SlideShare une entreprise Scribd logo

aOS Brussels - Azure Active Directory News

Télécharger en tant que PPTX, PDF
Maxime Rastello
Maxime Rastello

Learn all the new features and enhancements to Azure Active Directory (based on 05/12/2016)

Technologie
1  sur  18
aOS Brussels December 5th 2016 Azure Active Directory News Maxime Rastello @MaximeRastello http://www.maximerastello.com
aOS Brussels December 5th 2016 Maxime Rastello • IT & Cloud Architect – AZEO • Microsoft MVP Enterprise Mobility • Microsoft P-Seller Device, EMS, WE • Books: Windows 8.1, Office 365
aOS Brussels December 5th 2016 Agenda • Licensing changes • New Features & Enhancements • Authentication / Azure AD Connect / Connect Health • Conditional Access • New Management Portal • Access Panel • Azure AD PowerShell 2.0 • Azure AD Identity Protection • Privileged Identity Management • Azure B2B Invitation API • Azure AD Domain Services
aOS Brussels December 5th 2016 Licensing Changes
aOS Brussels December 5th 2016 Features Free Basic Premium P1 Premium P2 Office 365 Common Active Directory objects 500 000 Illimité Illimité Illimité Illimité SSO with SaaS apps 10 / utilisateur 10 / utilisateur Illimité Illimité 10 / utilisateur User creation, management, Device Registration ✓ ✓ ✓ ✓ ✓ Directory sync with Azure AD Connect ✓ ✓ ✓ ✓ ✓ Self-Service Password Change for cloud users ✓ ✓ ✓ ✓ ✓ Usage & Security advanced Reports 3 rapports 3 rapports Avancés Avancés 3 rapports Basic Group-based access management / provisioning ✓ ✓ ✓ Self-Service Password Reset for cloud users ✓ ✓ ✓ ✓ Company Branding ✓ ✓ ✓ ✓ Azure App Proxy ✓ ✓ ✓ SLA 99,9% ✓ ✓ ✓ ✓ Premium Self-Service Password Change/Reset/Unlock for AD Synced users ✓ ✓ Self-Service Group and app Management/Self-Service application additions/Dynamic Groups ✓ ✓ Administrative Units ✓ ✓ Multi-Factor Authentication cloud (Azure MFA) & on-premises (MFA Server) ✓ ✓ Cloud uniquement MIM CALs / MIM Server License Connect Health ✓ ✓ Cloud App Discovery ✓ ✓ Azure AD Identity Protection / Azure AD Privileged Identity Management ✓ Azure Active Directory Editions
aOS Brussels December 5th 2016 New Features & Enhancements
aOS Brussels December 5th 2016 Authentication Mecanisms • Existing solutions : • Full Cloud • Password Hash Sync (PHS) • ADFS Federation • Pass-Through Authentication (PTA) • Azure AD Connect for Kerberos proxy • Authentication is made on-premises • Avoid Password Sync • Private Preview Licensing : All
aOS Brussels December 5th 2016 Azure Active Directory Connect • New build v1.1.343.0 - November 2016 • Now supports : • Windows Server 2016 • SQL Server 2016 • AD FS 2016 • LDAP Support : Private Preview Licensing : All General Availability
aOS Brussels December 5th 2016 Azure AD Connect Health • Monitoring solution for on-premises services • Monitored products: • Active Directory Domain Services (AD DS) • Active Directory Federation Services (AD FS) • Azure AD Connect • Sync error report : Public Preview Licensing : Premium P1 & P2 General Availability
aOS Brussels December 5th 2016 Conditional Access • SaaS application access for compliant, domain-joined or enrolled devices • Supported operating system: • Windows 7 (MSI) • Windows 8.1 (Native) • Windows 10 (Native) • Supports IE11 and Edge Licensing : Premium P1 & P2 General Availability
aOS Brussels December 5th 2016 New Management Portal • Azure Active Directory management in new Portal (portal.azure.com) • Not all features are available for now (Preview) • User • Groups • Apps • Domains • Branding • Light reports • New Preview Release soon • Full parity with Classic Portal Licensing : All Public Preview
aOS Brussels December 5th 2016 Azure AD Access Panel • Also called “My Apps” (myapps.microsoft.com) Licensing : All General Availability BEFORE AFTER
aOS Brussels December 5th 2016 Azure AD PowerShell module v2 • Install-Module -Name AzureADPreview • Old cmdlets : New-MSOLUser • New cmdlets : New-AzureADUser • Features : • Better alignment with Graph API • SearchString parameter • Token lifetime management • Certificate Authority management • App management Licensing : All Public Preview
aOS Brussels December 5th 2016 Azure AD Identity Protection • Detect suspicious user activity • Different locations in a short period of time • Access using anonymous proxies (Tor…) • Enforce MFA registration for your users • Start automatic remediation • Trigger MFA at sign-in • Trigger a password change Licensing : Premium P2 General Availability
aOS Brussels December 5th 2016 Azure AD Privileged Identity Management • Set users as Eligible administrators • Different locations in a short period of time • Access using anonymous proxies (Tor…) • Assign temporary Admin Roles • From 30min to 72h max • Monitor admin rights usage in your organization Licensing : Premium P2 General Availability
aOS Brussels December 5th 2016 Azure AD Business 2 Business (B2B) • Current behavior : CSV import for user invitation (max 2000) • New feature : use API to send user invitation Licensing : All Public Preview
aOS Brussels December 5th 2016 Azure AD Domain Services • Standalone AD DS domain in Azure • Identities are synced from Azure AD • Not an extension of your on-prem AD • Use to domain-join Azure VMs • Kerberos authentication • New GA features • Secure LDAP • DNS management • Domain-Join for Linux • Custom Ous • … Licensing : Separate pricing General Availability
aOS Brussels December 5th 2016 Thanks to our sponsors! Gold

