Abstract image of a woman sitting on books and studying on a laptop

Azure Active Directory

Sovelto, profile picture
Sovelto

This document provides information about an instructor named Mika Seitsonen. It includes his qualifications such as degrees from the University of Nottingham and Lappeenranta University of Technology. It also lists his certifications and experience as a senior consultant specializing in technology experts at Sovelto. The rest of the document discusses topics around Azure Active Directory including what it is, its editions, features, and how it can be used to manage user identities and applications in the cloud and on-premises.

Technology
1 of 29
Downloaded 148 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
Vartti tunnista Azure Active Directory Mika Seitsonen
Kouluttajanne Mika Seitsonen • Faktat • M.Sc., University of Nottingham, U.K. • DI, Lappeenrannan teknillinen yliopisto • Co-author of "Inside Active Directory" • Sovelto • Senior-konsultti, vt. osaamisaluevastaava: Teknologia-asiantuntijat • Microsoft Certified Trainer (MCT) vuodesta 1997, Microsoft Certification ID 414xxx • MCSE: Communications • MCSA: Office 365, Windows 2008, Windows 7 • MS: Implementing Microsoft Azure Infrastructure Solutions • Yhteystiedot • e-mail mika.seitsonen@sovelto.fi • Twitter @MikaSeitsonen • Moottoriurheil(ija)un innokas seuraaja • Kuvattuna Päijänteen Ympäriajo:ssa 2009
Identity considerations: Cloud, Sync or Federated?     Cloud identity provides a solution where all identity resides in the cloud Federated identity allows customers to retain all authentication on-premises Identity sync enables customers to bridge their existing identity into the cloud B2B federated identity allows customers to securely share and collaborate with each other
Self-service Single sign on ••••••••••• Username Identity as the control plane Simple connection Cloud SaaS Azure Office 365Public cloud Other Directories Windows Server Active Directory On-premises Microsoft Azure Active Directory
A comprehensive identity and access management cloud solution. It combines directory services, advanced identity governance, application access management and a rich standards-based platform for developers It is available in 3 editions: free, Basic and Premium What is Azure Active Directory?
No Object Limit No Object Limit No Limit Advanced Security Reports Yes(Advanced)** Premium + Basic Features Group-based access management/provisioning Yes Yes Self-Service Password Reset for cloud users Yes Yes Company Branding (Logon Pages/Access Panel customization) Yes Yes SLA Yes Yes Kurantti informaatio osoitteessa https://msdn.microsoft.com/en-us/library/dn532272.aspx
Azure Active Directory
Azure Active Directory Connect* Microsoft Azure Active Directory Other Directories PowerShell LDAP v3 SQL (ODBC) Web Services ( SOAP, JAVA, REST) *
Azure Active Directory Connect Consolidated deployment assistant for your identity bridge components Progressive learning while configuring the components ADFS is optional DirSync Azure Active Directory Sync FIM+Azure Active Directory Connector Sync Engine
Microsoft Azure Microsoft Azure
SaaS appsMicrosoft Azure Active DirectoryOther Directories
Microsoft Azure Active Directory Identities and applications in one place. Web Apps (Azure Active Directory Application Proxy) SaaS apps Integrated custom apps Other Directories
Microsoft Azure Active Directory Corporate Network DMZ https://app1- contoso.msappproxy.net/ A connector that auto connects to the cloud service http://app1
IT professional
alerts.
alerts.
How it works
http://myapps.microsoft.com
http://myapps.microsoft.com
Azure Active Directory 12-month investments Business to Business Business to Consumers Device Registration Administrative Units Cloud Domain Joined (Windows 10) Conditional Access
Roles Based Access Control Today RBAC to Azure Subscription Tomorrow RBAC to 3rd Party SASS apps Reade r SasS SasS Contributor SasS Owne r SasS SasS SasS Sas S Sas S Reade r ContributorOwne r Assign roles to users and groups at subscription, resource group, or resource level Assignments inherit down the hierarchy Use built-in roles with pre- configured permissions (at preview) Create custom roles (post preview)
