Active Directory federation user provisioning.

  • Published on
    19-Dec-2015

  • View
    212

  • Download
    0

Transcript

  • Slide 1
  • Slide 2
  • Active Directory
  • Slide 3
  • Slide 4
  • Slide 5
  • federation user provisioning
  • Slide 6
  • Sync and federation between on-premises and cloud identity systems On-premises identity management functions from cloud
  • Slide 7
  • 1 Trillion authentications since release of service 50 M Office 365 users active every month >1 Billion authentications every day on Azure AD More than 500 M objects hosted on Azure Active Directory Azure AD manages identity data for >5 M organizations 86% of Fortune 500 companies on Microsoft Cloud (Azure, O365, CRM Online and PowerBI )
  • Slide 8
  • Slide 9
  • Your app here Your logo Your details Your description Your app
  • Slide 10
  • Your app here
  • Slide 11
  • Your app
  • Slide 12
  • Your app here
  • Slide 13
  • Slide 14
  • Slide 15
  • IP Address: 31.172.30.4
  • Slide 16
  • Slide 17
  • IP Address: 199.34.28.10 X Bad username X Bad password X Bad username X Bad password
  • Slide 18
  • Slide 19
  • Slide 20
  • Slide 21
  • Slide 22
  • Slide 23
  • https://github.com/skwan/WebApp-GroupClaims-DotNet
  • Slide 24
  • Clients using wide variety of devices/languages/platforms Server applications using wide variety of platforms/languages Browser Native app Server app Web application Web API
  • Slide 25
  • Browser Native app Server app Web application Web API Standard-based, http-based protocols for maximum platform reach WS-Fed, SAML 2.0, OpenID Connect OAuth 2.0
  • Slide 26
  • Slide 27
  • Slide 28
  • Slide 29
  • Slide 30
  • Future capability - in development
  • Slide 31
  • Slide 32
  • Slide 33
  • ScenarioProtocolRelease Native clientOAuth 2.0 auth code grant, public clientGA Web sign inWS-FederationGA SAML 2.0GA Web to Web API OpenID ConnectServer 2016 OAuth 2.0 implicit grantServer 2016 OAuth 2.0 auth code grant, confidential clientServer 2016 Server to Web API OAuth 2.0 client credential grantServer 2016 OAuth 2.0 on behalf ofServer 2016 Future capability - in development
  • Slide 34
  • Slide 35
  • Slide 36
  • Slide 37
  • Slide 38
  • https://login.microsoft.com/xxxxx Sign in to your account Fabrikam Calendar Password Microsoft account (personal or business) Cant access your account? Other sign in options Get a new account Sign inBack 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 39
  • https://login.microsoft.com/xxxxx Sign in to your account Fabrikam Calendar kelly@contoso.com Password Microsoft account (personal or business) Cant access your account? Other sign in options Get a new account Sign inBack 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 40
  • https://login.microsoft.com/xxxxx Sign in to your account Fabrikam Calendar kelly@contoso.com Password Microsoft account (personal or business) Cant access your account? Other sign in options Get a new account Sign inBack 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 41
  • https://login.microsoftonline.com/xxxxx Sign in to your account Keep me signed in Password Sign in to Fabrikam Calendar Cant access your account? Contact Help Desk at (206) 555-1234. This site is operated by Microsoft on behalf of Contoso Inc and is for the exclusive use of its employees and partners. Sign inBack kelly@contoso.com 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 42
  • Slide 43
  • https://login.microsoft.com/xxxxx Sign in to your account Fabrikam Calendar Password Microsoft account (personal or business) Cant access your account? Other sign in options Get a new account Sign inBack 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 44
  • https://login.microsoft.com/xxxxx Sign in to your account Fabrikam Calendar kelly@outlook.com Password Microsoft account (personal or business) Cant access your account? Other sign in options Get a new account Sign inBack 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 45
  • https://login.microsoft.com/xxxxx Sign in to your account Fabrikam Calendar kelly@outlook.com Password Microsoft account (personal or business) Cant access your account? Other sign in options Get a new account Sign inBack 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 46
  • https://login.microsoft.com/xxxxx Sign in to your account Taking you to the sign in page for Microsoft accounts. Cancel kelly@outlook.com Password Future capability - in development
  • Slide 47
  • https://login.live.com/xxxxx Sign in to your Microsof kelly@outlook.com Future capability - in development
  • Slide 48
  • Slide 49
  • https://login.microsoft.com/xxxxx Sign in to your account Fabrikam Calendar Kelly Yang kelly@outlook.com Kelly kelly@contoso.com Use another account Which account do you want to use? 2015 Microsoft Terms of Use Privacy & Cookies Future capability - in development
  • Slide 50
  • Slide 51
  • Slide 52
  • Slide 53
  • Slide 54
  • Slide 55

Recommended

View more >