SlideShare a Scribd company logo
1 of 37
Download to read offline
Understanding Identity
Management with Office 365
Perficient is a leading information technology consulting firm serving clients throughout
North America.
We help clients implement business-driven technology solutions that integrate business
processes, improve worker productivity, increase customer loyalty and create a more
agile enterprise to better respond to new business opportunities.
About Perficient
• Founded in 1997
• Public, NASDAQ: PRFT
• 2012 revenue of $327 million
• Major market locations throughout North America
• Atlanta, Austin, Boston, Charlotte, Chicago, Cincinnati, Cleveland, Columbus, Dallas, Denver,
Detroit, Fairfax, Houston, Indianapolis, Minneapolis, New Orleans, New York, Northern California,
Philadelphia, Southern California, St. Louis, Toronto, Washington D.C.
• Global delivery centers in China, Europe and India
• ~2,000 colleagues
• Dedicated solution practices
• ~85% repeat business rate
• Alliance partnerships with major technology vendors
• Multiple vendor/industry technology and growth awards
Perficient Profile
Business Solutions
• Business Intelligence
• Business Process Management
• Customer Experience and CRM
• Enterprise Performance Management
• Enterprise Resource Planning
• Experience Design (XD)
• Management Consulting
Technology Solutions
• Business Integration/SOA
• Cloud Services
• Commerce
• Content Management
• Custom Application Development
• Education
• Information Management
• Mobile Platforms
• Platform Integration
• Portal & Social
Our Solutions Expertise
Our Microsoft Practice
6
Why Perficient for Office 365?
Certified
O365 MVP
Experienced
Hundreds of thousands users migrated
Innovative
7
Shalini Pasupneti
Presenter Shalini Pasupneti is a Solution Architect in Perficient's
Microsoft infrastructure practice focusing on Exchange and Office
365. Recently, she‟s been guiding global and mid-size companies
in their transition to Office 365. She holds an MCITP in both
Exchange and Office 365.
Our Speaker
8
Understanding Identities
and Single Sign On
Understanding Identity Management with Office 365
Common identity platform for
organizational accounts
Directory
store
Authentication
platform
Windows Azure
Active Directory
Windows Azure Active Directory is the
underlying identity platform for various
cloud services that use Organizational
Accounts
Cloud Identity
Single identity in the cloud
Suitable for small organizations
with no integration to on-
premises directories
Directory Synchronization
Single identity
suitable for medium
and large organizations
without federation
Federated Identity
Single federated identity
and credentials suitable
for medium and large
organizations
Office 365 Identity
Cloud Identity
Rich experience with Office Apps
Ease of deployment, management
and support
Lower cost as no additional servers are
required On-Premises
High availability and reliability as all
Identities and Services are managed in the
cloud
Windows Azure
Active Directory
User
Cloud Identity
Ex: alice@contoso.com
Identity Services
Authentication
platform
Directory
Store
Exchange Online
SharePoint Online
Lync Online
Cloud Identity
Rich experience with Office apps
Directory synchronization between on-premises and online
Identities are created and managed
on-premises and synchronized to the cloud
Single identity and credentials but no single sign-on for
on-premises and office 365 services
Reuse existing directory implementation on-premises
Windows Azure
Active Directory
User
On-Premises Identity
Ex: DomainAlice
Directory
Synchronization
Cloud Identity
Ex: alice@contoso.com
AD
Directory Synchronization
Identity Services
Authentication
platform
Director
y
Store
Exchange
Online
SharePoint
Online
Lync Online
On-Premise
Active Directory
DirSync
Provisionin
g Platform
Directory Synchronization
• Active Directory Health
• Prerequisites check (Readiness Tool)
• IdFix
• Topology
• Single forest
• Multiple forest
• Security
• Firewalls, permissions
• 64-bit only
• Object filtering required
• SQL Express or full SQL (+50k objects)
Deployment Considerations
•
• Customers can exclude objects from synchronizing to Office 365
• Scoping can be done at the following levels:
• AD domain-based
• Organizational unit-based
• User attribute based
• Additional filtering capabilities will become available with the O365
Connector
• Preventing the synchronization of specific attributes is not supported
Scoping and Filtering for Synchronization
Directory Synchronization Write-Back
Attribute Feature
SafeSendersHash
BlockedSendersHash
SafeRecipientHash
Filtering Coexistence
enables on-premises filtering using cloud safe/blocked
sender info
msExchArchiveStatus Cloud Archive
Allows users to archive mail to the Office 365 service
ProxyAddresses (cloudLegDN) Mailbox off-boarding
Enables off-boarding of mailboxes back to on-premise
cloudmsExchUCVoiceMailSettings Voicemail coexistence
Enables on-premises mailbox users to have Lync Server
2010 in the cloud
Rich experience with Office Apps
Directory synchronization between on-premises and online
Identities are created and managed
on-premises and synchronized to the cloud
Single identity and password credentials but no single
sign-on for on-premises and Office 365 services
Reuse existing directory implementation on-premises
Password Synchronization
Windows Azure
Active Directory
User
On-Premises Identity
Ex: DomainAlice
Directory
Synchronization
with one way
Password Hash
Cloud Identity
Ex: alice@contoso.com
AD
Windows Azure Active Directory Sync Tool
• The tool is downloaded from the
Office 365 admin portal
• Only a one way hash of the
password will be synchronized to
WAAD such that the original
password cannot be reconstructed
from it
• Synchronizes user passwords from
on-premises AD to Azure AD (Office
365)
• Respects on-premises password
policies
• Can’t sync passwords for Federated
Users, but can co-exist
SAML2
Identity Provider
More Details on TechNet: http://aka.ms/sync
Windows Azure
Active Directory
User
On-Premises Identity
Ex: DomainAlice
Federation
using Non-
ADFS STS
Office 365
Connector on FIM
Non-AD
(LDAP)
Non-AD Synchronization
Preferred option for Directory
Synchronization with Non-AD
Sources
Non-AD support with FIM is
available through Microsoft-led
deployments
FIM 2010 Office 365 connector
supports complex multi-forest
topologies
• Single identity and sign-on for on-
premises and Office 365 services
• Identities mastered on-premises with a
single point of management
• Directory synchronization to synchronize
directory objects into Office 365
• Secure token based authentication
• Client access control based on IP
address with ADFS
• Strong factor authentication options
for additional security with ADFS
Windows Azure
Active Directory
User
On-Premises Identity
Ex: DomainAlice
Federation
AD
Non-AD
Directory
Synchronization
or
Federated Identity
User objects must have a value for UPN in on-premisesActive Directory
UPN domain suffix must match a verified domain in Office 365
Default domain (e.g. contoso.onmicrosoft.com) is automatically added as a verified
domain and is used if UPN does not match a verified domain
Users must switch to using UPN to logon to Office 365
Not domainusername
UPN must have valid characters
Office 365 Deployment Readiness Tool will verify that on-premises objects have valid
characters
Deployment Considerations for UPN
 Windows Server 2008 or Windows Server 2008 R2/2012
 Active Directory Forest Functionality level 2003
 PowerShell
 Web Server (IIS)
 .Net 3.5 SP1
 Windows Identity Foundation
 Publicly registered domain name
 Public certificate (wild card supported but not recommended)
 High availability, load balanced design
 Choice between windows internal database or SQL
Federated Identity Requirements
Customer Microsoft Online Services
User
Source
ID
Logon (SAML 1.1) Token
UPN:user@contoso.com
Source User ID: ABC123
Auth Token
UPN:user@contoso.com
Unique ID: 254729
Authentication Flow (Passive/Web)
`
Client
(joined to CorpNet)
Authentication platformAD FS 2.0 Server
Exchange Online or
SharePoint Online
Active Directory
`
Client
(joined to CorpNet)
Authentication platformAD FS 2.0 Server
Exchange Online
Active Directory
Customer Microsoft Online Services
User
Source
ID
Logon (SAML 1.1) Token
UPN:user@contoso.com
Source User ID: ABC123
Auth Token
UPN:user@contoso.com
Unique ID: 254729
Basic Auth Credentials
Username/Password
Active Flow (Outlook/Active Sync)
Two-factor authentication
Requires ADFS Proxy Sign-in Page or
other proxies like TMG/UAG
Client Access Policies (ADFS)
Requires ADFS UR1
http://support.microsoft.com/kb/2607496
ADFS Customization
Client access control
Part of ADFS
Limit access to Office 365 based
on network connectivity (internet
versus intranet)
Block all external access to Office 365
based on the IP address of the external
client
Block all external access to Office 365
except Exchange Active Sync; all other
clients such as Outlook are blocked
Block all external access to Office 365
except for passive browser-based
applications such as Outlook Web Access
or SharePoint Online
ADFS Customization
Active Directory Federation Services
* Azure AD offers some basic 2FA features that are available with ADFS deployment on-premises. ADFS
can support a larger set of 2FA/Strong Authentication options.
Password Sync SSO with AD FS
Same password to access
resources
Can control password policies
on-premises
Support for two factor
authentication
*
No password re-entry if on
premises
Client access filtering
Authentication occurs in on
premises directory
Single Sign-On Experience
Cloud Identity Federated Identity
(domain joined computer)
Federated Identity
(non-domain joined computer)
Microsoft Outlook® 2010 on
Windows® 7
Sign in each session Sign in each session Sign in each session
Outlook 2007 on Windows 7 Sign in each session Sign in each session Sign in each session
Outlook 2010 or Outlook 2007 on
Windows Vista® or Windows XP
Sign in each session Sign in each session Sign in each session
Exchange ActiveSync® Sign in each session Sign in each session Sign in each session
POP, IMAP, Microsoft Outlook for
Mac 2011
Sign in each session Sign in each session Sign in each session
Web Experiences: Office 365 Portal /
Outlook Web App / SharePoint
Online / Office Web Apps
Sign in each browser session No Prompt Sign in each browser session
Office 2010 or Office 2007 using
SharePoint Online
Sign in each SharePoint Online session Sign in each SharePoint Online Session Sign in each SharePoint Online Session
Lync Online Sign in each session No prompt Sign in each session
Outlook for Mac 2011 Sign in each session Sign in each session Sign in each session
User Experience
Windows Azure
Active Directory
User
On-Premises Identity
Ex: DomainAlice
Federation
using ADFS
AD
DirSync on FIM
AD
AD
Multi-forest AD
FIM 2010 Office 365
connector supports
complex multi-forest
topologies
Multi-forest DirSync
appliance supports multiple
dis-joint account forests
Multiple exchange
organizations currently not
supported
Number
Active
Directory
forests
See
consolidation
whitepaper
Use
Single Forest
DirSync
Use
Office 365
Connector
Use
Multi Forest
DirSync
Need on-
premises org
consolidation
Number
Exchange
Orgs
“Disjoint”
Account
Forests?
“Disjoint” account
forests and exchange
org accessed by
accounts in the same
forest?
Want to
consolidate
single
forest?
After
consolidation
Single (1)
Multiple (>1)
Yes
None (0)Multiple (>1)
Start
After
consolidation
No
Single (1) Yes
Yes
No
No
Multi-forest Decision Flowchart
Cloud Identity Directory Sync Password Sync Graph API FIM Single Sign-On
Org size Small All All Large Large Large
Control of
attributes in
directory
Least control Full control via on-
premises directory
Full control via on-
premises directory
Can control core
attributes and
select optional
Can control core
attributes and
select optional
Full control via on-
premises directory
Source of authority Cloud On-premises On-Premises Cloud On-premises On-premises
Hardware
requirements
No on-premises
hardware required
Windows Server
OS for DirSync
appliance
Windows Server
OS for DirSync
appliance
Machine to run
Powershell jobs on
Federated Identity
Manager with
office 365
Connector
DirSync appliance
ADFS (or other
STS) deployment
Login experience Disjoint username,
password for on-
premises and
cloud
Enter credentials
twice
Disjoint username,
password for on-
premises and
cloud
Enter credentials
twice
Same username,
password for on-
premises and
cloud
Enter credentials
twice
Disjoint username,
password for on-
premises and
cloud
Enter credentials
twice
Disjoint username,
password for on-
premises and
cloud
Enter credentials
twice
Same username,
password for on-
premises and
cloud
Login once if on-
premises
Identity Integration Options
Suitable for educational organizations
Recommended where customers may use
existing non-ADFS Identity systems
Single sign-on
Secure token based authentication
Support for web clients and outlook (ECP) only
Microsoft supported for integration only, no
shibboleth deployment support
Requires on-premises servers & support
Works with AD and other directories on-premises
Shibboleth (SAML)
Works with AD & Non-AD
Suitable for medium, large enterprises
including educational organizations
Recommended option for Active Directory (AD)
based customers
Single sign-on
Secure token based authentication
Support for web and rich clients
Microsoft supported
Works for Office 365 Hybrid Scenarios
Requires on-premises servers, licenses & support
Works with AD
Suitable for medium, large enterprises
including educational organizations
Recommended where customers may use
existing non-ADFS Identity systems with AD or
Non-AD
Single sign-on
Secure token based authentication
Support for web and rich clients
Third-party supported
Works for Office 365 Hybrid Scenarios
Requires on-premises servers, licenses & support
Verified through „works with Office 365‟ program
Works for Office 365 Hybrid Scenarios
Works with Office 365 - Identity
Federation Options
Questions?
Customized
Microsoft
Training for IT
Pros & End
Users
bit.ly/1cy8WV5
10.16 How Lamar
Created an
Engaging &
Mobile Website
bit.ly/18Sfa0O
10.15 Agile BI:
How to Deliver
More Value in
Less Time
bit.ly/17lsd7H
Connect with Perficient

