Integration: Office 365 Brian Arkills Software Engineer, LDAP geek, AD bum, and Associate Troublemaking Officer Identity and Access Management, UW-IT.

Slides:



Advertisements
Similar presentations
UTILIZING WITH ITA. offers an entire suite of benefits for you and your students. You can also set up s for the purpose.
Advertisements

Office 365 Identity June 2013 Microsoft Office365 4/2/2017
Agenda AD to Windows Azure AD Sync Options Federation Architecture
Unified communications platform Enterprise-ready.
Core identity scenarios Federation and synchronization 2 3 Identity management overview 1 Additional features 4.
Configuring SharePoint 2013 and Office 365 Hybrid – Part 1
Private Cloud (on & off premises) Hybrid CloudPublic Cloud SaaS PaaS IaaS Microsoft’s Online service portfolio Office 365 Microsoft‘s communication.
Office 365 Identity aka Azure Active Directory
MS Office 365 Premium Support. LegaSystems’ Premium Support Services for Office 365 are designed to provide superior, ongoing support for your Office.
Microsoft ® Exchange Online Migration and Coexistence Name Title Microsoft Corporation.
RequirementsDeployment Options 2 3 Dirsync Overview 1 Understanding Synchronization 4.
Hybrid Search with SharePoint 2013 and Office 365 Brendan Griffin.
UW Windows Infrastructure: Delegated OUs Brian Arkills Software Engineer, LDAP geek, AD bum, and Associate Troublemaking Officer Identity and Access Management,
Identity management integration options for Office 365
Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.
Internet, 16 July 2014 Predica bag of (FIM)tricks Tomasz Onyszko
Active Directory federation user provisioning.
Business Productivity Online Suite Enterprise class software delivered via subscription services hosted by Microsoft and sold with partners.
Brian Arkills Software Engineer, LDAP geek, AD bum, and Associate Troublemaking Officer UW Windows Infrastructure.
Active Directory Integration with Microsoft Office 365
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
FastTrack for Office 365 & FY15 Adoption Offer: Partner Value Prop & Deep Dive Microsoft.
TechEd /20/2017 2:02 AM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
1 Outlook Live Live Messenger SkyDrive Office Live Live Spaces Live Groups.
Brian Arkills Software Engineer, LDAP geek, AD bum, Senior Heckler, and Associate Troublemaking Officer State of Windows Services at the UW.
Clinton Ho Program Manager Microsoft Corporation SESSION CODE: SIA311.
OUC204. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
5 | Microsoft Confidential 6 | Microsoft Confidential.
Office 365 Potential Timeline Vision: Develop strategies and a roadmap to facilitate the migration of multiple on-premise services to Microsoft's SaaS.
Single Sign-On with Microsoft Azure
SUNY System Administration Federation Overview Gavin Hogan July 15th, 2009 A work in progress….
…. PrePlanPrepareMigratePost Pre- Deployment PlanPrepareMigrate Post- Deployment First Mailbox.
Brian Arkills Software Engineer, LDAP geek, AD guy, Chief Troublemaking Officer Windows HiEd Conference 2006 Managed Workstations: UW Nebula.
Virtual techdays INDIA │ august 2010 virtual techdays INDIA │ august 2010 Moving/Co-existing your messaging platform to the cloud with Exchange.
Key Considerations in Architecting Active Directory Federation Alexander Yim WSHFC NCSHA, Nashville on Sept 28 th, 2015.
Microsoft NDA Confidential Enabling users to be productive, responsibly Finding the right balance Devices & Experiences Users Want Applications and.
Paul Andrew. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Offer highly configurable and scalable services Maintain an evergreen service Provide a platform built on security, privacy, and trust.
The explosion of devices is eroding the standards-based approach to corporate IT. Devices Deploying and managing applications across platforms is.
Lync Server Private cloud / dedicated Lync Server Single domain & directory Users split – server / online Lync Hybrid Office 365 Lync Online Hosted.
Version 2.0 for Office 365. Day 1 Administering Office 365 Day 2 Administering Office 365 Office 365 Overview & InfrastructureAdministering Lync Online.
Office 365 Directory Synchronization Update: Deploying Password Sync.
DNS DNS changes required to validate domains in Office 365 UPN – User Principal Name Every user must have a UPN UPN suffixes must match a validated.
Exchange versionMainstream support phase Extended support phase Exchange Server 5.512/31/20031/10/2006 Exchange 2000 Server12/31/20051/11/2011 Exchange.
Microsoft Office 365 Overview. | Copyright© 2010 Microsoft Corporation Introducing Microsoft Office 365 BRINGING TOGETHER CLOUD VERSIONS OF OUR MOST TRUSTED.
BE-com.eu Brussel, 26 april 2016 EXCHANGE 2010 HYBRID (IN THE EXCHANGE 2016 WORLD)
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
Quarterly Customer Meeting Office 365 License Activation and Office 365 Cloud Services Assessment Status April 2014.
Managing Office 365 Identities and Requirements Question Answer
 Step 2 Deployment Overview  What is DirSync?  Purpose – What does it do?  Understanding Synchronization  Understanding Coexistence  Understanding.
 What is DirSync?  Purpose – What does it do?  Understanding Synchronization  Understanding Coexistence  Demo.
Deployment on your terms Hybrid Exchange deployment on your terms On-premises.
ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.
Private KEEP OFF! Private KEEP OFF! Open! What is a cloud? Cloud computing is a model for enabling convenient, on-demand network access to a shared.
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
(ZCO) ZIMBRA Connector for Outlook User Manual
RMS Architecture EMS Partner Bootcamp TechReady 18 9/17/2018
Microsoft 365 Business Customer Targeting 2/6/18
State of Windows Services at the UW
Dumps Questions
Local AD, Azure AD, & Google Suite User Management
11/19/2018 4:38 AM Microsoft 365 Business Customer Targeting Janine Brittain - EXEED 2/6/18 © Microsoft Corporation. All rights reserved. MICROSOFT.
CCS Services – DCSS Spring 2018 Update
Migrating to Office 365 from Google mail and exchange
M7: New Features for Office 365 Identity Management
Office 365 Identity Management
Brian Arkills Microsoft Solutions Architect
AD FS Integration Active Directory Federation Services (AD FS) 7.4
Office 365 Admin Support Skills: Core Concepts
M6: Advanced Identity Management topics for Office 365
Presentation transcript:

