Presentation is loading. Please wait.

Presentation is loading. Please wait.

Virtual techdays INDIA │ 18-20 august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Virtual techdays INDIA │ 18-20 august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –"— Presentation transcript:

1 virtual techdays INDIA │ 18-20 august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist – Identity & Access, Microsoft Corp.

2  Overview of FIM  How FIM can help manage AD  Demo  Various scenarios of using FIM to manage AD virtual techdays INDIA │ 18-20 august 2010 S E S S I O N A G E N D A

3 virtual techdays INDIA │ 18-20 august 2010 Overview of Forefront Identity Manager 2010 (FIM 2010)

4 Identity Lifecycle Manager -> Forefront Identity Manager Identity Synchronization User Provisioning Certificate and Smartcard Management Office Integration for Self-Service Support for 3rd Party CAs Codeless Provisioning Group & DL Management Workflow and Policy UserManagement GroupManagement CredentialManagement Common Platform WorkflowConnectorsLogging Web Service API Synchronization PolicyManagement

5 Credential Management Heterogeneous certificate management with 3rd party CAs Management of multiple credential types, including One Time Passwords Self-service password reset integrated with Windows logon Group Management Rich Office-based self-service group management tools Offline approvals through Office Automated group and distribution list updates User Management Integrated provisioning of identities, credentials, and resources Automated, codeless user provisioning and de-provisioning Self-service profile management Policy Management SharePoint-based console for policy authoring, enforcement & auditing Extensible WS– * APIs and Windows Workflow Foundation workflows Heterogeneous identity synchronization and consistency Forefront Identity Manager - Feature areas 5

6 End User Scenarios Credential Management Group Management User Management Policy Management 6 Integration with Windows logon No need to call help desk Faster time to resolution Request process through Office No waiting for help desk Faster time to resolution Automatic updating of business applications No need to call help desk Faster time to resolution Automatic routing of multiple approvals Approval process through Office Audit trail of approvals

7 IT Administrator Scenarios Credential Management Group Management User Management 7 Policy Management Centralized management Automatic policy enforcement across systems Management of role changes & retirements Generation and delivery of initial one-time use password Integration of smart card & cert enrollment with provisioning Automatic management of group membership Secure access to departmental resources, with audit trail

8 Forefront Identity Manager in Action Directories Custom Self-Service integration LOB Applications FIM Portal ISV Partner Solutions Windows Log On IT Departments Databases Policy Management Credential Management User Management Group Management

9 How does FIM help in managing AD User Lifecycle Management – Creation of users / deletion of users Creating users in specific OU’s – Based on attributes like locations or departments Create OU, if none exist before, automatically Maintaining group memberships – Based on criteria like attribute values Managing Groups and DLs – Allow users to create / manage groups and memberships Self-Service Password reset – Reset your own password based on challenge / response mechanism – Users can unlock their account if locked 9

10 How does FIM help in managing AD Privilege management tool – Users can request for high level of access – Access can be granted based on approvals – Time based criteria Enable Smartcard provisioning – Smartcards can be used as two-factor/Strong authentication Allow user to maintain and manage their own profile – Users can update their information like mobile #, Phone details, etc. 10

11 virtual techdays INDIA │ 18-20 august 2010 DEMO: Managing AD using FIM 2010 Amol R Bhandarkar │

12 Demo scenarios User provisioning / de-provisioning Group membership change Automatic change in OU membership Self-service Password reset Workflow based approval process Creation of DL and managing group memberships 12

13 virtual techdays INDIA │ 18-20 august 2010 RESOURCES  More information about Forefront Identity Manager  www.microsoft.com/fim www.microsoft.com/fim  www.microsoft.com/ilm www.microsoft.com/ilm  http://blogs.technet.com/amolrb http://blogs.technet.com/amolrb

14 virtual techdays THANKS │ 18-20 august 2010 amolrb@microsoft.com │http://blogs.technet.com/amolrb

Download ppt "Virtual techdays INDIA │ 18-20 august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –"

Similar presentations

ADManager Plus Simplify Your Active Directory Management.

ADManager Plus Simplify Your Active Directory Management.
Forefront Identity Manager 2010

Forefront Identity Manager 2010
Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
Identity Manager vNext

Identity Manager vNext
Microsoft Forefront Identity Manager 2010

Microsoft Forefront Identity Manager 2010
Microsoft Forefront Identity Manager 2010 Daniel MEYER Enterprise Technology Architect EMEA.

Microsoft Forefront Identity Manager 2010 Daniel MEYER Enterprise Technology Architect EMEA.
Microsoft Forefront Identity Manager 2010 Henk Den Baes Technology advisor Microsoft Belux.

Microsoft Forefront Identity Manager 2010 Henk Den Baes Technology advisor Microsoft Belux.
Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.

Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.
Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,

Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Integrate into existing systems with PowerShell integration modules Extend by building PS modules to enable integrating into other systems Optimize.

Integrate into existing systems with PowerShell integration modules Extend by building PS modules to enable integrating into other systems Optimize.
Identity and Access Management

Identity and Access Management
Brjann Brekkan Technical Product Manager Microsoft Corp. Session Code: SIA307.

Brjann Brekkan Technical Product Manager Microsoft Corp. Session Code: SIA307.
Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.

Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.
Virtual techdays INDIA │ 22-23 November 2010 SQL Azure Data Sync Shilpa Nirmale │ Associate Manager, Accenture.

Virtual techdays INDIA │ November 2010 SQL Azure Data Sync Shilpa Nirmale │ Associate Manager, Accenture.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.

Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.
Account Reset Console Delegated and secure self password resets Joe Vachon Sales Engineer.

Account Reset Console Delegated and secure self password resets Joe Vachon Sales Engineer.
#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.

#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.

Similar presentations

Ads by Google