More Related Content

What's hot

Risks & Rewards of Upgrading to the Latest Version of Siebel CTMS
Risks & Rewards of Upgrading to the Latest Version of Siebel CTMSRisks & Rewards of Upgrading to the Latest Version of Siebel CTMS
Risks & Rewards of Upgrading to the Latest Version of Siebel CTMSPerficient, Inc.
 
Addvantum Oracle Profile OFMW
Addvantum  Oracle Profile OFMW Addvantum  Oracle Profile OFMW
Addvantum Oracle Profile OFMW Addvantum
 
Case study: Turbo charging the customer experience with MDM (Kiva Group)l
Case study: Turbo charging the customer experience with MDM (Kiva Group)lCase study: Turbo charging the customer experience with MDM (Kiva Group)l
Case study: Turbo charging the customer experience with MDM (Kiva Group)lJean-Michel Franco
 
O365Con18 - Power BI Governance - Folker Visser
O365Con18 - Power BI Governance - Folker VisserO365Con18 - Power BI Governance - Folker Visser
O365Con18 - Power BI Governance - Folker VisserNCCOMMS
 
SharePoint Online: New & Improved
SharePoint Online: New & ImprovedSharePoint Online: New & Improved
SharePoint Online: New & ImprovedPerficient, Inc.
 
Planning and Preparing for Windows Server 2003 End-of-Life
Planning and Preparing for Windows Server 2003 End-of-LifePlanning and Preparing for Windows Server 2003 End-of-Life
Planning and Preparing for Windows Server 2003 End-of-LifePerficient, Inc.
 
Governance for power bi Toronto SPS Saturday
Governance for power bi Toronto SPS Saturday Governance for power bi Toronto SPS Saturday
Governance for power bi Toronto SPS Saturday Berkovich Consulting
 
Rapidly Deploy Budgeting and Forecasting with Oracle and Perficient
Rapidly Deploy Budgeting and Forecasting with Oracle and PerficientRapidly Deploy Budgeting and Forecasting with Oracle and Perficient
Rapidly Deploy Budgeting and Forecasting with Oracle and PerficientPerficient, Inc.
 
Présentation Forrester - Forum MDM Micropole 2014
Présentation Forrester - Forum MDM Micropole 2014Présentation Forrester - Forum MDM Micropole 2014
Présentation Forrester - Forum MDM Micropole 2014Micropole Group
 
What You Need to Know Before Upgrading to SharePoint 2013
What You Need to Know Before Upgrading to SharePoint 2013What You Need to Know Before Upgrading to SharePoint 2013
What You Need to Know Before Upgrading to SharePoint 2013Perficient, Inc.
 