Recommandé

Azure Active Directory
Azure Active DirectoryAzure Active Directory
Azure Active Directory
Sovelto
 
Windows Azure Active Directory
Windows Azure Active DirectoryWindows Azure Active Directory
Windows Azure Active Directory
Pavel Revenkov
 
Azure Active Directory
Azure Active DirectoryAzure Active Directory
Azure Active Directory
Thurupathan Vijayakumar
 
Azure Active Directory - An Introduction
Azure Active Directory - An IntroductionAzure Active Directory - An Introduction
Azure Active Directory - An Introduction
Venkatesh Narayanan
 
Azure active directory
Azure active directoryAzure active directory
Azure active directory
Raju Kumar
 
Integrating your on-premises Active Directory with Azure and Office 365
Integrating your on-premises Active Directory with Azure and Office 365Integrating your on-premises Active Directory with Azure and Office 365
Integrating your on-premises Active Directory with Azure and Office 365
nelmedia
 
Easy Auth Overview - Tokyo Azure Meetup - Feb 2018
Easy Auth Overview - Tokyo Azure Meetup - Feb 2018Easy Auth Overview - Tokyo Azure Meetup - Feb 2018
Easy Auth Overview - Tokyo Azure Meetup - Feb 2018
Chris Gillum
 
Microsoft Azure Active Directory
Microsoft Azure Active DirectoryMicrosoft Azure Active Directory
Microsoft Azure Active Directory
Önder Değer
 

Recommandé

Azure Active Directory
Azure Active DirectoryAzure Active Directory
Azure Active Directory
Sovelto
 
Windows Azure Active Directory
Windows Azure Active DirectoryWindows Azure Active Directory
Windows Azure Active Directory
Pavel Revenkov
 
Azure Active Directory
Azure Active DirectoryAzure Active Directory
Azure Active Directory
Thurupathan Vijayakumar
 
Azure Active Directory - An Introduction
Azure Active Directory - An IntroductionAzure Active Directory - An Introduction
Azure Active Directory - An Introduction
Venkatesh Narayanan
 
Azure active directory
Azure active directoryAzure active directory
Azure active directory
Raju Kumar
 
