Download presentation
Presentation is loading. Please wait.
1
SaaS Application Deep Dive
9/11/2018 SaaS Application Deep Dive June 2016 Aaron Smalser, Program Manager Jeevan Desarda, Program Manager © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
2
Agenda Module 1 Overview Module 2 Application Types & Concepts
9/11/2018 Azure Active Directory Premium Agenda Module 1 Overview Module 2 Application Types & Concepts Module 3 Scenarios & Requirements Module 4 SaaS Application Technical Deep Dive Module 5 Troubleshooting Module 6 Drive Usage
3
Module 1 Overview
4
Overview Overview Key Capabilities User Experience Business Value
5
Microsoft Azure Active Directory
Build 2012 9/11/2018 Azure Cloud Public cloud The big picture… Customers Partners Windows Server Active Directory Microsoft Azure Active Directory On-premises A modern identity management system spanning cloud and on-premises, providing federation, identity management, device registration, user provisioning, application access control & data protection. BYO
6
Cloud app security problem…
Build 2012 9/11/2018 Cloud app security problem… Azure Your Custom App How do I secure and manage user access to cloud apps, and implement single sign on in my organization? Cloud Microsoft Azure Active Directory Other third party app
7
Solution: Azure Active Directory
ISV App Extends Active Directory into the cloud Enables single sign-on to cloud apps using standardized protocols like SAML 2.0, OpenID Connect, and OAuth 2.0 Supports automatic provisioning, de-provisioning, and life cycle management of user accounts for popular apps, using API connectors and standardized protocols like SCIM Office 365 ISV App Other MSFT Apps Azure AD Your Custom IT App Azure AD is designed to meet the needs of SaaS and cloud applications Azure AD can automatically create and update user accounts for selected apps based on assignment in Azure AD. AD
8
Key Capabilities unified user experience security
Integration with SaaS Apps Key Capabilities Easy integration to many of today’s popular SaaS applications unified user experience security centralized application access management unified reporting and monitoring Unified Experience Single sign-on enables users to access their SaaS applications based on their organizational account in Azure AD. Single sign-on is what enables users to authenticate to an application using their single organizational account. Enables user provisioning and de-provisioning into target SaaS based on changes made in Windows Server Active Directory and/or Azure AD. A provisioned account is what enables a user to be authorized to use an application, after they have authenticated through single sign-on. Security Consolidated view to examine suspicious user activities and configuration vulnerabilities Remediation recommendations Risk severity calculations Risk-based policies for protection for future threats Centralized application access management Enables single point of SaaS application access and management, with the ability to delegate application access decision making and approvals to anyone in the organization. Unified reporting and monitoring of user activity in Azure AD. Cloud app discovery- Comprehensive reporting of SaaS app category, number of users, and utilizing volumes. You can also use these reports to detect and mitigate potential security risks.
9
IT Pro User Experience Guided experience for enabling SSO to apps
Manage user access and entitlements in the cloud Enable Conditional Access and MFA per application Built-in security, monitoring, reporting Add benefits for the ITPro to drive setting up.
10
End User Authentication Experience
Single Identity for all applications Web based portal for viewing and launch all assigned apps Only need to remember password for their single organizational identity Users can still access known URLs or bookmarked URLs to launch apps Same authentication experience for all the applications You will not be prompted for username and password for domain joined machine on Windows 10 Add benefits for the ITPro to drive setting up.
11
Business Value Convenient Inclusive Protected
Integration with SaaS apps Business Value Quickly configure your SaaS application for single sign-on and easier user account management. Convenient Easily publish on-premises web apps via Application Proxy and /or Custom apps through a rich standards-based platform popular SaaS apps Inclusive Per application conditional access policies and real time access monitoring for added security. Risks can be mitigated based on the variety of available actions. Protected Provides SSO to Apps integrated with your Azure Active Directory Discover available SaaS applications without signing into the Azure Management Portal Gain visibility into which cloud applications are being used within an organization. See usage graphs based on users, requests, volume of data exchanged. Identify top cloud applications being used in the organization. Simplify the cloud-based administrative tasks Provide the users with a more streamlined sign-in experience Securely and seamlessly manage the user and device identities, both cloud and on-premises, through a unified experience Manage the first- and third-party applications, SaaS and other existing enterprise cloud and on-premises applications through a unified experience
12
Azure integration with SaaS Apps toolbox
Read More Azure integration with SaaS apps Review TechNet Azure integration with SaaS apps Watch Channel 9 Azure integration with SaaS apps- Videos/ Demos Next steps- - For SaaS apps that you find in the App Gallery, Azure AD provides a number of tutorials on how to integrate SaaS apps. - If app is not in App Gallery, you can add it to the Azure AD App Gallery as a custom application. There is much more detail on all of these issues in the Azure.com library, beginning with What is application access and single sign-on with Azure Active Directory..
13
9/11/2018 1:25 AM © 2016 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION. © 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Similar presentations