B2B: cross-organization collaboration “I need to let my partners access my company’s apps using their own credentials.” Share without complex configuration or duplicate users. A user at a large partner may log into my company’s apps with their Active Directory usernames and passwords. A user at a smaller partner may log into my company’s apps with their Office 365 usernames and passwords. Admin configures sharing for cloud apps. “I can’t email my 25 MB file and need to share it with a partner using Box.com.” Seamlessly provide Azure Active Directory to customers & partners For example, a user at a partner can set up everyone in their company. Users can bring their own email-based or social identities.
Contoso Azure Active Directory Global admins Org-wide permissions Manage global settings Create structure and policy Delegate permissions and resources Regional admins Manage regional users, devices, and applications Set local policy Regional policy and app management “Must login with MFA” “Have license/access to regional apps” Support for distributed organizational models Autonomous mgmt. while keeping common identity and org boundary Delegate administration to subsidiaries User management App procurement and mgmt. Scope policy US East Germany India AsiaEuropeNorth Am Administrative Units: In private preview
Azure Active Directory B2C offering is tailored for enterprises who serve large populations (100’s of thousands to millions) of individual customers, and whose business success depends upon consumer adoption of web applications for improving customer satisfaction and reducing operational costs. Azure Active Directory B2C(Business-to-Consumer ) Azure Active Directory B2Cwill include : Self-Service User registration Login with Social IdP or create your own credentials Optional MFA Bulk user import tools SSO to multiple web sites User interface customization
Cloud Domain Join makes it possible to connect work-owned Windows devices to your company’s Azure Active Directory tenancy in the cloud. Users can sign-in to Windows with their cloud-hosted work credentials and enjoy modern Windows experiences. Cloud Domain Joined Devices Enterprise compliant Services Roaming Settings, Windows backup/Restore, Store access… Data stored in enterprise compliant backend services onAzure. Noneedto addapersonal Microsoft account. SSO from the desktop to org resources SSO from desktop toOffice365 and1,000’s ofenterprise apps, websites andresources. Access enterprise-curated Store andinstall apps using awork account. Management Automatic MDMenrollment during first-run experience. Support for hybrid environments Traditional Domain Joined PCs also benefit from CloudDomain Join functionality whenthe on-prem Active Directory is connectedwith an Azure Active Directory in thecloud. Cloud Domain Join
Mitä sinun pitää tehdä (ellet ole jo tehnyt) • Luo ja sen jälkeen kokeile maksutonta Office 365 -tilausta • http://products.office.com/fi-FI/try • Luo ja sen jälkeen kokeile maksutonta Intune-tilausta • http://www.microsoft.com/en-us/server-cloud/products/microsoft-intune/try.aspx • Muista kirjautua O365-tililläsi • Luo ja sen jälkeen kokeile maksutonta Azure-tilausta • http://azure.microsoft.com • Huom: vaatii luottokortin numeron, luottokorttia ei laskuteta 26
Lisäinformaatiota • EMS-testiympäristö minuuteissa käyttöön http://simon-may.com/get-started-enterprise-mobility-suite-minutes/ • Oma labra pystyyn http://blogs.technet.com/b/mydigitalworkthoughts/ 27
Sovelton kursseja aiheen tiimoilta • Microsoft kumppaneille • Business Anywhere (vain Microsoft-kumppaneille) 26.1. tai 4.5. • Partner Practice Enablement: Microsoft Enterprise Mobility Suite (EMS) 23.-24.2. tai 23.-24.3. • Kaikille asiantuntijoille • Microsoft Intune hallinta 22.-23.4. • 55065 Microsoft Azure IT-asiantuntijoille 11.-13.3. • 20533 Implementing Microsoft Azure Infrastructure Solutions 13.-15.4. • 20532 Developing Microsoft Azure Solutions 10.-13.3. 28
KIITOS! 29

More Related Content

PPTX
Azure active directory
Raju Kumar
 
PDF
Azure Arc Overview from Microsoft
David J Rosenthal
 
PDF
Azure landing zones - Terraform module design considerations - Azure Architec...
DubemJavapi
 