Integrating your on-premises Active Directory with Azure and Office 365
Integrating your on-premises Active Directory with Azure and Office 365Integrating your on-premises Active Directory with Azure and Office 365
Integrating your on-premises Active Directory with Azure and Office 365
nelmedia
 
Easy Auth Overview - Tokyo Azure Meetup - Feb 2018
Easy Auth Overview - Tokyo Azure Meetup - Feb 2018Easy Auth Overview - Tokyo Azure Meetup - Feb 2018
Easy Auth Overview - Tokyo Azure Meetup - Feb 2018
Chris Gillum
 
Microsoft Azure Active Directory
Microsoft Azure Active DirectoryMicrosoft Azure Active Directory
Microsoft Azure Active Directory
Önder Değer
 
O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman
O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa ToromanO365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman
O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman
NCCOMMS
 
Windows azure active directory
Windows azure active directoryWindows azure active directory
Windows azure active directory
Krunal Trivedi
 
Windows Azure Active Directory
Windows Azure Active DirectoryWindows Azure Active Directory
Windows Azure Active Directory
Krunal Trivedi
 
AWS Security
AWS SecurityAWS Security
AWS Security
Vijayendra Bhati
 
Develop enterprise-ready applications for Microsoft Teams
Develop enterprise-ready applications for Microsoft TeamsDevelop enterprise-ready applications for Microsoft Teams
Develop enterprise-ready applications for Microsoft Teams
Markus Moeller
 
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUGAzure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Roy Kim
 
O365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa Toroman
O365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa ToromanO365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa Toroman
O365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa Toroman
NCCOMMS
 
ADFS + IAM
ADFS + IAMADFS + IAM
ADFS + IAM
Richard Harvey
 
Certification in Microsoft Azure
Certification in Microsoft AzureCertification in Microsoft Azure
Certification in Microsoft Azure
Daniel Toomey
 
Como construir suas aplicações escaláveis sem servidores
Como construir suas aplicações escaláveis sem servidoresComo construir suas aplicações escaláveis sem servidores
Como construir suas aplicações escaláveis sem servidores
Alexandre Santos
 
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
Azure Key Vault with a PaaS Architecture and ARM Template DeploymentAzure Key Vault with a PaaS Architecture and ARM Template Deployment
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
Roy Kim
 
Architecting for Greater Security - London Summit Enteprise Track RePlay
Architecting for Greater Security - London Summit Enteprise Track RePlayArchitecting for Greater Security - London Summit Enteprise Track RePlay
Architecting for Greater Security - London Summit Enteprise Track RePlay
Amazon Web Services
 
Understanding Azure AD
Understanding Azure ADUnderstanding Azure AD
Understanding Azure AD
New Horizons Ireland
 
EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On
EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-OnEWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On
EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On
Peter Selch Dahl
 
Build and Manage a Highly Secure Cloud Environment on AWS and Azure
Build and Manage a Highly Secure Cloud Environment on AWS and AzureBuild and Manage a Highly Secure Cloud Environment on AWS and Azure
Build and Manage a Highly Secure Cloud Environment on AWS and Azure
CloudHesive
 
Microsoft Azure Identity and O365
Microsoft Azure Identity and O365Microsoft Azure Identity and O365
Microsoft Azure Identity and O365
Kris Wagner
 
M baa s as the new enterprise middleware
M baa s as the new enterprise middlewareM baa s as the new enterprise middleware
M baa s as the new enterprise middleware
kidozen
 
Microsoft Azure News - Aug 2016
Microsoft Azure News - Aug 2016Microsoft Azure News - Aug 2016
Microsoft Azure News - Aug 2016
Daniel Toomey
 
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
Roy Kim
 
Programming with Azure Active Directory
Programming with Azure Active DirectoryProgramming with Azure Active Directory
Programming with Azure Active Directory
Joonas Westlin
 
11aman
11aman11aman
11aman
Anu Jamwal
 
Graphical Password Authenticationimp.docx2
Graphical Password Authenticationimp.docx2Graphical Password Authenticationimp.docx2
Graphical Password Authenticationimp.docx2
Raghu Vamsy Sirasala
 