365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve Reid
365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve Reid365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve Reid
365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve ReidKTL Solutions
 
Preparing for BI in the Cloud with Windows Azure
Preparing for BI in the Cloud with Windows AzurePreparing for BI in the Cloud with Windows Azure
Preparing for BI in the Cloud with Windows AzurePerficient, Inc.
 
5 Trends that Will Shape The Future of the Mobile Enterprise
5 Trends that Will Shape The Future of the Mobile Enterprise5 Trends that Will Shape The Future of the Mobile Enterprise
5 Trends that Will Shape The Future of the Mobile Enterprisekidozen
 
MDM for product data with Talend
MDM for product data with Talend MDM for product data with Talend
MDM for product data with Talend Jean-Michel Franco
 
Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...
Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...
Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...Amazon Web Services
 
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...Security, Administration & Governance for SharePoint On-Prem, Online, & Every...
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...Christian Buckley
 
Reduce Cost, Time, and Risk – eDiscovery and Records Management in SharePoint
Reduce Cost, Time, and Risk – eDiscovery and Records Management in SharePointReduce Cost, Time, and Risk – eDiscovery and Records Management in SharePoint
Reduce Cost, Time, and Risk – eDiscovery and Records Management in SharePointConcept Searching, Inc
 
Big data - Talend presentation to STLHUG
Big data - Talend presentation to STLHUGBig data - Talend presentation to STLHUG
Big data - Talend presentation to STLHUGAdam Doyle
 
Modernize your Infrastructure and Mobilize Your Data
Modernize your Infrastructure and Mobilize Your DataModernize your Infrastructure and Mobilize Your Data
Modernize your Infrastructure and Mobilize Your DataPrecisely
 
Informatica big data and social media
Informatica big data and social mediaInformatica big data and social media
Informatica big data and social mediaRamy Mahrous
 

What's hot (20)

Risks & Rewards of Upgrading to the Latest Version of Siebel CTMS
Risks & Rewards of Upgrading to the Latest Version of Siebel CTMSRisks & Rewards of Upgrading to the Latest Version of Siebel CTMS
Risks & Rewards of Upgrading to the Latest Version of Siebel CTMS
 
Addvantum Oracle Profile OFMW
Addvantum  Oracle Profile OFMW Addvantum  Oracle Profile OFMW
Addvantum Oracle Profile OFMW
 
Case study: Turbo charging the customer experience with MDM (Kiva Group)l
Case study: Turbo charging the customer experience with MDM (Kiva Group)lCase study: Turbo charging the customer experience with MDM (Kiva Group)l
Case study: Turbo charging the customer experience with MDM (Kiva Group)l
 
O365Con18 - Power BI Governance - Folker Visser
O365Con18 - Power BI Governance - Folker VisserO365Con18 - Power BI Governance - Folker Visser
O365Con18 - Power BI Governance - Folker Visser
 
SharePoint Online: New & Improved
SharePoint Online: New & ImprovedSharePoint Online: New & Improved
SharePoint Online: New & Improved
 
Planning and Preparing for Windows Server 2003 End-of-Life
Planning and Preparing for Windows Server 2003 End-of-LifePlanning and Preparing for Windows Server 2003 End-of-Life
Planning and Preparing for Windows Server 2003 End-of-Life
 
Governance for power bi Toronto SPS Saturday
Governance for power bi Toronto SPS Saturday Governance for power bi Toronto SPS Saturday
Governance for power bi Toronto SPS Saturday
 
Rapidly Deploy Budgeting and Forecasting with Oracle and Perficient
Rapidly Deploy Budgeting and Forecasting with Oracle and PerficientRapidly Deploy Budgeting and Forecasting with Oracle and Perficient
Rapidly Deploy Budgeting and Forecasting with Oracle and Perficient
 
Présentation Forrester - Forum MDM Micropole 2014
Présentation Forrester - Forum MDM Micropole 2014Présentation Forrester - Forum MDM Micropole 2014
Présentation Forrester - Forum MDM Micropole 2014
 
What You Need to Know Before Upgrading to SharePoint 2013
What You Need to Know Before Upgrading to SharePoint 2013What You Need to Know Before Upgrading to SharePoint 2013
What You Need to Know Before Upgrading to SharePoint 2013
 
365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve Reid
365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve Reid365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve Reid
365 Degrees: Looking at Office 365, SharePoint, and Dynamics 365 by Steve Reid
 
Preparing for BI in the Cloud with Windows Azure
Preparing for BI in the Cloud with Windows AzurePreparing for BI in the Cloud with Windows Azure
Preparing for BI in the Cloud with Windows Azure
 
5 Trends that Will Shape The Future of the Mobile Enterprise
5 Trends that Will Shape The Future of the Mobile Enterprise5 Trends that Will Shape The Future of the Mobile Enterprise
5 Trends that Will Shape The Future of the Mobile Enterprise
 
MDM for product data with Talend
MDM for product data with Talend MDM for product data with Talend
MDM for product data with Talend
 
Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...
Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...
Power Big Data Analytics with Informatica Cloud Integration for Redshift, Kin...
 
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...Security, Administration & Governance for SharePoint On-Prem, Online, & Every...
Security, Administration & Governance for SharePoint On-Prem, Online, & Every...
 
Reduce Cost, Time, and Risk – eDiscovery and Records Management in SharePoint
Reduce Cost, Time, and Risk – eDiscovery and Records Management in SharePointReduce Cost, Time, and Risk – eDiscovery and Records Management in SharePoint
Reduce Cost, Time, and Risk – eDiscovery and Records Management in SharePoint
 
Big data - Talend presentation to STLHUG
Big data - Talend presentation to STLHUGBig data - Talend presentation to STLHUG
Big data - Talend presentation to STLHUG
 
Modernize your Infrastructure and Mobilize Your Data
Modernize your Infrastructure and Mobilize Your DataModernize your Infrastructure and Mobilize Your Data
Modernize your Infrastructure and Mobilize Your Data
 
Informatica big data and social media
Informatica big data and social mediaInformatica big data and social media
Informatica big data and social media
 

Viewers also liked

Audience Theories
Audience TheoriesAudience Theories
Audience Theoriessimsimma
 
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?Scott Hoag
 
JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365
JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365
JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365Scott Hoag
 
Understanding Office 365’s Identity Solutions: Deep Dive - EPC Group
Understanding Office 365’s Identity Solutions: Deep Dive - EPC GroupUnderstanding Office 365’s Identity Solutions: Deep Dive - EPC Group
Understanding Office 365’s Identity Solutions: Deep Dive - EPC GroupEPC Group
 
SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365
SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365
SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365Scott Hoag
 
Identity Management for Office 365 and Microsoft Azure
Identity Management for Office 365 and Microsoft AzureIdentity Management for Office 365 and Microsoft Azure
Identity Management for Office 365 and Microsoft AzureSparkhound Inc.
 
SharePoint 2016 - What's New, What's Not
SharePoint 2016 - What's New, What's NotSharePoint 2016 - What's New, What's Not
SharePoint 2016 - What's New, What's NotRegroove
 
Adfs 2 & claims based identity
Adfs 2 & claims based identityAdfs 2 & claims based identity
Adfs 2 & claims based identityNathan Winters
 
Brian Desmond - Identity and directory synchronization with office 365 and wi...
Brian Desmond - Identity and directory synchronization with office 365 and wi...Brian Desmond - Identity and directory synchronization with office 365 and wi...
Brian Desmond - Identity and directory synchronization with office 365 and wi...Nordic Infrastructure Conference
 
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio MaioHybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio MaioAntonioMaio2
 
Developing custom claim providers to enable authorization in share point an...
Developing custom claim providers to enable authorization in share point   an...Developing custom claim providers to enable authorization in share point   an...
Developing custom claim providers to enable authorization in share point an...AntonioMaio2
 
アイデンティティ管理の基礎~Fim adfsアーキテクチャ
アイデンティティ管理の基礎~Fim adfsアーキテクチャアイデンティティ管理の基礎~Fim adfsアーキテクチャ
アイデンティティ管理の基礎~Fim adfsアーキテクチャNaohiro Fujie
 
NetIQ identity powered security
NetIQ identity powered security   NetIQ identity powered security
NetIQ identity powered security Finceptum Oy
 
Office 365-single-sign-on-with-adfs
Office 365-single-sign-on-with-adfsOffice 365-single-sign-on-with-adfs
Office 365-single-sign-on-with-adfsamitchachra
 

Viewers also liked (16)

Office 365 Identity Management options
Office 365 Identity Management options Office 365 Identity Management options
Office 365 Identity Management options
 
Audience Theories
Audience TheoriesAudience Theories
Audience Theories
 
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?
 
JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365
JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365
JAXSPUG January 2016 - Microsoft Cloud Identities in Azure and Office 365
 
Understanding Office 365’s Identity Solutions: Deep Dive - EPC Group
Understanding Office 365’s Identity Solutions: Deep Dive - EPC GroupUnderstanding Office 365’s Identity Solutions: Deep Dive - EPC Group
Understanding Office 365’s Identity Solutions: Deep Dive - EPC Group
 
SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365
SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365
SPIntersection 2016 - MICROSOFT CLOUD IDENTITIES IN AZURE AND OFFICE 365
 
ADFS + IAM
ADFS + IAMADFS + IAM
ADFS + IAM
 
Identity Management for Office 365 and Microsoft Azure
Identity Management for Office 365 and Microsoft AzureIdentity Management for Office 365 and Microsoft Azure
Identity Management for Office 365 and Microsoft Azure
 
SharePoint 2016 - What's New, What's Not
SharePoint 2016 - What's New, What's NotSharePoint 2016 - What's New, What's Not
SharePoint 2016 - What's New, What's Not
 
Adfs 2 & claims based identity
Adfs 2 & claims based identityAdfs 2 & claims based identity
Adfs 2 & claims based identity
 
Brian Desmond - Identity and directory synchronization with office 365 and wi...
Brian Desmond - Identity and directory synchronization with office 365 and wi...Brian Desmond - Identity and directory synchronization with office 365 and wi...
Brian Desmond - Identity and directory synchronization with office 365 and wi...
 
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio MaioHybrid Identity Management with SharePoint and Office 365 - Antonio Maio
Hybrid Identity Management with SharePoint and Office 365 - Antonio Maio
 
Developing custom claim providers to enable authorization in share point an...
Developing custom claim providers to enable authorization in share point   an...Developing custom claim providers to enable authorization in share point   an...
Developing custom claim providers to enable authorization in share point an...
 
アイデンティティ管理の基礎~Fim adfsアーキテクチャ
アイデンティティ管理の基礎~Fim adfsアーキテクチャアイデンティティ管理の基礎~Fim adfsアーキテクチャ
アイデンティティ管理の基礎~Fim adfsアーキテクチャ
 
NetIQ identity powered security
NetIQ identity powered security   NetIQ identity powered security
NetIQ identity powered security
 
Office 365-single-sign-on-with-adfs
Office 365-single-sign-on-with-adfsOffice 365-single-sign-on-with-adfs
Office 365-single-sign-on-with-adfs
 

Similar to Understanding Identity Management with Office 365

Office 365 Identity Management - SMBNation 2015
Office 365 Identity Management - SMBNation 2015Office 365 Identity Management - SMBNation 2015
Office 365 Identity Management - SMBNation 2015Robert Crane
 
SYDSP - Office 365 and Cloud Identity - What does it mean for me?
SYDSP  - Office 365 and Cloud Identity - What does it mean for me?SYDSP  - Office 365 and Cloud Identity - What does it mean for me?
SYDSP - Office 365 and Cloud Identity - What does it mean for me?Scott Hoag
 
Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365Envision IT
 
O365-AzureAD Identity management
O365-AzureAD Identity managementO365-AzureAD Identity management
O365-AzureAD Identity managementDavid Pechon
 
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?Scott Hoag
 
2. Day 2 - Identify and SSO
2. Day 2 -  Identify and SSO2. Day 2 -  Identify and SSO
2. Day 2 - Identify and SSOHuy Pham
 
Windows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the CloudWindows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the CloudChris Dufour
 
CoLabora - Identity in a World of Cloud - June 2015
CoLabora - Identity in a World of Cloud - June 2015CoLabora - Identity in a World of Cloud - June 2015
CoLabora - Identity in a World of Cloud - June 2015CoLaboraDK
 
AD Basic and Azure AD.pptx
AD Basic and Azure AD.pptxAD Basic and Azure AD.pptx
AD Basic and Azure AD.pptxSumTingWong8
 
Hitchhiker's Guide to Azure AD - SPS St Louis 2018
Hitchhiker's Guide to Azure AD - SPS St Louis 2018Hitchhiker's Guide to Azure AD - SPS St Louis 2018
Hitchhiker's Guide to Azure AD - SPS St Louis 2018Max Fritz
 
O365con14 - moving from on-premises to online, the road to follow
O365con14 - moving from on-premises to online, the road to followO365con14 - moving from on-premises to online, the road to follow
O365con14 - moving from on-premises to online, the road to followNCCOMMS
 
1. Day 1 - Office 365 Trainning
1. Day 1 - Office 365 Trainning1. Day 1 - Office 365 Trainning
1. Day 1 - Office 365 TrainningHuy Pham
 
SCU Berlín | Cloud identity for maximum productivity
 SCU Berlín | Cloud identity for maximum productivity SCU Berlín | Cloud identity for maximum productivity
SCU Berlín | Cloud identity for maximum productivityDiana Carolina Torres Viasus
 
O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer
O365Con18 - Azure AD Connect Inside and Out - Sander BerkouwerO365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer
O365Con18 - Azure AD Connect Inside and Out - Sander BerkouwerNCCOMMS
 
15th December 2016 - Microsoft Paddington Vuzion Partner Event
15th December 2016 - Microsoft Paddington Vuzion Partner Event15th December 2016 - Microsoft Paddington Vuzion Partner Event
15th December 2016 - Microsoft Paddington Vuzion Partner EventVuzion
 
How AD has been re-engineered to extend to the cloud
How AD has been re-engineered to extend to the cloudHow AD has been re-engineered to extend to the cloud
How AD has been re-engineered to extend to the cloudLDAPCon
 
Ordina SOFTC Presentation - Office 365
Ordina SOFTC Presentation - Office 365Ordina SOFTC Presentation - Office 365
Ordina SOFTC Presentation - Office 365Ordina Belgium
 
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...Envision IT
 

Similar to Understanding Identity Management with Office 365 (20)

Office 365 Identity Management - SMBNation 2015
Office 365 Identity Management - SMBNation 2015Office 365 Identity Management - SMBNation 2015
Office 365 Identity Management - SMBNation 2015
 
Office 365 identity
Office 365 identityOffice 365 identity
Office 365 identity
 
SYDSP - Office 365 and Cloud Identity - What does it mean for me?
SYDSP  - Office 365 and Cloud Identity - What does it mean for me?SYDSP  - Office 365 and Cloud Identity - What does it mean for me?
SYDSP - Office 365 and Cloud Identity - What does it mean for me?
 
Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365Envision it SharePoint Extranet Webinar Series - Federation and Office 365
Envision it SharePoint Extranet Webinar Series - Federation and Office 365
 
O365-AzureAD Identity management
O365-AzureAD Identity managementO365-AzureAD Identity management
O365-AzureAD Identity management
 
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
 
2. Day 2 - Identify and SSO
2. Day 2 -  Identify and SSO2. Day 2 -  Identify and SSO
2. Day 2 - Identify and SSO
 
Windows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the CloudWindows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the Cloud
 
CoLabora - Identity in a World of Cloud - June 2015
CoLabora - Identity in a World of Cloud - June 2015CoLabora - Identity in a World of Cloud - June 2015
CoLabora - Identity in a World of Cloud - June 2015
 
AD Basic and Azure AD.pptx
AD Basic and Azure AD.pptxAD Basic and Azure AD.pptx
AD Basic and Azure AD.pptx
 
Hitchhiker's Guide to Azure AD - SPS St Louis 2018
Hitchhiker's Guide to Azure AD - SPS St Louis 2018Hitchhiker's Guide to Azure AD - SPS St Louis 2018
Hitchhiker's Guide to Azure AD - SPS St Louis 2018
 
O365con14 - moving from on-premises to online, the road to follow
O365con14 - moving from on-premises to online, the road to followO365con14 - moving from on-premises to online, the road to follow
O365con14 - moving from on-premises to online, the road to follow
 
1. Day 1 - Office 365 Trainning
1. Day 1 - Office 365 Trainning1. Day 1 - Office 365 Trainning
1. Day 1 - Office 365 Trainning
 
Mojemoje
MojemojeMojemoje
Mojemoje
 
SCU Berlín | Cloud identity for maximum productivity
 SCU Berlín | Cloud identity for maximum productivity SCU Berlín | Cloud identity for maximum productivity
SCU Berlín | Cloud identity for maximum productivity
 
O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer
O365Con18 - Azure AD Connect Inside and Out - Sander BerkouwerO365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer
O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer
 
15th December 2016 - Microsoft Paddington Vuzion Partner Event
15th December 2016 - Microsoft Paddington Vuzion Partner Event15th December 2016 - Microsoft Paddington Vuzion Partner Event
15th December 2016 - Microsoft Paddington Vuzion Partner Event
 
How AD has been re-engineered to extend to the cloud
How AD has been re-engineered to extend to the cloudHow AD has been re-engineered to extend to the cloud
How AD has been re-engineered to extend to the cloud
 
Ordina SOFTC Presentation - Office 365
Ordina SOFTC Presentation - Office 365Ordina SOFTC Presentation - Office 365
Ordina SOFTC Presentation - Office 365
 
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
Envision it SharePoint Extranet Webinar Series - Federation and SharePoint On...
 

More from Perficient, Inc.

Driving Strong 2020 Holiday Season Results
Driving Strong 2020 Holiday Season ResultsDriving Strong 2020 Holiday Season Results
Driving Strong 2020 Holiday Season ResultsPerficient, Inc.
 
Transforming Pharmacovigilance Workflows with AI & Automation
Transforming Pharmacovigilance Workflows with AI & Automation Transforming Pharmacovigilance Workflows with AI & Automation
Transforming Pharmacovigilance Workflows with AI & Automation Perficient, Inc.
 
The Secret to Acquiring and Retaining Customers in Financial Services
The Secret to Acquiring and Retaining Customers in Financial ServicesThe Secret to Acquiring and Retaining Customers in Financial Services
The Secret to Acquiring and Retaining Customers in Financial ServicesPerficient, Inc.
 
Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.
Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.
Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.Perficient, Inc.
 
Content, Commerce, and... COVID
Content, Commerce, and... COVIDContent, Commerce, and... COVID
Content, Commerce, and... COVIDPerficient, Inc.
 
Centene's Financial Transformation Journey: A OneStream Success Story
Centene's Financial Transformation Journey: A OneStream Success StoryCentene's Financial Transformation Journey: A OneStream Success Story
Centene's Financial Transformation Journey: A OneStream Success StoryPerficient, Inc.
 
Automate Medical Coding With WHODrug Koda
Automate Medical Coding With WHODrug KodaAutomate Medical Coding With WHODrug Koda
Automate Medical Coding With WHODrug KodaPerficient, Inc.
 
Preparing for Your Oracle, Medidata, and Veeva CTMS Migration Project
Preparing for Your Oracle, Medidata, and Veeva CTMS Migration ProjectPreparing for Your Oracle, Medidata, and Veeva CTMS Migration Project
Preparing for Your Oracle, Medidata, and Veeva CTMS Migration ProjectPerficient, Inc.
 
Accelerating Partner Management: How Manufacturers Can Navigate Covid-19
Accelerating Partner Management: How Manufacturers Can Navigate Covid-19Accelerating Partner Management: How Manufacturers Can Navigate Covid-19
Accelerating Partner Management: How Manufacturers Can Navigate Covid-19Perficient, Inc.
 
The Critical Role of Audience Intelligence with Eric Enge and Rand Fishkin
The Critical Role of Audience Intelligence with Eric Enge and Rand FishkinThe Critical Role of Audience Intelligence with Eric Enge and Rand Fishkin
The Critical Role of Audience Intelligence with Eric Enge and Rand FishkinPerficient, Inc.
 
Cardtronics Future Ready with Oracle EPM Cloud
Cardtronics Future Ready with Oracle EPM CloudCardtronics Future Ready with Oracle EPM Cloud
Cardtronics Future Ready with Oracle EPM CloudPerficient, Inc.
 
Teams Summit - What is New and Coming
Teams Summit -  What is New and ComingTeams Summit -  What is New and Coming
Teams Summit - What is New and ComingPerficient, Inc.
 
Empower Your Organization with Teams & Remote Work Crisis Management
Empower Your Organization with Teams & Remote Work Crisis ManagementEmpower Your Organization with Teams & Remote Work Crisis Management
Empower Your Organization with Teams & Remote Work Crisis ManagementPerficient, Inc.
 
Adoption & Change Management Overview
Adoption & Change Management OverviewAdoption & Change Management Overview
Adoption & Change Management OverviewPerficient, Inc.
 
Microsoft Teams: Measuring Activity of Employees Working from Home
Microsoft Teams: Measuring Activity of Employees Working from HomeMicrosoft Teams: Measuring Activity of Employees Working from Home
Microsoft Teams: Measuring Activity of Employees Working from HomePerficient, Inc.
 
Securing Teams with Microsoft 365 Security for Remote Work
Securing Teams with Microsoft 365 Security for Remote WorkSecuring Teams with Microsoft 365 Security for Remote Work
Securing Teams with Microsoft 365 Security for Remote WorkPerficient, Inc.
 
Infrastructure Best Practices for Teams Remote Workers
Infrastructure Best Practices for Teams Remote WorkersInfrastructure Best Practices for Teams Remote Workers
Infrastructure Best Practices for Teams Remote WorkersPerficient, Inc.
 
Accelerate Adoption for Microsoft Teams
Accelerate Adoption for Microsoft TeamsAccelerate Adoption for Microsoft Teams
Accelerate Adoption for Microsoft TeamsPerficient, Inc.
 
Preparing for Project Cortex and the Future of Knowledge Management
Preparing for Project Cortex and the Future of Knowledge ManagementPreparing for Project Cortex and the Future of Knowledge Management
Preparing for Project Cortex and the Future of Knowledge ManagementPerficient, Inc.
 
Utilizing Microsoft 365 Security for Remote Work
Utilizing Microsoft 365 Security for Remote Work Utilizing Microsoft 365 Security for Remote Work
Utilizing Microsoft 365 Security for Remote Work Perficient, Inc.
 

More from Perficient, Inc. (20)

Driving Strong 2020 Holiday Season Results
Driving Strong 2020 Holiday Season ResultsDriving Strong 2020 Holiday Season Results
Driving Strong 2020 Holiday Season Results
 
Transforming Pharmacovigilance Workflows with AI & Automation
Transforming Pharmacovigilance Workflows with AI & Automation Transforming Pharmacovigilance Workflows with AI & Automation
Transforming Pharmacovigilance Workflows with AI & Automation
 
The Secret to Acquiring and Retaining Customers in Financial Services
The Secret to Acquiring and Retaining Customers in Financial ServicesThe Secret to Acquiring and Retaining Customers in Financial Services
The Secret to Acquiring and Retaining Customers in Financial Services
 
Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.
Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.
Oracle Strategic Modeling Live: Defined. Discussed. Demonstrated.
 
