Identity as the foundation Azure AD Connect Windows

Identity as the foundation Azure AD Connect Windows Server Active Directory Other Directories Self-service

On-boarding to Azure AD & Office 365 Azure AD Connect Consolidated deployment assistant for

Partner Resources Saa. S Azure Office 365 Cloud

#Map given name claim # Map surname claim # Map common name claim

# Connection info # How to locate user objects in directory # Claims for

“After migrating from ADFS 2. 0 to ADFS 3. 0, Azure AD Connect Health

Introducing ‘Conditional Access Control’ User attributes User identity Group memberships Auth strength (MFA) Devices

Device Registration with the Azure AD Device Registration Service Discover & Authenticate Contoso dan@contoso.

Browser Native app WS-Fed, SAML 2. 0, Open. ID Connect OAuth 2. 0 (OBO)

# Modify the sign-in page description for a specific RP # Modify illustration image

(10) - Microsoft Surface Pro 3 Core i 5 256 GB (30) – Xbox

NO PURCHASE NECESSARY. Open only to event attendees. Winners must be present to win.

Slides: 44

Download presentation

Identity as the foundation Azure AD Connect Windows Server Active Directory Other Directories Self-service Single sign on Username • • • Saa. S Azure Public cloud On-premises Microsoft Azure Active Directory Office 365 Cloud

On-boarding to Azure AD & Office 365 Azure AD Connect Consolidated deployment assistant for your identity bridge components Dir. Sync Azure AD Sync FIM+Azure AD Connector ADFS Sync Engine ADFS • • • Express Settings Multi-forest support Password # Sync Streamlined fed setup with ADFS Configurable Sync settings ADFS is optional, can addresses complex enterprise deployments Domain Join SSO, Enforcement of AD login policy, Smart Card or 3 rd party MFA BRK 3862: Extending On-Premises Directories to the Cloud Made Easy with Azure AD Connect http: //blogs. technet. com/b/ad/archive/2014/12/15/azure-ad-connect-one-simple-fast-lightweight-tool-to-connect-active-directory-and-azure-active-directory. aspx

Partner Resources Saa. S Azure Office 365 Cloud

#Map given name claim # Map surname claim # Map common name claim

# Connection info # How to locate user objects in directory # Claims for authenticated users # General claims provider properties # Optional – supply user name suffix if you want to use Ws-Trust

“After migrating from ADFS 2. 0 to ADFS 3. 0, Azure AD Connect Health helped us identify critical issues with our system such as missing QFEs, connectivity issues and missing certificates or certificate expirations. The service is very user friendly and helpful for keeping the health of the federation service in check. ” – Fortune 500 Consulting Organization

Introducing ‘Conditional Access Control’ User attributes User identity Group memberships Auth strength (MFA) Devices Authenticated MDM Managed (Intune) Compliant with policies Not lost/stolen Application Business sensitivity Conditional access control Other Inside corp. network Outside corp. network Risk profile On-Premises applications

Device Registration with the Azure AD Device Registration Service Discover & Authenticate Contoso dan@contoso. com user @ device

Browser Native app WS-Fed, SAML 2. 0, Open. ID Connect OAuth 2. 0 (OBO) Web application OAuth 2. 0 Web API OAuth Web API Server app Oauth (OBO) OAuth 2. 0 Standard-based, http-based protocols for maximum platform reach

# Modify the sign-in page description for a specific RP # Modify illustration image or logo to show RP branding # Use specific Java. Script using customized onload. JS to handle UI element changes on a per applications basis

(10) - Microsoft Surface Pro 3 Core i 5 256 GB (30) – Xbox One Master Chief Collection Bundle (55) – Microsoft Band Offers throughout the week

NO PURCHASE NECESSARY. Open only to event attendees. Winners must be present to win. Game ends May 9 th, 2015. For Official Rules, see The Cloud and Enterprise Lounge or myignite. com/challenge

http: //myignite. microsoft. com