managing identities in the microsoft cloud
TRANSCRIPT
![Page 1: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/1.jpg)
MANAGING IDENTITIES IN THE MICROSOFT CLOUD
Wim Buysse
Click icon to add picture
![Page 2: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/2.jpg)
![Page 3: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/3.jpg)
ENABLEYOURUSERS
USER
PROTECTYOURDATA
IT
WHY AZURE ACTIVE DIRECTORY?
![Page 4: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/4.jpg)
AM
YE OLDEN DAYS
I
FILESERVERDATABAS
E
![Page 5: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/5.jpg)
AM
YE OLDEN DAYS
I
DIRECTORY SERVICES
![Page 6: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/6.jpg)
AM
YE OLDEN DAYS
I
DIRECTORY SERVICES
![Page 7: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/7.jpg)
TODAY’S MESH (MESS?)
EC2
ON-PREMISES PRIVATE CLOUDMANAGED DEVICES
![Page 8: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/8.jpg)
SELFSERVICE
SINGLESIGN-ON
•••••••••••Username
ADRESSING THE MESH (MESS?)SINGLESYNCH
CLOUD
SaaSAzure
Office 365Publiccloud
ACTIVE DIRECTORY
ON-PREMISES AZURE ACTIVE DIRECTORY
![Page 9: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/9.jpg)
TIP: CLOUD APP DISCOVERY
![Page 10: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/10.jpg)
EMPOWER YOURUSERS
CENTRALLY MANAGED IDENTITY & ACCESS
MONITOR & PROTECT CLOUD APP ACCESS
YOUR DIRECTORY IN THE CLOUD
WHAT IS IAM ALL ABOUT?
![Page 11: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/11.jpg)
AADCONNECT password hash sync
AADCONNECT
AD FS
AZURE ACTIVE DIRECTORY
AZURE ACTIVE DIRECTORY
YOUR DIRECTORY IN THE CLOUD
AZURE ACTIVE DIRECTORY
CLOUDIDENTITY
SYNCHEDIDENTITY
FEDERATEDIDENTITY
![Page 12: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/12.jpg)
DIRSYNC SHORTCOMINGS ADDRESSEDAADCONNECT REPLACES DIRSYNC
SYNCHRONIZE MULTIPLE FORESTS TO SINGLE TENANT
EXTENDING AZURE AD SCHEMA
IMPROVED RULES EDITOR
![Page 13: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/13.jpg)
APPLICATION INTEGRATION
SaaS APPS
OWN APPS
![Page 14: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/14.jpg)
CENTRALLY MANAGED IDENTITIES & ACCESS
SaaS APPS
AZURE ACTIVE DIRECTORY
![Page 15: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/15.jpg)
CENTRALLY MANAGED IDENTITIES & ACCESS
SaaS APPSAZURE
ACTIVE DIRECTORY
USER ATTRIBUTE
DEVICE
LOCATION
ALLOWBLOCK
MFA
![Page 16: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/16.jpg)
MONITOR & PROTECT CLOUD APP ACCESS
ULTIMATE SECURITY VS.
ULTIMATE USABILITY
![Page 17: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/17.jpg)
EMPOWER YOUR USERS
APPLICATION PORTAL
![Page 18: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/18.jpg)
EMPOWER YOUR USERSPASSWORD SELF-SERVICE
(Writeback)
![Page 19: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/19.jpg)
TAKE IT FURTHER: B2B COLLABORATION
I NEED MY PARTNERS TO ACCESS MY ENTERPRISE APPLICATIONS USING THEIR OWN CREDENTIALS
› PARTNER MANAGED IDENTITIES
› SHARING INVITATION MODEL› CONTROL APPLICATION
ACCESS
![Page 20: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/20.jpg)
TAKE IT FURTHER: B2CI HAVE AN ONLINE APPLICATION AND I NEED INDIVIDUAL CUSTOMERS TO SIGN-UP AND ENROLL FOR IT
› SELF SERVICE REGISTRATION› SUPPORT SOCIAL ACCOUNTS› MFA (OPTIONAL)
![Page 21: Managing Identities in the Microsoft Cloud](https://reader036.vdocument.in/reader036/viewer/2022062302/58ed281b1a28ab27178b45f1/html5/thumbnails/21.jpg)
KEY TAKEAWAYS
EC2
ON-PREMISES PRIVATE CLOUDMANAGED DEVICES
SIMPLICITYIS THE
ULTIMATE SOPHISTICATION