Presentation is loading. Please wait.

Presentation is loading. Please wait.

Technofolies Brussels, Oct 29 & 30. Technofolies.

Published byCaren Richardson Modified over 9 years ago

Similar presentations

Presentation on theme: "Technofolies Brussels, Oct 29 & 30. Technofolies."— Presentation transcript:

1 Technofolies Brussels, Oct 29 & 30

2 Technofolies

3 Welcome Consumerization.

4 Demo

5 Why Cloud Services

6 Kerberos <token

7 AD FS Definitions AD FS = Active Directory Federation Service!  Service on top of AD. Replace the Kerberos token by a trusted token. The token contains a collection of claims (Key – Value). Trust is based on certificates. Delagate the authorization from the application to an external authority. Service Token Service (STS) is the application delivering the token. AD FS is a STS. Relaying Party (RP) is a backend application using token from the STS.

8 AD FS Relaying parties

9 AD FS Tool

10 AD FS Active Mode Domain Controller 1 3 Kerberos Service Ticket Trust ADFS 3.0 2 SAML Token

11 AD FS Passive Mode Domain Controller 1, Request a Page 2, Redirect Kerberos Service Ticket ADFS 3.0 WWW 3 SAML Token 4 5

12 AD FS Full Picture Domain Controller 1, Request a Page 2, Redirect Kerberos Service Ticket ADFS 3.0 WWW 3 SAML Token 4 5 6 7 8

13 AD FS Internet Authentication Domain Controller 1, Request a Page 2, Redirect UserName / Password MultiFactor Auth. E-Token, etc… ADFS 3.0 WWW 3 SAML Token 4 5 6 7 8

14 AD FS Cloud Service Domain Controller 1, Request a Page 2, Redirect UserName / Password MultiFactor Auth. E-Token, etc… ADFS 3.0 WWW 3 SAML Token 4 5 6 7 8 Kerberos Service Ticket Certificate Delegation Authentication.

15 Distributed Architecture WWW Kerberos Service Ticket UserName / Password MultiFactor Auth. E-Token, etc…

16 AD FS Cross Companies WWW Trusted AD FSClient Company AD FS Service Company 1 & 9 2 3 4 5 6 7 8

17 AD FS Environment splitting Domain Controller Dev TestAcc Prod.

18 AD FS Limitation

19 TechNet

20 TechNet on Twitter

21 Azure trial for free Get your free Azure trial at Azure.com/trial

22 Contacts Gilles Flisch technofolies@flisch.be Arnaud JUND a.jund@neomytic.be Vincent FIEVEZ v.fievez@ephec.be See you next year 2015

23 Note

Download ppt "Technofolies Brussels, Oct 29 & 30. Technofolies."

Similar presentations

Active Directory Federation Services How does it really work?

Active Directory Federation Services How does it really work?
Office 365 Identity June 2013 Microsoft Office365 4/2/2017

Office 365 Identity June 2013 Microsoft Office365 4/2/2017
Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.

Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.
SIM403. Claims Provider Trust Relying Party x Relying Party Trust Claims Provider Trust Your ADFS STS Partner ADFS STS & IP Relying Party Trust Partner.

SIM403. Claims Provider Trust Relying Party x Relying Party Trust Claims Provider Trust Your ADFS STS Partner ADFS STS & IP Relying Party Trust Partner.
Eric Raff. Usergroup up

Eric Raff. Usergroup up
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
The EC PERMIS Project David Chadwick

The EC PERMIS Project David Chadwick
Windows azure app fab security steve plank “planky” architectural evangelist, microsoft uk

Windows azure app fab security steve plank “planky” architectural evangelist, microsoft uk
SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue

SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue
Identity & Access Management Conversation Karlien Vanden Eynde Product Marketing Manager.

Identity & Access Management Conversation Karlien Vanden Eynde Product Marketing Manager.
Jax ArcSig 3/22/2011 Keith Tingle. About Me Keith Tingle Lender Processing Services

Jax ArcSig 3/22/2011 Keith Tingle. About Me Keith Tingle Lender Processing Services
WebFTS as a first WLCG/HEP FIM pilot

WebFTS as a first WLCG/HEP FIM pilot
GRDevDay March 21, 2015 Cloud-based Identity for Applications.

GRDevDay March 21, 2015 Cloud-based Identity for Applications.
Every effort has been made to make this seminar as complete and as accurate as possible but no warranty or fitness is implied. The presenter, authors,

Every effort has been made to make this seminar as complete and as accurate as possible but no warranty or fitness is implied. The presenter, authors,
Active Directory Integration with Microsoft Office 365

Active Directory Integration with Microsoft Office 365
Conditional access DirectAccess & automatic VPN Desktop Virtualization.

Conditional access DirectAccess & automatic VPN Desktop Virtualization.
Active Directory Integration with Microsoft Office 365 Ross Adams & Jono Luk Program Managers Microsoft Corporation OSP321.

Active Directory Integration with Microsoft Office 365 Ross Adams & Jono Luk Program Managers Microsoft Corporation OSP321.
EMEA Jürgen Pfeifer Architect Microsoft EMEA HQ Kevin Sangwell Architect Microsoft EMEA HQ

EMEA Jürgen Pfeifer Architect Microsoft EMEA HQ Kevin Sangwell Architect Microsoft EMEA HQ
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Troubleshooting Federation, AD FS 2.0, and More…

Troubleshooting Federation, AD FS 2.0, and More…

Similar presentations

Ads by Google