• Home

  • Documents

  • Azure AD –O365 Integration · 2020-05-20 · Microsoft Azure AD with Pass-Through-Authentication...
4
© 2020 SWITCH | 1 Azure AD – O365 Integration Thomas Bärecke [email protected] Zürich, 20.05.2020

Azure AD –O365 Integration · 2020-05-20 · Microsoft Azure AD with Pass-Through-Authentication (PTA) Microsoft Cloud SWITCH edu-ID (productionfederation) Organisation SWITCH (edu-ID

  • Upload
    others

  • View
    3

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Azure AD –O365 Integration · 2020-05-20 · Microsoft Azure AD with Pass-Through-Authentication (PTA) Microsoft Cloud SWITCH edu-ID (productionfederation) Organisation SWITCH (edu-ID

© 2020 SWITCH | 1

Azure AD – O365 Integration

Thomas Bä[email protected]ürich, 20.05.2020

Page 2: Azure AD –O365 Integration · 2020-05-20 · Microsoft Azure AD with Pass-Through-Authentication (PTA) Microsoft Cloud SWITCH edu-ID (productionfederation) Organisation SWITCH (edu-ID

© 2020 SWITCH | 2

Microsoft Azure AD with Pass-Through-Authentication (PTA)

Microsoft Cloud SWITCH edu-ID (production federation)

Organisation SWITCH(edu-ID adopted)

Admin

0. user provisioningwith scripts to AAD User

1. Access attempt(unauthenticated)

2. Home realmdiscovery(WAYF)

3. Authentication

4. Service access

(authenticated)

Azure AD

Page 3: Azure AD –O365 Integration · 2020-05-20 · Microsoft Azure AD with Pass-Through-Authentication (PTA) Microsoft Cloud SWITCH edu-ID (productionfederation) Organisation SWITCH (edu-ID

© 2020 SWITCH | 3

Limitations and workarounds

• Limitation: Bilateral non-standard configuration• Current solution: Special configuration on SWITCH edu-ID

IdP• Long-term solution: Proxy

• Limitation: One Microsoft Custom Domain per SAML-IdP only

• Shortly available solution: One proxy per domain

Page 4: Azure AD –O365 Integration · 2020-05-20 · Microsoft Azure AD with Pass-Through-Authentication (PTA) Microsoft Cloud SWITCH edu-ID (productionfederation) Organisation SWITCH (edu-ID

© 2020 SWITCH | 4

Multiple instances for multiple domains

Bundled together in Shibboleth IdP V4.0

Proxy architecture

SWITCH edu-ID IdP

ShibSP

ShibIdP

Azure AD / O365

ShibSP

ShibIdP

SWITCHaai federationMicrosoft


Azure documentDB and Azure Search

Azure documentDB and Azure Search

Software
Edu-008 (Angl.s) - Farnell element14 | Electronic … EDU-008 pag. 2/8 pag. 7/8 EDU-008 EDU-008 pag. 3/ 8 pag. 6/ 8 EDU-008. The Led display. EDU-008. The Led Display. Module’s power

Edu-008 (Angl.s) - Farnell element14 | Electronic … EDU-008 pag. 2/8 pag. 7/8 EDU-008 EDU-008 pag. 3/ 8 pag. 6/ 8 EDU-008. The Led display. EDU-008. The Led Display. Module’s power

Documents
UniFi AC EDU APs Integrate Wi-Fi with PA System …The school’s backbone is gigabit fiber. The router links to the core switch, the UniFi 16-Port 10G Switch, which runs fiber to

UniFi AC EDU APs Integrate Wi-Fi with PA System …The school’s backbone is gigabit fiber. The router links to the core switch, the UniFi 16-Port 10G Switch, which runs fiber to

Documents
The Swiss edu-ID in a Nutshell - SWITCH€¦ · The Swiss edu-ID in a Nutshell University of Berne, 13.8.2015 Swiss edu-ID swisseduid@switch.ch ... Number of identities per individual

The Swiss edu-ID in a Nutshell - SWITCH€¦ · The Swiss edu-ID in a Nutshell University of Berne, 13.8.2015 Swiss edu-ID [email protected] ... Number of identities per individual

Documents
eBECS SmartWorker - Microsoft Azure · 10/1/2015  · Azure HDInsight, AzureML, Power BI, Azure Data Factory, Azure Data Lake Hot path analytics Azure Stream Analytics, Azure HDInsight

eBECS SmartWorker - Microsoft Azure · 10/1/2015  · Azure HDInsight, AzureML, Power BI, Azure Data Factory, Azure Data Lake Hot path analytics Azure Stream Analytics, Azure HDInsight