Contenu connexe

Tendances

Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUGAzure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Roy Kim
 
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
Azure Key Vault with a PaaS Architecture and ARM Template DeploymentAzure Key Vault with a PaaS Architecture and ARM Template Deployment
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
Roy Kim
 
M baa s as the new enterprise middleware
M baa s as the new enterprise middlewareM baa s as the new enterprise middleware
M baa s as the new enterprise middleware
kidozen
 

Tendances (20)

O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman
O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa ToromanO365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman
O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman
 
Windows azure active directory
Windows azure active directoryWindows azure active directory
Windows azure active directory
 
Windows Azure Active Directory
Windows Azure Active DirectoryWindows Azure Active Directory
Windows Azure Active Directory
 
AWS Security
AWS SecurityAWS Security
AWS Security
 
Develop enterprise-ready applications for Microsoft Teams
Develop enterprise-ready applications for Microsoft TeamsDevelop enterprise-ready applications for Microsoft Teams
Develop enterprise-ready applications for Microsoft Teams
 
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUGAzure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
Azure AD App Proxy Login Scenarios with an On Premises Applications - TSPUG
 
O365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa Toroman
O365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa ToromanO365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa Toroman
O365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa Toroman
 
ADFS + IAM
ADFS + IAMADFS + IAM
ADFS + IAM
 
Certification in Microsoft Azure
Certification in Microsoft AzureCertification in Microsoft Azure
Certification in Microsoft Azure
 
Como construir suas aplicações escaláveis sem servidores
Como construir suas aplicações escaláveis sem servidoresComo construir suas aplicações escaláveis sem servidores
Como construir suas aplicações escaláveis sem servidores
 
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
Azure Key Vault with a PaaS Architecture and ARM Template DeploymentAzure Key Vault with a PaaS Architecture and ARM Template Deployment
Azure Key Vault with a PaaS Architecture and ARM Template Deployment
 
Architecting for Greater Security - London Summit Enteprise Track RePlay
Architecting for Greater Security - London Summit Enteprise Track RePlayArchitecting for Greater Security - London Summit Enteprise Track RePlay
Architecting for Greater Security - London Summit Enteprise Track RePlay
 
Understanding Azure AD
Understanding Azure ADUnderstanding Azure AD
Understanding Azure AD
 
EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On
EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-OnEWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On
EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On
 
Build and Manage a Highly Secure Cloud Environment on AWS and Azure
Build and Manage a Highly Secure Cloud Environment on AWS and AzureBuild and Manage a Highly Secure Cloud Environment on AWS and Azure
Build and Manage a Highly Secure Cloud Environment on AWS and Azure
 
Microsoft Azure Identity and O365
Microsoft Azure Identity and O365Microsoft Azure Identity and O365
Microsoft Azure Identity and O365
 
M baa s as the new enterprise middleware
M baa s as the new enterprise middlewareM baa s as the new enterprise middleware
M baa s as the new enterprise middleware
 
Microsoft Azure News - Aug 2016
Microsoft Azure News - Aug 2016Microsoft Azure News - Aug 2016
Microsoft Azure News - Aug 2016
 
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
 
Programming with Azure Active Directory
Programming with Azure Active DirectoryProgramming with Azure Active Directory
Programming with Azure Active Directory
 

En vedette

Graphical Password Authenticationimp.docx2
Graphical Password Authenticationimp.docx2Graphical Password Authenticationimp.docx2
Graphical Password Authenticationimp.docx2
Raghu Vamsy Sirasala
 
Graphical password authentication
Graphical password authenticationGraphical password authentication
Graphical password authentication
Asim Kumar Pathak
 

En vedette (7)

11aman
11aman11aman
11aman
 
Graphical Password Authenticationimp.docx2
Graphical Password Authenticationimp.docx2Graphical Password Authenticationimp.docx2
Graphical Password Authenticationimp.docx2
 