PPTX
5 modern desktop - windows autopilot
Andrew Bettany
 
PDF
Understanding Azure AD
New Horizons Ireland
 
PPTX
Azure Governance
Benjamin Hüpeden
 
PDF
Az 104 session 2 implement and manage azure webapps and container
AzureEzy1
 
PDF
Windows Autopilot - Workplace Nijna Summmit 2020
Ronni Pedersen
 
Azure active directory
Raju Kumar
 
Azure Arc Overview from Microsoft
David J Rosenthal
 
Azure landing zones - Terraform module design considerations - Azure Architec...
DubemJavapi
 
5 modern desktop - windows autopilot
Andrew Bettany
 
Understanding Azure AD
New Horizons Ireland
 
Azure Governance
Benjamin Hüpeden
 
Az 104 session 2 implement and manage azure webapps and container
AzureEzy1
 
Windows Autopilot - Workplace Nijna Summmit 2020
Ronni Pedersen
 

What's hot (20)

PDF
Microsoft Azure Active Directory
David J Rosenthal
 
PPTX
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
Nicholas Vossburg
 
PPTX
Azure security and Compliance
Karina Matos
 
PDF
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
David J Rosenthal
 
PDF
Modern Devices Management
Atanas Gergiminov
 
PPTX
Azure Site Recovery Bootcamp
Asaf Nakash
 
PPTX
EPC Group Intune Practice and Capabilities Overview
EPC Group
 
PDF
An introduction to Defender for Business
Robert Crane
 
PPTX
App Modernization with Microsoft Azure
Microsoft Tech Community
 
PPTX
Introduction to Azure monitor
Praveen Nair
 
PPT
Active Directory Training
Nishad Sukumaran
 
PPTX
Azure Identity and access management
Dinusha Kumarasiri
 
PDF
Az 104 session 6 azure networking part2
AzureEzy1
 
PPTX
Azure Active Directory - An Introduction
Venkatesh Narayanan
 
PDF
Azure 101
Korry Lavoie
 
PPTX
Azure storage
Adam Skibicki
 
PPTX
Deploying Azure DevOps using Terraform
Adin Ermie
 
PPTX
Azure Virtual Desktop Overview.pptx
ceyhan1
 
PPTX
Business Continuity & Disaster Recovery with Microsoft Azure
Aymen Mami
 
PDF
DevOpsMtl, Metal edition – MaaS and Juju
Leonardo Borda
 
Microsoft Azure Active Directory
David J Rosenthal
 
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
Nicholas Vossburg
 
Azure security and Compliance
Karina Matos
 
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
David J Rosenthal
 
Modern Devices Management
Atanas Gergiminov
 
Azure Site Recovery Bootcamp
Asaf Nakash
 
EPC Group Intune Practice and Capabilities Overview
EPC Group
 
An introduction to Defender for Business
Robert Crane
 
App Modernization with Microsoft Azure
Microsoft Tech Community
 
Introduction to Azure monitor
Praveen Nair
 
Active Directory Training
Nishad Sukumaran
 
Azure Identity and access management
Dinusha Kumarasiri
 
Az 104 session 6 azure networking part2
AzureEzy1
 
Azure Active Directory - An Introduction
Venkatesh Narayanan
 
Azure 101
Korry Lavoie
 
Azure storage
Adam Skibicki
 
Deploying Azure DevOps using Terraform
Adin Ermie
 
Azure Virtual Desktop Overview.pptx
ceyhan1
 
Business Continuity & Disaster Recovery with Microsoft Azure
Aymen Mami
 
DevOpsMtl, Metal edition – MaaS and Juju
Leonardo Borda
 
Ad

Viewers also liked (20)

PPTX
CIS 2014: Azure Active Directory (Sean Deuby)
CloudIDSummit
 
PPTX
Azure Active Directory, Practical Guide
Sasha Rosenbaum
 
PPTX
Windows Azure Active Directory
Pavel Revenkov
 
PPTX
Look into Azure Active Directory
Enrique Lima
 
PPTX
Understanding Windows Azure’s Active Directory (AD) and PowerShell Tools
EPC Group
 