Documents
› content › dam › uc › aas › docs › articulation-agree… · EDU 309* EDU 313 EDU 316 EDU 318 EDU 334 EDU 343 EDU 344 EDU 391 EDU 394 EDU 495 EDS 323 EDS 360 PSY 100 CMST

› content › dam › uc › aas › docs › articulation-agree… · EDU 309* EDU 313 EDU 316 EDU 318 EDU 334 EDU 343 EDU 344 EDU 391 EDU 394 EDU 495 EDS 323 EDS 360 PSY 100 CMST

Documents
Designing and Implementing an Azure AI Solution · Azure Key Vault: Azure service principals Azure managed identities Azure Security Center Azure Policy Explanation: Explanation:

Designing and Implementing an Azure AI Solution · Azure Key Vault: Azure service principals Azure managed identities Azure Security Center Azure Policy Explanation: Explanation:

Documents
Digitale Strategien individuell umsetzen · Azure Application Insights Azure Backup Azure Cognitive Services Azure Container Services (Kubernetes) Azure Datalake Analytics Azure Event

Digitale Strategien individuell umsetzen · Azure Application Insights Azure Backup Azure Cognitive Services Azure Container Services (Kubernetes) Azure Datalake Analytics Azure Event

Documents
EDU 5010 Edu Psy

EDU 5010 Edu Psy

Documents
Trust & Identity WG Meeting & SWITCH edu- ID Update Event · © 2020 SWITCH | 1 Trust & Identity WG Meeting & SWITCH edu-ID Update Event andres.aeschlimann@switch.ch Virtual meeting,

Trust & Identity WG Meeting & SWITCH edu- ID Update Event · © 2020 SWITCH | 1 Trust & Identity WG Meeting & SWITCH edu-ID Update Event [email protected] Virtual meeting,

Documents
Azure Prime: Azure Mobile Apps Azure Mobile Engagement

Azure Prime: Azure Mobile Apps Azure Mobile Engagement

Documents
SWITCH edu-ID Development Roadmap · •Group management (test: jul‘19) •Organizational administration interface extensions: –rights management, statistics, embeddable interface,

SWITCH edu-ID Development Roadmap · •Group management (test: jul‘19) •Organizational administration interface extensions: –rights management, statistics, embeddable interface,

Documents
IoT in Action Taipei - Microsoft...Azure IoT Suite Azure Time Series Insights Azure Machine Learning Azure Stream Analytics Azure Cosmos DB Azure Data Lake Azure Data Lake Analytics

IoT in Action Taipei - Microsoft...Azure IoT Suite Azure Time Series Insights Azure Machine Learning Azure Stream Analytics Azure Cosmos DB Azure Data Lake Azure Data Lake Analytics

Documents
Setting up Azure AD for SharePoint Admins - Todd … up...• Yours or theirs • Flip of a switch Azure identity management security overview • Single sign-on • Reverse proxy

Setting up Azure AD for SharePoint Admins - Todd … up...• Yours or theirs • Flip of a switch Azure identity management security overview • Single sign-on • Reverse proxy

Documents
Partnering in IoT - Microsoft... · 2018-12-28 · Azure Stream Analytics Azure Cosmos DB Azure Data Lake Azure Data Lake Analytics Azure HD Insight Spark, Storm, Kafka Azure Event

Partnering in IoT - Microsoft... · 2018-12-28 · Azure Stream Analytics Azure Cosmos DB Azure Data Lake Azure Data Lake Analytics Azure HD Insight Spark, Storm, Kafka Azure Event

Documents
Azure Powershell. Azure Automation

Azure Powershell. Azure Automation

Engineering
SMB JumpStart: Azure Backup and Azure Site Recovery · PDF fileSMB JumpStart: Azure Backup and Azure Site Recovery ... to price solutions, ... Azure Backup and Azure Site Recovery

SMB JumpStart: Azure Backup and Azure Site Recovery · PDF fileSMB JumpStart: Azure Backup and Azure Site Recovery ... to price solutions, ... Azure Backup and Azure Site Recovery

Documents
Migrating SQL Workload to Azure · •Azure Webjobs •Azure SQL Elastic Job (S0 tier and higher) •Azure Automation •Azure Functions •On-premise SQL or Azure VM SQL Server with

Migrating SQL Workload to Azure · •Azure Webjobs •Azure SQL Elastic Job (S0 tier and higher) •Azure Automation •Azure Functions •On-premise SQL or Azure VM SQL Server with

Documents
Forthcoming SQL Azure Services: SQL Azure Data Sync & SQL Azure Reporting