Content, Commerce, and... COVID
Content, Commerce, and... COVIDContent, Commerce, and... COVID
Content, Commerce, and... COVID
 
Centene's Financial Transformation Journey: A OneStream Success Story
Centene's Financial Transformation Journey: A OneStream Success StoryCentene's Financial Transformation Journey: A OneStream Success Story
Centene's Financial Transformation Journey: A OneStream Success Story
 
Automate Medical Coding With WHODrug Koda
Automate Medical Coding With WHODrug KodaAutomate Medical Coding With WHODrug Koda
Automate Medical Coding With WHODrug Koda
 
Preparing for Your Oracle, Medidata, and Veeva CTMS Migration Project
Preparing for Your Oracle, Medidata, and Veeva CTMS Migration ProjectPreparing for Your Oracle, Medidata, and Veeva CTMS Migration Project
Preparing for Your Oracle, Medidata, and Veeva CTMS Migration Project
 
Accelerating Partner Management: How Manufacturers Can Navigate Covid-19
Accelerating Partner Management: How Manufacturers Can Navigate Covid-19Accelerating Partner Management: How Manufacturers Can Navigate Covid-19
Accelerating Partner Management: How Manufacturers Can Navigate Covid-19
 
The Critical Role of Audience Intelligence with Eric Enge and Rand Fishkin
The Critical Role of Audience Intelligence with Eric Enge and Rand FishkinThe Critical Role of Audience Intelligence with Eric Enge and Rand Fishkin
The Critical Role of Audience Intelligence with Eric Enge and Rand Fishkin
 
Cardtronics Future Ready with Oracle EPM Cloud
Cardtronics Future Ready with Oracle EPM CloudCardtronics Future Ready with Oracle EPM Cloud
Cardtronics Future Ready with Oracle EPM Cloud
 
Teams Summit - What is New and Coming
Teams Summit -  What is New and ComingTeams Summit -  What is New and Coming
Teams Summit - What is New and Coming
 
Empower Your Organization with Teams & Remote Work Crisis Management
Empower Your Organization with Teams & Remote Work Crisis ManagementEmpower Your Organization with Teams & Remote Work Crisis Management
Empower Your Organization with Teams & Remote Work Crisis Management
 
Adoption & Change Management Overview
Adoption & Change Management OverviewAdoption & Change Management Overview
Adoption & Change Management Overview
 
Microsoft Teams: Measuring Activity of Employees Working from Home
Microsoft Teams: Measuring Activity of Employees Working from HomeMicrosoft Teams: Measuring Activity of Employees Working from Home
Microsoft Teams: Measuring Activity of Employees Working from Home
 
Securing Teams with Microsoft 365 Security for Remote Work
Securing Teams with Microsoft 365 Security for Remote WorkSecuring Teams with Microsoft 365 Security for Remote Work
Securing Teams with Microsoft 365 Security for Remote Work
 
Infrastructure Best Practices for Teams Remote Workers
Infrastructure Best Practices for Teams Remote WorkersInfrastructure Best Practices for Teams Remote Workers
Infrastructure Best Practices for Teams Remote Workers
 
Accelerate Adoption for Microsoft Teams
Accelerate Adoption for Microsoft TeamsAccelerate Adoption for Microsoft Teams
Accelerate Adoption for Microsoft Teams
 
Preparing for Project Cortex and the Future of Knowledge Management
Preparing for Project Cortex and the Future of Knowledge ManagementPreparing for Project Cortex and the Future of Knowledge Management
Preparing for Project Cortex and the Future of Knowledge Management
 
Utilizing Microsoft 365 Security for Remote Work
Utilizing Microsoft 365 Security for Remote Work Utilizing Microsoft 365 Security for Remote Work
Utilizing Microsoft 365 Security for Remote Work
 

Recently uploaded

Explore the UiPath Community and ways you can benefit on your journey to auto...
Explore the UiPath Community and ways you can benefit on your journey to auto...Explore the UiPath Community and ways you can benefit on your journey to auto...
Explore the UiPath Community and ways you can benefit on your journey to auto...DianaGray10
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
 
The Importance of Indoor Air Quality (English)
The Importance of Indoor Air Quality (English)The Importance of Indoor Air Quality (English)
The Importance of Indoor Air Quality (English)IES VE
 
The New Cloud World Order Is FinOps (Slideshow)
The New Cloud World Order Is FinOps (Slideshow)The New Cloud World Order Is FinOps (Slideshow)
The New Cloud World Order Is FinOps (Slideshow)codyslingerland1
 
UiPath Studio Web workshop series - Day 2
UiPath Studio Web workshop series - Day 2UiPath Studio Web workshop series - Day 2
UiPath Studio Web workshop series - Day 2DianaGray10
 
Keep Your Finger on the Pulse of Your Building's Performance with IES Live
Keep Your Finger on the Pulse of Your Building's Performance with IES LiveKeep Your Finger on the Pulse of Your Building's Performance with IES Live
Keep Your Finger on the Pulse of Your Building's Performance with IES LiveIES VE
 
3 Pitfalls Everyone Should Avoid with Cloud Data
3 Pitfalls Everyone Should Avoid with Cloud Data3 Pitfalls Everyone Should Avoid with Cloud Data
3 Pitfalls Everyone Should Avoid with Cloud DataEric D. Schabell
 
UiPath Studio Web workshop series - Day 4
UiPath Studio Web workshop series - Day 4UiPath Studio Web workshop series - Day 4
UiPath Studio Web workshop series - Day 4DianaGray10
 
Where developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingWhere developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingFrancesco Corti
 
Graphene Quantum Dots-Based Composites for Biomedical Applications
Graphene Quantum Dots-Based Composites for  Biomedical ApplicationsGraphene Quantum Dots-Based Composites for  Biomedical Applications
Graphene Quantum Dots-Based Composites for Biomedical Applicationsnooralam814309
 
Scenario Library et REX Discover industry- and role- based scenarios
Scenario Library et REX Discover industry- and role- based scenariosScenario Library et REX Discover industry- and role- based scenarios
Scenario Library et REX Discover industry- and role- based scenariosErol GIRAUDY
 
Q4 2023 Quarterly Investor Presentation - FINAL - v1.pdf
Q4 2023 Quarterly Investor Presentation - FINAL - v1.pdfQ4 2023 Quarterly Investor Presentation - FINAL - v1.pdf
Q4 2023 Quarterly Investor Presentation - FINAL - v1.pdfTejal81
 
Introduction - IPLOOK NETWORKS CO., LTD.
Introduction - IPLOOK NETWORKS CO., LTD.Introduction - IPLOOK NETWORKS CO., LTD.
Introduction - IPLOOK NETWORKS CO., LTD.IPLOOK Networks
 
IT Service Management (ITSM) Best Practices for Advanced Computing
IT Service Management (ITSM) Best Practices for Advanced ComputingIT Service Management (ITSM) Best Practices for Advanced Computing
IT Service Management (ITSM) Best Practices for Advanced ComputingMAGNIntelligence
 
UiPath Studio Web workshop series - Day 1
UiPath Studio Web workshop series  - Day 1UiPath Studio Web workshop series  - Day 1
UiPath Studio Web workshop series - Day 1DianaGray10
 
March Patch Tuesday
March Patch TuesdayMarch Patch Tuesday
March Patch TuesdayIvanti
 
Webinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - Tech
Webinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - TechWebinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - Tech
Webinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - TechProduct School
 
Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024
Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024
Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024Alkin Tezuysal
 
From the origin to the future of Open Source model and business
From the origin to the future of  Open Source model and businessFrom the origin to the future of  Open Source model and business
From the origin to the future of Open Source model and businessFrancesco Corti
 
Patch notes explaining DISARM Version 1.4 update
Patch notes explaining DISARM Version 1.4 updatePatch notes explaining DISARM Version 1.4 update
Patch notes explaining DISARM Version 1.4 updateadam112203
 

Recently uploaded (20)

Explore the UiPath Community and ways you can benefit on your journey to auto...
Explore the UiPath Community and ways you can benefit on your journey to auto...Explore the UiPath Community and ways you can benefit on your journey to auto...
Explore the UiPath Community and ways you can benefit on your journey to auto...
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
 