Integration: Office 365 Brian Arkills Software Engineer, LDAP geek, AD bum, and Associate Troublemaking Officer Identity and Access Management, UW-IT

High Level Background Project charter has lots of wiggle room Envisioned as way to replace UW Exchange May also replace some parts of UW Sharepoint May also fulfill ‘teleconference refresh’ project goals Because of MS Cloud technology constraints, was assumed to replace UW Windows Live service –Computer Science impact –Alumni impact Really long discovery phase

Application Constraints Primarily Windows clients Mix of browser and fat clients Confusing array of directory synchronization, user provisioning, service provisioning, and authentication options. Each with different constraints and benefits, and some which only work in specific combinations. The usual constraints that Exchange has + a given address may only be assigned once in any Microsoft cloud based service. Must prove ownership of domain.

Data Types and Data Classification UW NetIDs (public w/o any other data) Passwords (confidential) Directory data—users, groups and contacts (mix of public, restricted and confidential) Medical related data—HIPPA (confidential) Student related data—FERPA (confidential) eDiscovery implications

User Population Initial user population roughly equal to UW Exchange count + some MedCtr count = ~10k. Entire UW NetID population will be represented in Office 365 directory. Eligibility for employees or students. Unclear whether others can purchase. Unclear situation for alumni. Permits data access for additional populations.

Authentication UW NetID integration desired: NETID AD preferred No consideration for 2 factor authN at this time. Federated authentication is supported, but only via ADFS at this time—SAML based federation coming later this year. Other sources of authentication are supported via Microsoft’s Federation Gateway.

Provisioning Powershell based option (back door via Exchange Online). Can’t use federation with this. Only “real- time/event-based” option; others are state-based. DirSync v2 option. Appliance which requires AD source, syncs all users, groups, contacts. FIM connector option. Open-ended connector you plug into your FIM instance. You supply and support data source, code, business rules, etc. At this time, requires MS Consulting to deploy. *ALSO* must provision licenses for variety of products and/or in a license suite. **VERY** messy.

Data Integration Needs Need data currently in NETID AD. Would love data that’s currently missing in NETID AD, e.g. manager, photo, others Needs to integrate with on-premise UW Exchange (which will live on in some diminished form): Global Address List integration, calendar integration, etc. Was originally thought it would also need to integration with UW Windows Live. Considered “migration”. UW NetID Manage page integration for forwarding (and perhaps other stuff)

Schedule, Sponsor & Visibility Per original charter, we should be done. Multiple phases expected. First phase is getting enough setup to be able to move UW Exchange mailboxes. Current projection is July/August. Second phase to fix directory sync (if needed), try to tie ADFS to Shibboleth & weblogin, refactor NETID AD displayName provisioning. Unknown. Sponsored by Tom & Kelli. High visibility—and expectation that folks can stop paying UW-IT $8/month for UW Exchange.

Integration Decisions Made No migration from Live. “Green field” minimizes complications. Authentication: ADFS. New service offering. Unclear when we’ll be ready for more than Office 365. Directory sync & user provisioning: FIM connector to NETID AD. More control to address confidential data issues.

Integration Problems to Solve License provisioning. Subscriptions integration expected here, possibly leveraging NETID AD & FIM. forwarding/Exchange integration. Subscription/manage page integration expected here. May result in new subscription features. May need NETID AD phone and address fixes. Lync? Sharepoint? Exchange GAL? Some changes needed to UW Windows Live service & service lifecycle eval needed there. In phase 2, we’ll need to address federation interop, weblogin integration, and displayName fix.

The End Brian Arkills Author of LDAP Directories Explained

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.