• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Adfs azure
 

Adfs azure

on

  • 734 views

 

Statistics

Views

Total Views
734
Views on SlideShare
732
Embed Views
2

Actions

Likes
0
Downloads
20
Comments
0

1 Embed 2

https://twitter.com 2

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • - how many 2K8 R2?How many want 64-bit? STUCK on 32-bit?
  • Complexity/time – SG memberships heavier, recursive membership

Adfs azure Adfs azure Presentation Transcript

  • 1. MS Online IDs 2. MS Online IDs + Dir Sync 3. Federated IDs + Dir SyncAppropriate for Appropriate for Appropriate for • Smaller organizations without • Orgs with AD on-premise • Larger enterprise organizations AD on-premise with AD on-premise ProsPros • Users and groups mastered on- Pros • No servers required on- premise • SSO with corporate cred premise • Enables co-existence scenarios • Users and groups mastered on- premise Cons • Password policy controlled on-Cons • No SSO premise • No SSO • No 2FA • 2FA solutions possible • No 2FA (strong authentication) • 2 sets of credentials to manage • Enables co-existence scenarios • 2 sets of credentials to with differing password policies manage with differing • Single server deployment Cons password policies • High availability server • Users and groups mastered in deployments required the cloud
  • Microsoft Office 365 ServicesBronze Sky customer premises Trust Federation Exchange Gateway Online Active Directory Authentication Federation Server platform SharePoint 2.0 IdP OnlineIdP MS Online Directory Provisioning Sync Directory Lync AD platform Store Online Service connector Admin Portal
  • Federated vs. Non-Federated Summary Office 2010, or Office ActiveSync, POP, Outlook Outlook Outlook 2007 or Outlook Web 2007 SP2 IMAP, Entourage 2010 2007 2010 Application SharePoint Online Win 7 Win 7 Vista/XP Win 7/Vista/XPMS Online IDs Online ID Online ID Online ID Online ID Online ID Online IDFederated IDs,domain joined AD credentials
  • Authentication flow (passive profile) Customer Microsoft Office 365 Active Directory AD FS 2.0 Server Federation Gateway ` Client Exchange Online (joined to CorpNet)
  • Authentication flow (active profile) Customer Microsoft Office 365 Active Directory AD FS 2.0 Server Federation Gateway ` Client Exchange Online (joined to CorpNet)
  • AD FS 2.0 deployment options Active Directory AD FS 2.0 AD FS 2.0 AD FS 2.0 Server Server Server Proxy AD FS 2.0 Server Proxy Internal user Enterprise DMZ
  • Identity Co-Existence
  • Architecture
  • Architecture - Client
  • Architecture - Client
  • VPN Active Directory AD FS 2.0 AD FS 2.0 Active Server ServerDirectory IaaS Enterprise
  • AD FS 2.0 Server IP SECDirSync GATEWAY LB ENDPOINT DEVICE AD FS 2.0 Server CLOUD SERVICE Windows Azure Enterprise