Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Making sense of Microsoft Identities in a Hybrid world

191 views

Published on

The New World of Identity Management. Are you struggling to making heads or tails of the identity options for hybrid Office 365, Azure & on-prem installations? Does the seemingly ever-changing landscape give you hives just thinking about the security implications? What are the recommended topologies & how in the world would you get started?

Published in: Technology
  • Be the first to comment

Making sense of Microsoft Identities in a Hybrid world

  1. 1. Making Sense of Microsoft Identities in a Hybrid World Jason Himmelstein, SharePoint MVP Office 365 Advisory Services Manager @sharepointlhorn http://www.sharepointlonghorn.com Todd Klindt, SharePoint MVP SharePoint Principal Architect @toddklindt http://www.toddklindt.com/blog
  2. 2. www.rackspace.com Who is this Todd Klindt guy? • SharePoint MVP since 2006 • Speaker, writer, consultant, Aquarius, Iowa Native • Fan of all sorts of Microsoft technologies • Personal Blog www.toddklindt.com/blog • Twitter me! @toddklindt • If you’re not already sick of him • http://www.toddklindt.com/netcast
  3. 3. www.rackspace.com That other guy… Jason something • SharePoint Server MVP • Office 365 Advisory Services Manager, Rackspace • ITPro enthusiast, Business Intelligence geek, & general technology fan boy • Writes good, Speaks ok, Smells delightful • Re-installed Texan, die-hard Spurs, Longhorns, & Jaguars fan • Geek Blog: www.sharepointlonghorn.com • On the Twitters: @sharepointlhorn • GitHub: www.github.com/jasonhimmelstein
  4. 4. www.rackspace.com Discount code: Klindt Shameless self promotion Discount code: RACKSPACE
  5. 5. www.rackspace.com • History lesson • Defining Terminology • Active Directory Core Concepts & Concerns • Topology & Security • Use Cases • Homework Agenda
  6. 6. www.rackspace.com • Bad news… we are ITPros! NO DEV TALK HERE  • Good news… The Microsoft Cloud Show covered the Azure AD dev topics recently! • http://www.microsoftcloudshow.com/podcast/Episodes/087-catching-up-with-paul-schaeflein-on-azure-ad- improvements Were you hoping for a dev focused talk?
  7. 7. www.rackspace.com History lesson
  8. 8. www.rackspace.com • The dark days – SharePoint 2003 & 2007 History lesson
  9. 9. www.rackspace.com • Age of enlightenment - SharePoint 2010 History lesson
  10. 10. www.rackspace.com • Age of the Internet - SharePoint 2013 History lesson
  11. 11. www.rackspace.com Defining Terminology
  12. 12. www.rackspace.com • Active Directory • User Principal Name • Azure Active Directory • Identity as a Service • DirSync • ADFS • Azure ADConnect Defining Terminology
  13. 13. www.rackspace.com Azure AD Connect: Your Identity Bridge Azure AD Connect (sync + sign on) Active Directory LDAP
  14. 14. www.rackspace.com Hybrid Identity management Azure Active Directory Connect Consolidated deployment assistant for your identity bridge components Common monitoring for your identity bridge components
  15. 15. www.rackspace.com • FSMO roles, AD DNS, WINS, NETBIOS, etc • Dirty, dirty directories • 2003 (Everyone group) --> 2008 (Authenticated Users group) • UPN issues around migration • Schema extensions Active Directory Core Concepts & Concerns
  16. 16. www.rackspace.com • ADFS vs DirSync • Multifactor Auth Topology & Security
  17. 17. www.rackspace.com Same Sign On scenario
  18. 18. www.rackspace.com Single Sign On scenario
  19. 19. www.rackspace.com Highly Available Auth scenario
  20. 20. www.rackspace.com • Old environment moving to a new Hybrid Estate • New Farm Identities • Extranet situations Use Cases
  21. 21. www.rackspace.com • Office 365 tenant • Azure AD Trial • 2 VMs – 1 AD Domain Controller (ADDC) – 1 ADDConnect Server • Download AADConnect • If you want extra credit… – 1 additional VMs • 1 ADFS Servers (in real world this would be 2 ADDCs & 2 ADFS with a load balancer) – SSL cert Homework
  22. 22. Q & A

×