PPTX
Windows Azure Active Directory: Identity Management in the Cloud
Chris Dufour
 
PPTX
Microsoft Azure Active Directory
Önder Değer
 
PPTX
Integrating your on-premises Active Directory with Azure and Office 365
nelmedia
 
PPTX
Implementing Azure Active Directory Connect and more
Jason Himmelstein
 
PPTX
Azure Active Directory : on fait le point
Maxime Rastello
 
PPTX
Microsoft System Center 2016 Technical Preview
John Barreto Espinosa
 
PPTX
Windows azure best practices - Dmitry Martynov
Alexey Bokov
 
PDF
Windows Azure Active Directory - from Atidan
David J Rosenthal
 
PDF
Martin Simecek, Microsoft
White Nights Conference
 
PPTX
Azure intoduksjon for it pro 02 data protection public
Morgan Simonsen
 
PPTX
Azure Introduction for IT Pros #1 Mobility
Morgan Simonsen
 
PDF
Microsoft Azure Rights Management
David J Rosenthal
 
PPTX
Scu2016 Azure Best practices
Alexandre Verkinderen
 
PPTX
Cloud Based Rights Management with Azure RMS
Morgan Simonsen
 
PPTX
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Morgan Simonsen
 
CIS 2014: Azure Active Directory (Sean Deuby)
CloudIDSummit
 
Azure Active Directory, Practical Guide
Sasha Rosenbaum
 
Windows Azure Active Directory
Pavel Revenkov
 
Look into Azure Active Directory
Enrique Lima
 
Understanding Windows Azure’s Active Directory (AD) and PowerShell Tools
EPC Group
 
Windows Azure Active Directory: Identity Management in the Cloud
Chris Dufour
 
Microsoft Azure Active Directory
Önder Değer
 
Integrating your on-premises Active Directory with Azure and Office 365
nelmedia
 
Implementing Azure Active Directory Connect and more
Jason Himmelstein
 
Azure Active Directory : on fait le point
Maxime Rastello
 
Microsoft System Center 2016 Technical Preview
John Barreto Espinosa
 
Windows azure best practices - Dmitry Martynov
Alexey Bokov
 
Windows Azure Active Directory - from Atidan
David J Rosenthal
 
Martin Simecek, Microsoft
White Nights Conference
 
Azure intoduksjon for it pro 02 data protection public
Morgan Simonsen
 
Azure Introduction for IT Pros #1 Mobility
Morgan Simonsen
 
Microsoft Azure Rights Management
David J Rosenthal
 
Scu2016 Azure Best practices
Alexandre Verkinderen
 
Cloud Based Rights Management with Azure RMS
Morgan Simonsen
 
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Morgan Simonsen
 
Ad

Similar to Azure Active Directory (20)

PPTX
JoTechies - Cloud identity
JoTechies
 
PPTX
2018 November - AZUGDK - Azure AD
Peter Selch Dahl
 
PDF
Identity and Access Management from Microsoft and Razor Technology
David J Rosenthal
 
PPTX
Azure - Identity as a service
BizTalk360
 
PPTX
Microsoft Azure AD architecture and features
ssuser381403
 
PPTX
Azure-AD.pptx
ssuser9dddf7
 
PPTX
Análisis de riesgos en Azure y protección de la información
Plain Concepts
 
PDF
Premier Webcast - Identity Management with Windows Azure AD
uberbaum
 
PPTX
Microsoft Azure Kimlik Yönetimi
Önder Değer
 
PDF
CIAOPS Need to Know Azure Webinar - January 2018
Robert Crane
 
PDF
MS Cloud Identity and Access Infographic 2015 (1)
Luís Serra Libório
 
PDF
Ms cloud identity and access infographic 2015
Kesavan Munuswamy
 
PPTX
What's new in Azure Active Directory and what's coming new ?
Vignesh Ganesan I Microsoft MVP
 
PDF
AZ-104 Course Training Presentation_KoFi.pdf
OlivierLumeau1
 
PPTX
Using Windows Azure for Solving Identity Management Challenges
Michael Collier
 