Keynote Session : Kill The Password
Keynote Session : Kill The PasswordKeynote Session : Kill The Password
Keynote Session : Kill The Password
 
Graphical password
Graphical passwordGraphical password
Graphical password
 
Graphical password authentication
Graphical password authenticationGraphical password authentication
Graphical password authentication
 
Multiple grid based graphical text password authentication
Multiple grid based graphical text password authenticationMultiple grid based graphical text password authentication
Multiple grid based graphical text password authentication
 
SlideShare's New App for Android
SlideShare's New App for AndroidSlideShare's New App for Android
SlideShare's New App for Android
 

Similaire à aOS Brussels - Azure Active Directory News

Windows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the CloudWindows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the Cloud
Chris Dufour
 
BlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure AD
BlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure ADBlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure AD
BlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure AD
BlueHat Security Conference
 

Similaire à aOS Brussels - Azure Active Directory News (20)

Azure - Identity as a service
Azure - Identity as a serviceAzure - Identity as a service
Azure - Identity as a service
 
Windows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the CloudWindows Azure Active Directory: Identity Management in the Cloud
Windows Azure Active Directory: Identity Management in the Cloud
 
Hitchhiker's Guide to Azure AD - SPS St Louis 2018
Hitchhiker's Guide to Azure AD - SPS St Louis 2018Hitchhiker's Guide to Azure AD - SPS St Louis 2018
Hitchhiker's Guide to Azure AD - SPS St Louis 2018
 
Tokyo Azure Meetup #6 - Azure Monthly Update - June
Tokyo Azure Meetup #6 - Azure Monthly Update - JuneTokyo Azure Meetup #6 - Azure Monthly Update - June
Tokyo Azure Meetup #6 - Azure Monthly Update - June
 
Understanding Cloud Identities - SMBNation 2015
Understanding Cloud Identities - SMBNation 2015Understanding Cloud Identities - SMBNation 2015
Understanding Cloud Identities - SMBNation 2015
 
Microsoft Workloads on AWS - AWS Public Sector Summit Singapore 2017
Microsoft Workloads on AWS - AWS Public Sector Summit Singapore 2017Microsoft Workloads on AWS - AWS Public Sector Summit Singapore 2017
Microsoft Workloads on AWS - AWS Public Sector Summit Singapore 2017
 
2014.10.22 Building Azure Solutions with Office 365
2014.10.22 Building Azure Solutions with Office 3652014.10.22 Building Azure Solutions with Office 365
2014.10.22 Building Azure Solutions with Office 365
 
Securing an Azure Function REST API with Azure Active Directory
Securing an Azure Function REST API with Azure Active DirectorySecuring an Azure Function REST API with Azure Active Directory
Securing an Azure Function REST API with Azure Active Directory
 
Make IT Pro's great again: Microsoft Azure for the SharePoint professional
Make IT Pro's great again: Microsoft Azure for the SharePoint professionalMake IT Pro's great again: Microsoft Azure for the SharePoint professional
Make IT Pro's great again: Microsoft Azure for the SharePoint professional
 
Understanding Azure AD Webinar Presentation
Understanding Azure AD Webinar PresentationUnderstanding Azure AD Webinar Presentation
Understanding Azure AD Webinar Presentation
 
48. Azure Active Directory - Part 1
48. Azure Active Directory - Part 148. Azure Active Directory - Part 1
48. Azure Active Directory - Part 1
 
DEF CON 27 - DIRK JAN MOLLEMA - im in your cloud pwning your azure environment
DEF CON 27 - DIRK JAN MOLLEMA - im in your cloud pwning your azure environmentDEF CON 27 - DIRK JAN MOLLEMA - im in your cloud pwning your azure environment
DEF CON 27 - DIRK JAN MOLLEMA - im in your cloud pwning your azure environment
 
2017-10-04 aOS back from MSIgnite aux MS Experiences 17
2017-10-04 aOS back from MSIgnite aux MS Experiences 172017-10-04 aOS back from MSIgnite aux MS Experiences 17
2017-10-04 aOS back from MSIgnite aux MS Experiences 17
 