The Importance of Indoor Air Quality (English)
The Importance of Indoor Air Quality (English)The Importance of Indoor Air Quality (English)
The Importance of Indoor Air Quality (English)
 
The New Cloud World Order Is FinOps (Slideshow)
The New Cloud World Order Is FinOps (Slideshow)The New Cloud World Order Is FinOps (Slideshow)
The New Cloud World Order Is FinOps (Slideshow)
 
UiPath Studio Web workshop series - Day 2
UiPath Studio Web workshop series - Day 2UiPath Studio Web workshop series - Day 2
UiPath Studio Web workshop series - Day 2
 
Keep Your Finger on the Pulse of Your Building's Performance with IES Live
Keep Your Finger on the Pulse of Your Building's Performance with IES LiveKeep Your Finger on the Pulse of Your Building's Performance with IES Live
Keep Your Finger on the Pulse of Your Building's Performance with IES Live
 
3 Pitfalls Everyone Should Avoid with Cloud Data
3 Pitfalls Everyone Should Avoid with Cloud Data3 Pitfalls Everyone Should Avoid with Cloud Data
3 Pitfalls Everyone Should Avoid with Cloud Data
 
UiPath Studio Web workshop series - Day 4
UiPath Studio Web workshop series - Day 4UiPath Studio Web workshop series - Day 4
UiPath Studio Web workshop series - Day 4
 
Where developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingWhere developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is going
 
Graphene Quantum Dots-Based Composites for Biomedical Applications
Graphene Quantum Dots-Based Composites for  Biomedical ApplicationsGraphene Quantum Dots-Based Composites for  Biomedical Applications
Graphene Quantum Dots-Based Composites for Biomedical Applications
 
Scenario Library et REX Discover industry- and role- based scenarios
Scenario Library et REX Discover industry- and role- based scenariosScenario Library et REX Discover industry- and role- based scenarios
Scenario Library et REX Discover industry- and role- based scenarios
 
Q4 2023 Quarterly Investor Presentation - FINAL - v1.pdf
Q4 2023 Quarterly Investor Presentation - FINAL - v1.pdfQ4 2023 Quarterly Investor Presentation - FINAL - v1.pdf
Q4 2023 Quarterly Investor Presentation - FINAL - v1.pdf
 
Introduction - IPLOOK NETWORKS CO., LTD.
Introduction - IPLOOK NETWORKS CO., LTD.Introduction - IPLOOK NETWORKS CO., LTD.
Introduction - IPLOOK NETWORKS CO., LTD.
 
IT Service Management (ITSM) Best Practices for Advanced Computing
IT Service Management (ITSM) Best Practices for Advanced ComputingIT Service Management (ITSM) Best Practices for Advanced Computing
IT Service Management (ITSM) Best Practices for Advanced Computing
 
UiPath Studio Web workshop series - Day 1
UiPath Studio Web workshop series  - Day 1UiPath Studio Web workshop series  - Day 1
UiPath Studio Web workshop series - Day 1
 
March Patch Tuesday
March Patch TuesdayMarch Patch Tuesday
March Patch Tuesday
 
Webinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - Tech
Webinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - TechWebinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - Tech
Webinar: The Art of Prioritizing Your Product Roadmap by AWS Sr PM - Tech
 
Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024
Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024
Design and Modeling for MySQL SCALE 21X Pasadena, CA Mar 2024
 
From the origin to the future of Open Source model and business
From the origin to the future of  Open Source model and businessFrom the origin to the future of  Open Source model and business
From the origin to the future of Open Source model and business
 
Patch notes explaining DISARM Version 1.4 update
Patch notes explaining DISARM Version 1.4 updatePatch notes explaining DISARM Version 1.4 update
Patch notes explaining DISARM Version 1.4 update
 