PPTX
Azure Community Tour 2019 - AZUGDK
Peter Selch Dahl
 
PPTX
Azure Day 1.pptx
masbulosoke
 
PDF
15th December 2016 - Microsoft Paddington Vuzion Partner Event
Vuzion
 
PPTX
Azure Active Directory Identity
Brice McDowell
 
PDF
Security As A Service
Olav Tvedt
 
JoTechies - Cloud identity
JoTechies
 
2018 November - AZUGDK - Azure AD
Peter Selch Dahl
 
Identity and Access Management from Microsoft and Razor Technology
David J Rosenthal
 
Azure - Identity as a service
BizTalk360
 
Microsoft Azure AD architecture and features
ssuser381403
 
Azure-AD.pptx
ssuser9dddf7
 
Análisis de riesgos en Azure y protección de la información
Plain Concepts
 
Premier Webcast - Identity Management with Windows Azure AD
uberbaum
 
Microsoft Azure Kimlik Yönetimi
Önder Değer
 
CIAOPS Need to Know Azure Webinar - January 2018
Robert Crane
 
MS Cloud Identity and Access Infographic 2015 (1)
Luís Serra Libório
 
Ms cloud identity and access infographic 2015
Kesavan Munuswamy
 
What's new in Azure Active Directory and what's coming new ?
Vignesh Ganesan I Microsoft MVP
 
AZ-104 Course Training Presentation_KoFi.pdf
OlivierLumeau1
 
Using Windows Azure for Solving Identity Management Challenges
Michael Collier
 
Azure Community Tour 2019 - AZUGDK
Peter Selch Dahl
 
Azure Day 1.pptx
masbulosoke
 
15th December 2016 - Microsoft Paddington Vuzion Partner Event
Vuzion
 
Azure Active Directory Identity
Brice McDowell
 
Security As A Service
Olav Tvedt
 

More from Sovelto (20)

PDF
LOISTO-palvelu
Sovelto
 
PDF
Sovelto Channel -esittely
Sovelto
 
PDF
Windows 10 hallinnan näkökulmasta
Sovelto
 
PDF
Windows 10 käyttäjän näkökulmasta
Sovelto
 
PDF
Tilaisuuden avaus: Kalaparvi liikkuu
Sovelto
 
PDF
Ansaintamallin voi muuttaa
Sovelto
 
PDF
Osallista ihmiset mukaan muutokseen
Sovelto
 
PDF
Ajankohtaista tutkimustietoa
Sovelto
 
PDF
Yhteisöllinen tuottavuus liiketoiminnan tukena
Sovelto
 
PDF
Hyvinvointi ja tuottavuus
Sovelto
 
PDF
Tietotyön uusi kulttuuri
Sovelto
 
PDF
Intune ja Azure RMS
Sovelto
 
PDF
3D-tulostaminen ja sen hyödyt käytännössä
Sovelto
 
PDF
​Tervetuloa tutustumaan tehokkaampaan tuotekehitykseen
Sovelto
 
PDF
Seminaarin avaussanat
Sovelto
 
PDF
Esimiehen työ on palvelua, Tilannejohtaminen
Sovelto
 
PPTX
Miten yritysarkkitehtuurilla kehitetään strategista johtamista
Sovelto
 
PDF
Miten yritysarkkitehtuurilla parannetaan strategista johtamista?
Sovelto
 
PDF
Case Kouvolan kaupunki: Millaisia haasteita olemme kohdanneet kokonaisarkkite...
Sovelto
 
