Key Considerations in Architecting Active Directory Federation Alexander Yim WSHFC NCSHA, Nashville on Sept 28 th, 2015.

Slides:

Advertisements

Similar presentations

Office 365 Identity June 2013 Microsoft Office365 4/2/2017

Advertisements

Office 365 Identity Federation Technology Deep-Dive

Agenda AD to Windows Azure AD Sync Options Federation Architecture

Core identity scenarios Federation and synchronization 2 3 Identity management overview 1 Additional features 4.

Configuring SharePoint 2013 and Office 365 Hybrid – Part 1

Gold Sponsors Bronze Sponsors Silver Sponsors Taking SharePoint to the Cloud Aaron Saikovski Readify – Software Solution Specialist.

Introducing Windows Server 2012 R2 Work Folders:

1 | SharePoint Saturday St. Louis 2015 Case Study An on premise challenge to move to the cloud. The migration to Azure and Office 365.

RequirementsDeployment Options 2 3 Dirsync Overview 1 Understanding Synchronization 4.

Hybrid Search with SharePoint 2013 and Office 365 Brendan Griffin.

Identity management integration options for Office 365

Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.

Microsoft Ignite /16/2017 4:55 PM

Sessions about to start – Get your rig on!. Notes from the field – Implement Hybrid Search and OneDrive for Business Chris Zhong - Microsoft Aaron Dinnage.

IT can provide users with a common identity across on-premises or cloud- based services, leveraging Windows Server Active Directory and Azure Active.

Business Productivity Online Suite Enterprise class software delivered via subscription services hosted by Microsoft and sold with partners.

Active Directory Integration with Microsoft Office 365

Active Directory Integration with Microsoft Office 365 Ross Adams & Jono Luk Program Managers Microsoft Corporation OSP321.

User Microsoft Account Ex: User Organizational Account Ex: Microsoft Account Windows Azure Active Directory.

Keys to a Successful Hybrid Deployment Tips and Tricks from the Field.

Introduction Please answer the survey questions posted at the end of this meeting. Let us know what sessions you want! Josh Topal at

Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.

MICROSOFT OFFICE 365 HIGH AVAILABILITY SSO (SINGLE SIGN-ON) SOLUTION IN AZURE Prepared for: St. Louis SharePoint User Group (StlSUG) Bruce Gagliolo Jr.

OUC204. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.

Timothy Heeney| Microsoft Corporation. Discuss the purpose of Identity Federation Explain how to implement Identity Federation Explain how Identity Federation.

5 | Microsoft Confidential 6 | Microsoft Confidential.

Single Sign-On with Microsoft Azure

Julien “Superman” Stroheker and Nicolas “Batman” Georgeault Negotium

Messageops.com MessageOps Microsoft Cloud Strategies. Helping Your Business Take Flight.

Cloud Identity Windows Azure Active Directory Cloud Identity & Directory SyncFederated Identity Appropriate for Smaller orgs without.

Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.

Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.

Paul Andrew. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.

Office 365 deployment choices Cutover, Staged, Hybrid What is AD FS (Active Directory Federation Services) Attribute Stores, ADFS Configuration Database.

Identity Decision Tree Framework Quick Reference Guides.

Office 365 hur kommer du dit – på riktigt Magnus Björk Altitude 365.

Office 365: Identity and Access Solutions Suresh Menon Technology Specialist – Office 365 Microsoft Corporation India.

Version 2.0 for Office 365. Day 1 Administering Office 365 Day 2 Administering Office 365 Office 365 Overview & InfrastructureAdministering Lync Online.

Office 365 Directory Synchronization Update: Deploying Password Sync.

Bronze Sky customer premises AD MS Online Directory Sync Provisioning platform Provisioning platform Lync Online Lync Online SharePoint Online SharePoint.

Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.

Microsoft Azure Active Directory. AD Microsoft Azure Active Directory.

Access resources in a federation partner organization.

Configuration Manager and InTune Gemeinsam oder einsam?

With ADFS and Azure Active Directory

DNS DNS changes required to validate domains in Office 365 UPN – User Principal Name Every user must have a UPN UPN suffixes must match a validated.

BE-com.eu Brussel, 26 april 2016 EXCHANGE 2010 HYBRID (IN THE EXCHANGE 2016 WORLD)

Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.

Managing Office 365 Identities and Requirements Question Answer

 Step 2 Deployment Overview  What is DirSync?  Purpose – What does it do?  Understanding Synchronization  Understanding Coexistence  Understanding.

Hybrid Identity Deep dive Ross Adams 2016 Redmond Summit | Identity Without Boundaries May 25 th 2016 Azure AD

Preparing Identities for the Cloud Randy Robb 2016 Redmond Summit | Identity Without Boundaries May 24 th 2016 Senior Consultant

ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.

Private KEEP OFF! Private KEEP OFF! Open! What is a cloud? Cloud computing is a model for enabling convenient, on-demand network access to a shared.

Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.

Recording Brief EMS Partner Bootcamp Variables Values Module Title

hur kommer du dit – på riktigt

Leverage your on-premise investments with cloud innovation

Deploying Office 365 ProPlus

Hybrid Search Planning Implementation.

PSC Group, LLc Office 365/SharePoint Online Migration traps and tricks

Access and Information Protection Product Overview October 2013

Microsoft Ignite NZ October 2016 SKYCITY, Auckland.

M7: New Features for Office 365 Identity Management

Office 365 Identity Management

Device Registration and Multi-Factor Authentication

M6: Advanced Identity Management topics for Office 365

Office 365 Identity Management

Microsoft 365 Business Technical Fundamentals Series

10 | Implementing Directory Synchronization

Presentation transcript:

Key Considerations in Architecting Active Directory Federation Alexander Yim WSHFC NCSHA, Nashville on Sept 28 th, 2015

Running your AD in Cloud for your domain: Current status of Office365 Need for SSO (Single Sign On) Microsoft Azure server vs. AWS (Amazon Web Services) ADFS (AD Federation Service) running on Azure server Preparations for the ADFS Migration MessageOps script for SSO Other options: Using F5’s BIG-IP APM solution for ADFS Other concerns..

SSO (Single Sign On) Cloud AD server running outside the FireWall Issues with Microsoft’s earlier version of ADFS Major improvement in recent years Renamed: from DirSync to Azure AD Sync Tool Has M/S ever been hacked? Do we know? Any time, Any where, on Any devices

Microsoft Azure Server for SaaS Office365 Dynamic SQL SharePoint vs. AWS (Amazon Web Services) Virtualization vs. SaaS (Software as a Service)

Preparations for Azure ADFS Migration Identify and Resolve errors in the on-premise AD Use IdFix DirSync Error Remediation Tool Change UPN (User Principal Name) to match Addresses in Office365: e.g. jeffsmith > Fix the List of Errors:.local, etc Microsoft added ADFS running on Azure in Admin of O365 One chance to make the right decision

Vendor script for Password Sync Tiny script by MessageOps using PowerShell Works great until it breaks..

Kg$2Ebi%*9

Other options: F5 Networks’ BIG5-IP APM appliance (Access Policy Management) Able to change passwords outside the F/W a temp password Two-Factor or Multi-Factor Authentication using SMS, iPhone, etc.

F5 APM solution:

Thank you!