsoft Account Simple block to password compromise from another country/region Addresses regulatory compliance and high risk user scenarios AKA two-factor, 2FA, MFA, strong authentication Two or more of the following factors: Something you know - a password or PIN Something you have - a phone, credit card or hardware token Something you are - a fingerprint, hand geometry, retinal scan or other biometric Stronger when using two different channels (out-of-band) Types of multi-factor authentication: Hardware OTP Tokens Phone-Based Authentication: Certificates Phone Call, Text Message, and Push Smart Cards Software OTP Tokens © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 Enterprise authentication using any phone
Build 2012 11/13/2018 Enterprise authentication using any phone Multi-Factor Authentication for Office 365 Mobile Apps Phone Calls Text Messages Push Notification One-Time-Passcode (OTP) Token Text One-Time Passcode (OTP) by Text Out-of-Band* Call Excludes Office 365 dedicated SKU and SMB SKUs. Upgradeable to Azure Multi-Factor Authentication *Out of band refers to being able to use a second factor with no modification to the existing app UX. © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7

8 App Passwords Provides Office rich client login as alternative to Multi-Factor Authentication 16 characters randomly generated, viewed once Up to 40. Use one on multiple applications or different one for each application.

9 Multi-Factor Authentication Use Cases
Federated Users Office 365 resources just needs Multi-Factor Authentication for Office 365 Use Azure Multi-Factor Authentication Server for other ADFS connected applications Hybrid On-premises server applications require Azure Multi-Factor Authentication Server Example: MSIT Lync on-premises and Exchange Online App Password for Administrator Office 365 administrative accounts have had MFA, but no App Password PowerShell Create a service account which is an administrator and control access

10 Azure Multi-Factor Authentication
11/13/2018 Azure Multi-Factor Authentication © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

11 Azure Multi-Factor Authentication
TechReady 18 11/13/2018 Azure Multi-Factor Authentication Do I need MFA for Office 365 or Azure MFA? Multi-Factor Authentication for Office 365 Included in Office 365 SKU Secures Office 365 resources for any user Multi-Factor Authentication for Azure Administrators Included in Windows Azure Subscription Secures Azure resources for admins Azure Multi-Factor Authentication Advanced MFA features for Office 365 and Azure subscriptions Office 365 Hybrid architectures including on-premises servers Secures resources for multiple SaaS apps Secures resources that spans on-premises and cloud including VPN, LOB apps Includes MFA Server, SDK and Azure MFA portal Azure MFA Requires a Windows Azure subscription Use of Office 365 with Azure MFA requires a link from the Windows Azure subscription to the Office 365 tenant Having MFA for Office 365 does not reduce Windows Azure MFA subscription costs © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

12 Comparing Azure MFA and MFA for Office 365
Build 2012 11/13/2018 Comparing Azure MFA and MFA for Office 365 MFA for Office 365/Azure Administrators Azure Multi-Factor Authentication Administrators can Enable/Enforce MFA to end-users Yes Use Mobile app (online and OTP) as second authentication factor Use Phone call as second authentication factor Use SMS as second authentication factor Application passwords for non-browser clients (e.g. Outlook, Lync) Default Microsoft greetings during authentication phone calls Suspend MFA from known devices Custom greetings during authentication phone calls Fraud alert MFA SDK Security Reports MFA for on-premises applications/ MFA Server. One-Time Bypass Block/Unblock Users Customizable caller ID for authentication phone calls Event Confirmation Trusted IPs © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

13 Demo mfa End User Experience

14 M5 Summary: Multi-Factor Authentication use with Office 365
What is Multi-Factor Authentication Phone as Second Factor App Password Compare Multi-Factor Authentication options for Office 365

15

Download ppt "Office 365 Identity Management"

Similar presentations

Windows 8 (1) (2) (3) Windows 8 (1) (2) (3)

Windows 8 (1) (2) (3) Windows 8 (1) (2) (3)
Feature: Identity Management - Login © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

Feature: Identity Management - Login © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.
© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
MIX 09 4/15/2017 11:14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

MIX 09 4/15/ :14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Feature: Web Client Keyboard Shortcuts © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.

Feature: Web Client Keyboard Shortcuts © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.
Session 1.

Session 1.
Built by Developers for Developers…. © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

Built by Developers for Developers…. © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
Feature: Assign an Item to Multiple Sites © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

Feature: Assign an Item to Multiple Sites © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
Windows 8 (1) (2) (3) Windows 8 (1) (2) (3)

Windows 8 (1) (2) (3) Windows 8 (1) (2) (3)
Windows Azure Connect Name Title Microsoft Corporation.

Windows Azure Connect Name Title Microsoft Corporation.
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.
Feature: Customer Combiner and Modifier © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.

Feature: Customer Combiner and Modifier © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.
© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

customer.

customer.
demo © 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

demo © 2008 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
Secure Windows App Development. Authentication.

Secure Windows App Development. Authentication.
Browser Identity Provider Access Control Application.

Browser Identity Provider Access Control Application.
demo Demo.

demo Demo.
demo QueryForeign KeyInstance /sm:body()/x:Order/x:Delivery/y:TrackingId1Z01234567893.

demo QueryForeign KeyInstance /sm:body()/x:Order/x:Delivery/y:TrackingId1Z

Similar presentations

Ads by Google