Presentation is loading. Please wait.

Presentation is loading. Please wait.

Expertise in Identity & Access Management www.oxfordcomputergroup.com AD, AuthZ and FIM (Oh my!) Laura E. Hunter Identity Architect.

Published byLily Bryan Modified over 9 years ago

Similar presentations

Presentation on theme: "Expertise in Identity & Access Management www.oxfordcomputergroup.com AD, AuthZ and FIM (Oh my!) Laura E. Hunter Identity Architect."— Presentation transcript:

1 Expertise in Identity & Access Management www.oxfordcomputergroup.com AD, AuthZ and FIM (Oh my!) Laura E. Hunter Identity Architect

2 www.oxfordcomputergroup.com Active Directory Authentication, Authorization and Auditing –LDAP-based –Low barrier to entry No separate licensing – you own a Windows server license, you can deploy AD –High levels of penetration in corporate and EDU environments

3 www.oxfordcomputergroup.com AD for Role Management? Which of the following is my phone number? –+1 (215) 380-4476 –215.380.4476 –(215) 380-4476 –215-380-4476 Now…which of those will AD allow me to enter? –Good at replication and publication –Bad at enforcing business rules

4 www.oxfordcomputergroup.com So What Else Is There? Identity Lifecycle Manager –Specifically ILM “2”, a.k.a. FIM 2010 (It’ll ship someday, I swear) –Enforces business rules before writing data to a connected directory “All of Joe Smith’s direct reports will be in a security group called ‘JSDR’” –SQL store provides a single location for “role mining” and historical queries Additional cost/CAL considerations!

5 www.oxfordcomputergroup.com Is There a Middle Ground? Sure. It’s a “build vs. buy” decision Anything that can write to LDAP can write to AD –Constrained proxy apps (usually web-based) or scripts …but the native tools still won’t enforce logic!

6 Expertise in Identity & Access Management www.oxfordcomputergroup.com Thank You!

Download ppt "Expertise in Identity & Access Management www.oxfordcomputergroup.com AD, AuthZ and FIM (Oh my!) Laura E. Hunter Identity Architect."

Similar presentations

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
CASE STUDIES Indiana University University of California, Davis University of Maryland San Joaquin Delta College University of Arizona University of Washington.

CASE STUDIES Indiana University University of California, Davis University of Maryland San Joaquin Delta College University of Arizona University of Washington.
Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
Stored procedures and views You can see definitions for stored procedures and views in the demo databases but you can’t change them. For views, expand.

Stored procedures and views You can see definitions for stored procedures and views in the demo databases but you can’t change them. For views, expand.
Configuring SharePoint 2013 and Office 365 Hybrid – Part 1

Configuring SharePoint 2013 and Office 365 Hybrid – Part 1
Eric Raff. Usergroup up

Eric Raff. Usergroup up
Physical Topology Logical Topology Authentication Licensing.

Physical Topology Logical Topology Authentication Licensing.
How to Succeed with Active Directory Robert Williams, PhD CEO Secure Logistix Corporation.

How to Succeed with Active Directory Robert Williams, PhD CEO Secure Logistix Corporation.
PETs and ID Management Privacy & Security Workshop JC Cannon Privacy Strategist Corporate Privacy Group Microsoft Corporation.

PETs and ID Management Privacy & Security Workshop JC Cannon Privacy Strategist Corporate Privacy Group Microsoft Corporation.
Active Directory: Final Solution to Enterprise System Integration

Active Directory: Final Solution to Enterprise System Integration
Building Enterprise Applications Using Visual Studio ®.NET Enterprise Architect.

Building Enterprise Applications Using Visual Studio ®.NET Enterprise Architect.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Access to Azure EXTENDING OFFICE 365 INTO THE CLOUD George Young Dawson Butte Software SHAREPOINT SATURDAY DENVER 2015 – JANUARY.

Access to Azure EXTENDING OFFICE 365 INTO THE CLOUD George Young Dawson Butte Software SHAREPOINT SATURDAY DENVER 2015 – JANUARY.
CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.

CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.
Agenda Who needs an Architect? Cloud and Security Key Security Differences in Private Cloud Cloud Security Challenges Secondary to Essential Characteristics.

Agenda Who needs an Architect? Cloud and Security Key Security Differences in Private Cloud Cloud Security Challenges Secondary to Essential Characteristics.
Access Web Apps – OK, Now What? EXTENDING ACCESS WEB APPS George Young Dawson Butte Software ACCESS DAY – OCTOBER 2014 - DENVER,

Access Web Apps – OK, Now What? EXTENDING ACCESS WEB APPS George Young Dawson Butte Software ACCESS DAY – OCTOBER DENVER,
Understanding Active Directory

Understanding Active Directory
UAGSharePoint InternetIntranet.

UAGSharePoint InternetIntranet.
Manage & Configure SQL Database on the Cloud Haishi Bai Technical Evangelist Microsoft.

Manage & Configure SQL Database on the Cloud Haishi Bai Technical Evangelist Microsoft.
Active Directory Lecture 3 – Domain Services Primer.

Active Directory Lecture 3 – Domain Services Primer.

Similar presentations

Ads by Google