PDF
Mitä tapahtuu, jos mitään ei tehdä?
Sovelto
 
LOISTO-palvelu
Sovelto
 
Sovelto Channel -esittely
Sovelto
 
Windows 10 hallinnan näkökulmasta
Sovelto
 
Windows 10 käyttäjän näkökulmasta
Sovelto
 
Tilaisuuden avaus: Kalaparvi liikkuu
Sovelto
 
Ansaintamallin voi muuttaa
Sovelto
 
Osallista ihmiset mukaan muutokseen
Sovelto
 
Ajankohtaista tutkimustietoa
Sovelto
 
Yhteisöllinen tuottavuus liiketoiminnan tukena
Sovelto
 
Hyvinvointi ja tuottavuus
Sovelto
 
Tietotyön uusi kulttuuri
Sovelto
 
Intune ja Azure RMS
Sovelto
 
3D-tulostaminen ja sen hyödyt käytännössä
Sovelto
 
​Tervetuloa tutustumaan tehokkaampaan tuotekehitykseen
Sovelto
 
Seminaarin avaussanat
Sovelto
 
Esimiehen työ on palvelua, Tilannejohtaminen
Sovelto
 
Miten yritysarkkitehtuurilla kehitetään strategista johtamista
Sovelto
 
Miten yritysarkkitehtuurilla parannetaan strategista johtamista?
Sovelto
 
Case Kouvolan kaupunki: Millaisia haasteita olemme kohdanneet kokonaisarkkite...
Sovelto
 
Mitä tapahtuu, jos mitään ei tehdä?
Sovelto
 

Recently uploaded (20)

PPTX
Microsoft User Copilot Training Slide Deck
zohoron1
 
PDF
Electrocardiogram sequences data analytics and classification using unsupervi...
IAESIJAI
 
PPTX
future_of_ai_comprehensive_20250822032121.pptx
forrandomuse090
 
PDF
Introduction to MCP and A2A Protocols: Enabling Agent Communication
Maxim Salnikov
 
PDF
Transform-Your-Streaming-Platform-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
PDF
“The Future of Visual AI: Efficient Multimodal Intelligence,” a Keynote Prese...
Edge AI and Vision Alliance
 
PDF
The-2025-Engineering-Revolution-AI-Quality-and-DevOps-Convergence.pdf
Kalilur Rahman
 
PDF
AI.gov: A Trojan Horse in the Age of Artificial Intelligence
Michael Weaver
 
DOCX
Basics of Cloud Computing - Cloud Ecosystem
suthak11
 
PPTX
Internet of Everything -Basic concepts details
sendilkumar66
 
PDF
A hybrid framework for wild animal classification using fine-tuned DenseNet12...
IAESIJAI
 
PDF
MENA-ECEONOMIC-CONTEXT-VC MENA-ECEONOMIC
Mustafa Kuğu
 
PDF
Auditboard EB SOX Playbook 2023 edition.
DROK2
 
PDF
giants, standing on the shoulders of - by Daniel Stenberg
Daniel Stenberg
 
PPTX
SGT Report The Beast Plan and Cyberphysical Systems of Control
hopegirl587
 
PDF
IT-ITes Industry bjjbnkmkhkhknbmhkhmjhjkhj
yatharthjutt100311
 
PDF
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
PDF
Planning-an-Audit-A-How-To-Guide-Checklist-WP.pdf
DROK2
 
PPTX
Module 1 Introduction to Web Programming .pptx
kamleshkc191
 
PDF
Rapid Prototyping: A lecture on prototyping techniques for interface design
Mark Billinghurst
 
Microsoft User Copilot Training Slide Deck
zohoron1
 
Electrocardiogram sequences data analytics and classification using unsupervi...
IAESIJAI
 
future_of_ai_comprehensive_20250822032121.pptx
forrandomuse090
 
Introduction to MCP and A2A Protocols: Enabling Agent Communication
Maxim Salnikov
 
Transform-Your-Streaming-Platform-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
“The Future of Visual AI: Efficient Multimodal Intelligence,” a Keynote Prese...
Edge AI and Vision Alliance
 
The-2025-Engineering-Revolution-AI-Quality-and-DevOps-Convergence.pdf
Kalilur Rahman
 
AI.gov: A Trojan Horse in the Age of Artificial Intelligence
Michael Weaver
 
Basics of Cloud Computing - Cloud Ecosystem
suthak11
 
Internet of Everything -Basic concepts details
sendilkumar66
 
A hybrid framework for wild animal classification using fine-tuned DenseNet12...
IAESIJAI
 