Understanding Identity Management with Office 365

  • 2. Perficient is a leading information technology consulting firm serving clients throughout North America. We help clients implement business-driven technology solutions that integrate business processes, improve worker productivity, increase customer loyalty and create a more agile enterprise to better respond to new business opportunities. About Perficient
  • 3. • Founded in 1997 • Public, NASDAQ: PRFT • 2012 revenue of $327 million • Major market locations throughout North America • Atlanta, Austin, Boston, Charlotte, Chicago, Cincinnati, Cleveland, Columbus, Dallas, Denver, Detroit, Fairfax, Houston, Indianapolis, Minneapolis, New Orleans, New York, Northern California, Philadelphia, Southern California, St. Louis, Toronto, Washington D.C. • Global delivery centers in China, Europe and India • ~2,000 colleagues • Dedicated solution practices • ~85% repeat business rate • Alliance partnerships with major technology vendors • Multiple vendor/industry technology and growth awards Perficient Profile
  • 4. Business Solutions • Business Intelligence • Business Process Management • Customer Experience and CRM • Enterprise Performance Management • Enterprise Resource Planning • Experience Design (XD) • Management Consulting Technology Solutions • Business Integration/SOA • Cloud Services • Commerce • Content Management • Custom Application Development • Education • Information Management • Mobile Platforms • Platform Integration • Portal & Social Our Solutions Expertise
  • 6. 6 Why Perficient for Office 365? Certified O365 MVP Experienced Hundreds of thousands users migrated Innovative
  • 7. 7 Shalini Pasupneti Presenter Shalini Pasupneti is a Solution Architect in Perficient's Microsoft infrastructure practice focusing on Exchange and Office 365. Recently, she‟s been guiding global and mid-size companies in their transition to Office 365. She holds an MCITP in both Exchange and Office 365. Our Speaker
  • 10. Common identity platform for organizational accounts Directory store Authentication platform Windows Azure Active Directory Windows Azure Active Directory is the underlying identity platform for various cloud services that use Organizational Accounts
  • 11. Cloud Identity Single identity in the cloud Suitable for small organizations with no integration to on- premises directories Directory Synchronization Single identity suitable for medium and large organizations without federation Federated Identity Single federated identity and credentials suitable for medium and large organizations Office 365 Identity
  • 12. Cloud Identity Rich experience with Office Apps Ease of deployment, management and support Lower cost as no additional servers are required On-Premises High availability and reliability as all Identities and Services are managed in the cloud Windows Azure Active Directory User Cloud Identity Ex: alice@contoso.com
  • 14. Rich experience with Office apps Directory synchronization between on-premises and online Identities are created and managed on-premises and synchronized to the cloud Single identity and credentials but no single sign-on for on-premises and office 365 services Reuse existing directory implementation on-premises Windows Azure Active Directory User On-Premises Identity Ex: DomainAlice Directory Synchronization Cloud Identity Ex: alice@contoso.com AD Directory Synchronization
  • 16. • Active Directory Health • Prerequisites check (Readiness Tool) • IdFix • Topology • Single forest • Multiple forest • Security • Firewalls, permissions • 64-bit only • Object filtering required • SQL Express or full SQL (+50k objects) Deployment Considerations
  • 17. • • Customers can exclude objects from synchronizing to Office 365 • Scoping can be done at the following levels: • AD domain-based • Organizational unit-based • User attribute based • Additional filtering capabilities will become available with the O365 Connector • Preventing the synchronization of specific attributes is not supported Scoping and Filtering for Synchronization
  • 18. Directory Synchronization Write-Back Attribute Feature SafeSendersHash BlockedSendersHash SafeRecipientHash Filtering Coexistence enables on-premises filtering using cloud safe/blocked sender info msExchArchiveStatus Cloud Archive Allows users to archive mail to the Office 365 service ProxyAddresses (cloudLegDN) Mailbox off-boarding Enables off-boarding of mailboxes back to on-premise cloudmsExchUCVoiceMailSettings Voicemail coexistence Enables on-premises mailbox users to have Lync Server 2010 in the cloud
  • 19. Rich experience with Office Apps Directory synchronization between on-premises and online Identities are created and managed on-premises and synchronized to the cloud Single identity and password credentials but no single sign-on for on-premises and Office 365 services Reuse existing directory implementation on-premises Password Synchronization Windows Azure Active Directory User On-Premises Identity Ex: DomainAlice Directory Synchronization with one way Password Hash Cloud Identity Ex: alice@contoso.com AD
  • 20. Windows Azure Active Directory Sync Tool • The tool is downloaded from the Office 365 admin portal • Only a one way hash of the password will be synchronized to WAAD such that the original password cannot be reconstructed from it • Synchronizes user passwords from on-premises AD to Azure AD (Office 365) • Respects on-premises password policies • Can’t sync passwords for Federated Users, but can co-exist SAML2 Identity Provider More Details on TechNet: http://aka.ms/sync
  • 21. Windows Azure Active Directory User On-Premises Identity Ex: DomainAlice Federation using Non- ADFS STS Office 365 Connector on FIM Non-AD (LDAP) Non-AD Synchronization Preferred option for Directory Synchronization with Non-AD Sources Non-AD support with FIM is available through Microsoft-led deployments FIM 2010 Office 365 connector supports complex multi-forest topologies
  • 22. • Single identity and sign-on for on- premises and Office 365 services • Identities mastered on-premises with a single point of management • Directory synchronization to synchronize directory objects into Office 365 • Secure token based authentication • Client access control based on IP address with ADFS • Strong factor authentication options for additional security with ADFS Windows Azure Active Directory User On-Premises Identity Ex: DomainAlice Federation AD Non-AD Directory Synchronization or Federated Identity
  • 23. User objects must have a value for UPN in on-premisesActive Directory UPN domain suffix must match a verified domain in Office 365 Default domain (e.g. contoso.onmicrosoft.com) is automatically added as a verified domain and is used if UPN does not match a verified domain Users must switch to using UPN to logon to Office 365 Not domainusername UPN must have valid characters Office 365 Deployment Readiness Tool will verify that on-premises objects have valid characters Deployment Considerations for UPN
  • 24.  Windows Server 2008 or Windows Server 2008 R2/2012  Active Directory Forest Functionality level 2003  PowerShell  Web Server (IIS)  .Net 3.5 SP1  Windows Identity Foundation  Publicly registered domain name  Public certificate (wild card supported but not recommended)  High availability, load balanced design  Choice between windows internal database or SQL Federated Identity Requirements
  • 25. Customer Microsoft Online Services User Source ID Logon (SAML 1.1) Token UPN:user@contoso.com Source User ID: ABC123 Auth Token UPN:user@contoso.com Unique ID: 254729 Authentication Flow (Passive/Web) ` Client (joined to CorpNet) Authentication platformAD FS 2.0 Server Exchange Online or SharePoint Online Active Directory
  • 26. ` Client (joined to CorpNet) Authentication platformAD FS 2.0 Server Exchange Online Active Directory Customer Microsoft Online Services User Source ID Logon (SAML 1.1) Token UPN:user@contoso.com Source User ID: ABC123 Auth Token UPN:user@contoso.com Unique ID: 254729 Basic Auth Credentials Username/Password Active Flow (Outlook/Active Sync)
  • 27. Two-factor authentication Requires ADFS Proxy Sign-in Page or other proxies like TMG/UAG Client Access Policies (ADFS) Requires ADFS UR1 http://support.microsoft.com/kb/2607496 ADFS Customization
  • 28. Client access control Part of ADFS Limit access to Office 365 based on network connectivity (internet versus intranet) Block all external access to Office 365 based on the IP address of the external client Block all external access to Office 365 except Exchange Active Sync; all other clients such as Outlook are blocked Block all external access to Office 365 except for passive browser-based applications such as Outlook Web Access or SharePoint Online ADFS Customization
  • 29. Active Directory Federation Services * Azure AD offers some basic 2FA features that are available with ADFS deployment on-premises. ADFS can support a larger set of 2FA/Strong Authentication options. Password Sync SSO with AD FS Same password to access resources Can control password policies on-premises Support for two factor authentication * No password re-entry if on premises Client access filtering Authentication occurs in on premises directory
  • 31. Cloud Identity Federated Identity (domain joined computer) Federated Identity (non-domain joined computer) Microsoft Outlook® 2010 on Windows® 7 Sign in each session Sign in each session Sign in each session Outlook 2007 on Windows 7 Sign in each session Sign in each session Sign in each session Outlook 2010 or Outlook 2007 on Windows Vista® or Windows XP Sign in each session Sign in each session Sign in each session Exchange ActiveSync® Sign in each session Sign in each session Sign in each session POP, IMAP, Microsoft Outlook for Mac 2011 Sign in each session Sign in each session Sign in each session Web Experiences: Office 365 Portal / Outlook Web App / SharePoint Online / Office Web Apps Sign in each browser session No Prompt Sign in each browser session Office 2010 or Office 2007 using SharePoint Online Sign in each SharePoint Online session Sign in each SharePoint Online Session Sign in each SharePoint Online Session Lync Online Sign in each session No prompt Sign in each session Outlook for Mac 2011 Sign in each session Sign in each session Sign in each session User Experience
  • 32. Windows Azure Active Directory User On-Premises Identity Ex: DomainAlice Federation using ADFS AD DirSync on FIM AD AD Multi-forest AD FIM 2010 Office 365 connector supports complex multi-forest topologies Multi-forest DirSync appliance supports multiple dis-joint account forests Multiple exchange organizations currently not supported
  • 33. Number Active Directory forests See consolidation whitepaper Use Single Forest DirSync Use Office 365 Connector Use Multi Forest DirSync Need on- premises org consolidation Number Exchange Orgs “Disjoint” Account Forests? “Disjoint” account forests and exchange org accessed by accounts in the same forest? Want to consolidate single forest? After consolidation Single (1) Multiple (>1) Yes None (0)Multiple (>1) Start After consolidation No Single (1) Yes Yes No No Multi-forest Decision Flowchart
  • 34. Cloud Identity Directory Sync Password Sync Graph API FIM Single Sign-On Org size Small All All Large Large Large Control of attributes in directory Least control Full control via on- premises directory Full control via on- premises directory Can control core attributes and select optional Can control core attributes and select optional Full control via on- premises directory Source of authority Cloud On-premises On-Premises Cloud On-premises On-premises Hardware requirements No on-premises hardware required Windows Server OS for DirSync appliance Windows Server OS for DirSync appliance Machine to run Powershell jobs on Federated Identity Manager with office 365 Connector DirSync appliance ADFS (or other STS) deployment Login experience Disjoint username, password for on- premises and cloud Enter credentials twice Disjoint username, password for on- premises and cloud Enter credentials twice Same username, password for on- premises and cloud Enter credentials twice Disjoint username, password for on- premises and cloud Enter credentials twice Disjoint username, password for on- premises and cloud Enter credentials twice Same username, password for on- premises and cloud Login once if on- premises Identity Integration Options
  • 35. Suitable for educational organizations Recommended where customers may use existing non-ADFS Identity systems Single sign-on Secure token based authentication Support for web clients and outlook (ECP) only Microsoft supported for integration only, no shibboleth deployment support Requires on-premises servers & support Works with AD and other directories on-premises Shibboleth (SAML) Works with AD & Non-AD Suitable for medium, large enterprises including educational organizations Recommended option for Active Directory (AD) based customers Single sign-on Secure token based authentication Support for web and rich clients Microsoft supported Works for Office 365 Hybrid Scenarios Requires on-premises servers, licenses & support Works with AD Suitable for medium, large enterprises including educational organizations Recommended where customers may use existing non-ADFS Identity systems with AD or Non-AD Single sign-on Secure token based authentication Support for web and rich clients Third-party supported Works for Office 365 Hybrid Scenarios Requires on-premises servers, licenses & support Verified through „works with Office 365‟ program Works for Office 365 Hybrid Scenarios Works with Office 365 - Identity Federation Options
  • 37. Customized Microsoft Training for IT Pros & End Users bit.ly/1cy8WV5 10.16 How Lamar Created an Engaging & Mobile Website bit.ly/18Sfa0O 10.15 Agile BI: How to Deliver More Value in Less Time bit.ly/17lsd7H Connect with Perficient

Editor's Notes

  1. UPDATE
  2. http://bit.ly/1fhfc0y