Forthcoming SQL Azure Services: SQL Azure Data Sync & SQL Azure Reporting

Documents
RECOMMENDED STRATEGY FOR HYBRID CLOUD INFRASTRUCTURE · Azure DNS External DNS AZURE INTEGRATION POINTS Azure Logging, Metrics, etc Azure Active Directory User Authentication Azure

RECOMMENDED STRATEGY FOR HYBRID CLOUD INFRASTRUCTURE · Azure DNS External DNS AZURE INTEGRATION POINTS Azure Logging, Metrics, etc Azure Active Directory User Authentication Azure

Documents
E01 Swiss edu-ID in a nutshell V2 - SWITCH · The Swiss edu-ID in a Nutshell University of Berne, 13.8.2015 Swiss edu-ID swisseduid@switch.ch

E01 Swiss edu-ID in a nutshell V2 - SWITCH · The Swiss edu-ID in a Nutshell University of Berne, 13.8.2015 Swiss edu-ID [email protected]

Documents
Optical switching: switch fabrics, techniques, and ...jakab/edu/litr/Core/WDM/Papadimitriou2003... · Optical Switching: Switch Fabrics, Techniques, and Architectures ... OPTICAL

Optical switching: switch fabrics, techniques, and ...jakab/edu/litr/Core/WDM/Papadimitriou2003... · Optical Switching: Switch Fabrics, Techniques, and Architectures ... OPTICAL

Documents
SWITCH edu-ID for Beginners...• Swiss edu-ID mobile app Coffee break (14:30 – 14:55) First results from migration strategy planning • Most promising integration scenarios •

SWITCH edu-ID for Beginners...• Swiss edu-ID mobile app Coffee break (14:30 – 14:55) First results from migration strategy planning • Most promising integration scenarios •

Documents
Trust & Identity Workshop · • Welcome to the Trust & Identity WG • The new SWITCH edu-ID Service Description • An Organization adopts SWITCH edu-ID • Single digital identity

Trust & Identity Workshop · • Welcome to the Trust & Identity WG • The new SWITCH edu-ID Service Description • An Organization adopts SWITCH edu-ID • Single digital identity

Documents
The “Swiss edu-ID” - SWITCH...mobile support • evaluate existing solutions Member Profile: • experience with integration of mobile solutions • mobile developers and integrators

The “Swiss edu-ID” - SWITCH...mobile support • evaluate existing solutions Member Profile: • experience with integration of mobile solutions • mobile developers and integrators

Documents
Azure & Open Source Azure Ecosystem - pershing.com.t€¦ · Azure & Open Source Azure Ecosystem. ... Docker on Azure ... •Jenkins and Hudson Plugins PaaS Websites •Azure Java

Azure & Open Source Azure Ecosystem - pershing.com.t€¦ · Azure & Open Source Azure Ecosystem. ... Docker on Azure ... •Jenkins and Hudson Plugins PaaS Websites •Azure Java

Documents
PowerPoint Presentation · Azure Stream Analytics Azure Machine Learning Azure HD Insight Spark, Storm, Kafka Azure Event Hubs Azure IoT Hub Device Provisioning Service Azure IoT

PowerPoint Presentation · Azure Stream Analytics Azure Machine Learning Azure HD Insight Spark, Storm, Kafka Azure Event Hubs Azure IoT Hub Device Provisioning Service Azure IoT

Documents
Swiss edu-ID Architecture - SWITCH · participating organisations, e.g. the universities, as is the case today in AAI. The central platform of the Swiss edu-ID will become an Identity

Swiss edu-ID Architecture - SWITCH · participating organisations, e.g. the universities, as is the case today in AAI. The central platform of the Swiss edu-ID will become an Identity

Documents
Azure RTOS GUIX - download.microsoft.com · Microsoft Azure RTOS, Azure RTOS FileX, Azure RTOS GUIX, Azure RTOS GUIX Studio, Azure RTOS NetX, Azure RTOS NetX Duo, Azure RTOS ThreadX,

Azure RTOS GUIX - download.microsoft.com · Microsoft Azure RTOS, Azure RTOS FileX, Azure RTOS GUIX, Azure RTOS GUIX Studio, Azure RTOS NetX, Azure RTOS NetX Duo, Azure RTOS ThreadX,

Documents
Services and SWITCH edu-ID · © 2017 SWITCH | 1 Rolf Brugger rolf.brugger@switch.ch Berne, 29.6.2017 Services and SWITCH edu-ID

Services and SWITCH edu-ID · © 2017 SWITCH | 1 Rolf Brugger [email protected] Berne, 29.6.2017 Services and SWITCH edu-ID

Documents