MENA-ECEONOMIC-CONTEXT-VC MENA-ECEONOMIC
Mustafa Kuğu
 
Auditboard EB SOX Playbook 2023 edition.
DROK2
 
giants, standing on the shoulders of - by Daniel Stenberg
Daniel Stenberg
 
SGT Report The Beast Plan and Cyberphysical Systems of Control
hopegirl587
 
IT-ITes Industry bjjbnkmkhkhknbmhkhmjhjkhj
yatharthjutt100311
 
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
Planning-an-Audit-A-How-To-Guide-Checklist-WP.pdf
DROK2
 
Module 1 Introduction to Web Programming .pptx
kamleshkc191
 
Rapid Prototyping: A lecture on prototyping techniques for interface design
Mark Billinghurst
 

Azure Active Directory

  • 1. Vartti tunnista Azure Active Directory Mika Seitsonen
  • 2. Kouluttajanne Mika Seitsonen • Faktat • M.Sc., University of Nottingham, U.K. • DI, Lappeenrannan teknillinen yliopisto • Co-author of "Inside Active Directory" • Sovelto • Senior-konsultti, vt. osaamisaluevastaava: Teknologia-asiantuntijat • Microsoft Certified Trainer (MCT) vuodesta 1997, Microsoft Certification ID 414xxx • MCSE: Communications • MCSA: Office 365, Windows 2008, Windows 7 • MS: Implementing Microsoft Azure Infrastructure Solutions • Yhteystiedot • e-mail [email protected] • Twitter @MikaSeitsonen • Moottoriurheil(ija)un innokas seuraaja • Kuvattuna Päijänteen Ympäriajo:ssa 2009
  • 3. Identity considerations: Cloud, Sync or Federated?     Cloud identity provides a solution where all identity resides in the cloud Federated identity allows customers to retain all authentication on-premises Identity sync enables customers to bridge their existing identity into the cloud B2B federated identity allows customers to securely share and collaborate with each other
  • 4. Self-service Single sign on ••••••••••• Username Identity as the control plane Simple connection Cloud SaaS Azure Office 365Public cloud Other Directories Windows Server Active Directory On-premises Microsoft Azure Active Directory
  • 5. A comprehensive identity and access management cloud solution. It combines directory services, advanced identity governance, application access management and a rich standards-based platform for developers It is available in 3 editions: free, Basic and Premium What is Azure Active Directory?
  • 6. No Object Limit No Object Limit No Limit Advanced Security Reports Yes(Advanced)** Premium + Basic Features Group-based access management/provisioning Yes Yes Self-Service Password Reset for cloud users Yes Yes Company Branding (Logon Pages/Access Panel customization) Yes Yes SLA Yes Yes Kurantti informaatio osoitteessa https://msdn.microsoft.com/en-us/library/dn532272.aspx
  • 8. Azure Active Directory Connect* Microsoft Azure Active Directory Other Directories PowerShell LDAP v3 SQL (ODBC) Web Services ( SOAP, JAVA, REST) *
  • 9. Azure Active Directory Connect Consolidated deployment assistant for your identity bridge components Progressive learning while configuring the components ADFS is optional DirSync Azure Active Directory Sync FIM+Azure Active Directory Connector Sync Engine
  • 11. SaaS appsMicrosoft Azure Active DirectoryOther Directories
  • 12. Microsoft Azure Active Directory Identities and applications in one place. Web Apps (Azure Active Directory Application Proxy) SaaS apps Integrated custom apps Other Directories
  • 13. Microsoft Azure Active Directory Corporate Network DMZ https://app1- contoso.msappproxy.net/ A connector that auto connects to the cloud service http://app1
  • 20. Azure Active Directory 12-month investments Business to Business Business to Consumers Device Registration Administrative Units Cloud Domain Joined (Windows 10) Conditional Access
  • 21. Roles Based Access Control Today RBAC to Azure Subscription Tomorrow RBAC to 3rd Party SASS apps Reade r SasS SasS Contributor SasS Owne r SasS SasS SasS Sas S Sas S Reade r ContributorOwne r Assign roles to users and groups at subscription, resource group, or resource level Assignments inherit down the hierarchy Use built-in roles with pre- configured permissions (at preview) Create custom roles (post preview)
  • 22. B2B: cross-organization collaboration “I need to let my partners access my company’s apps using their own credentials.” Share without complex configuration or duplicate users. A user at a large partner may log into my company’s apps with their Active Directory usernames and passwords. A user at a smaller partner may log into my company’s apps with their Office 365 usernames and passwords. Admin configures sharing for cloud apps. “I can’t email my 25 MB file and need to share it with a partner using Box.com.” Seamlessly provide Azure Active Directory to customers & partners For example, a user at a partner can set up everyone in their company. Users can bring their own email-based or social identities.
  • 23. Contoso Azure Active Directory Global admins Org-wide permissions Manage global settings Create structure and policy Delegate permissions and resources Regional admins Manage regional users, devices, and applications Set local policy Regional policy and app management “Must login with MFA” “Have license/access to regional apps” Support for distributed organizational models Autonomous mgmt. while keeping common identity and org boundary Delegate administration to subsidiaries User management App procurement and mgmt. Scope policy US East Germany India AsiaEuropeNorth Am Administrative Units: In private preview
  • 24. Azure Active Directory B2C offering is tailored for enterprises who serve large populations (100’s of thousands to millions) of individual customers, and whose business success depends upon consumer adoption of web applications for improving customer satisfaction and reducing operational costs. Azure Active Directory B2C(Business-to-Consumer ) Azure Active Directory B2Cwill include : Self-Service User registration Login with Social IdP or create your own credentials Optional MFA Bulk user import tools SSO to multiple web sites User interface customization
  • 25. Cloud Domain Join makes it possible to connect work-owned Windows devices to your company’s Azure Active Directory tenancy in the cloud. Users can sign-in to Windows with their cloud-hosted work credentials and enjoy modern Windows experiences. Cloud Domain Joined Devices Enterprise compliant Services Roaming Settings, Windows backup/Restore, Store access… Data stored in enterprise compliant backend services onAzure. Noneedto addapersonal Microsoft account. SSO from the desktop to org resources SSO from desktop toOffice365 and1,000’s ofenterprise apps, websites andresources. Access enterprise-curated Store andinstall apps using awork account. Management Automatic MDMenrollment during first-run experience. Support for hybrid environments Traditional Domain Joined PCs also benefit from CloudDomain Join functionality whenthe on-prem Active Directory is connectedwith an Azure Active Directory in thecloud. Cloud Domain Join
  • 26. Mitä sinun pitää tehdä (ellet ole jo tehnyt) • Luo ja sen jälkeen kokeile maksutonta Office 365 -tilausta • http://products.office.com/fi-FI/try • Luo ja sen jälkeen kokeile maksutonta Intune-tilausta • http://www.microsoft.com/en-us/server-cloud/products/microsoft-intune/try.aspx • Muista kirjautua O365-tililläsi • Luo ja sen jälkeen kokeile maksutonta Azure-tilausta • http://azure.microsoft.com • Huom: vaatii luottokortin numeron, luottokorttia ei laskuteta 26
  • 27. Lisäinformaatiota • EMS-testiympäristö minuuteissa käyttöön http://simon-may.com/get-started-enterprise-mobility-suite-minutes/ • Oma labra pystyyn http://blogs.technet.com/b/mydigitalworkthoughts/ 27
  • 28. Sovelton kursseja aiheen tiimoilta • Microsoft kumppaneille • Business Anywhere (vain Microsoft-kumppaneille) 26.1. tai 4.5. • Partner Practice Enablement: Microsoft Enterprise Mobility Suite (EMS) 23.-24.2. tai 23.-24.3. • Kaikille asiantuntijoille • Microsoft Intune hallinta 22.-23.4. • 55065 Microsoft Azure IT-asiantuntijoille 11.-13.3. • 20533 Implementing Microsoft Azure Infrastructure Solutions 13.-15.4. • 20532 Developing Microsoft Azure Solutions 10.-13.3. 28