2017-10-03 Session aOS - Back from Ignite - MS Experiences
2017-10-03 Session aOS - Back from Ignite - MS Experiences2017-10-03 Session aOS - Back from Ignite - MS Experiences
2017-10-03 Session aOS - Back from Ignite - MS Experiences
 
BlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure AD
BlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure ADBlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure AD
BlueHat Seattle 2019 || I'm in your cloud: A year of hacking Azure AD
 
Microsoft Azure Kimlik Yönetimi
Microsoft Azure Kimlik YönetimiMicrosoft Azure Kimlik Yönetimi
Microsoft Azure Kimlik Yönetimi
 
Microsoft Azure News - Sept 2016
Microsoft Azure News - Sept 2016Microsoft Azure News - Sept 2016
Microsoft Azure News - Sept 2016
 
Tokyo azure meetup #8 azure update, august
Tokyo azure meetup #8 azure update, augustTokyo azure meetup #8 azure update, august
Tokyo azure meetup #8 azure update, august
 
Tokyo azure meetup #8 - Azure Update, August
Tokyo azure meetup #8 - Azure Update, AugustTokyo azure meetup #8 - Azure Update, August
Tokyo azure meetup #8 - Azure Update, August
 
Microsoft Azure News - Oct 2016
Microsoft Azure News - Oct 2016Microsoft Azure News - Oct 2016
Microsoft Azure News - Oct 2016
 

Plus de Maxime Rastello

Plus de Maxime Rastello (11)

MS Tech Summit 2018 - Classifier, étiqueter et protéger les données sensibles...
MS Tech Summit 2018 - Classifier, étiqueter et protéger les données sensibles...MS Tech Summit 2018 - Classifier, étiqueter et protéger les données sensibles...
MS Tech Summit 2018 - Classifier, étiqueter et protéger les données sensibles...
 
aOS Luxembourg - Sécurisez vos services Office 365 avec la suite EMS
aOS Luxembourg - Sécurisez vos services Office 365 avec la suite EMSaOS Luxembourg - Sécurisez vos services Office 365 avec la suite EMS
aOS Luxembourg - Sécurisez vos services Office 365 avec la suite EMS
 
Mon offre de service Office 365 : quelles stratégies de sécurité pour répondr...
Mon offre de service Office 365 : quelles stratégies de sécurité pour répondr...Mon offre de service Office 365 : quelles stratégies de sécurité pour répondr...
Mon offre de service Office 365 : quelles stratégies de sécurité pour répondr...
 
Windows 10 - Nouvelles menaces et nouvelles réponses
Windows 10 - Nouvelles menaces et nouvelles réponsesWindows 10 - Nouvelles menaces et nouvelles réponses
Windows 10 - Nouvelles menaces et nouvelles réponses
 
aOS Grenoble - Sécurisez vos services Office 365 avec Azure AD et ASM
aOS Grenoble - Sécurisez vos services Office 365 avec Azure AD et ASMaOS Grenoble - Sécurisez vos services Office 365 avec Azure AD et ASM
aOS Grenoble - Sécurisez vos services Office 365 avec Azure AD et ASM
 
aOS Grenoble - Enterprise Mobility + Security : Tour d'horizon
aOS Grenoble - Enterprise Mobility + Security : Tour d'horizonaOS Grenoble - Enterprise Mobility + Security : Tour d'horizon
aOS Grenoble - Enterprise Mobility + Security : Tour d'horizon
 
aOS/CMD Aix - Sécurisez vos services Office 365 avec Azure AD et Advanced Sec...
aOS/CMD Aix - Sécurisez vos services Office 365 avec Azure AD et Advanced Sec...aOS/CMD Aix - Sécurisez vos services Office 365 avec Azure AD et Advanced Sec...
aOS/CMD Aix - Sécurisez vos services Office 365 avec Azure AD et Advanced Sec...
 
Azure Active Directory : on fait le point
Azure Active Directory : on fait le pointAzure Active Directory : on fait le point
Azure Active Directory : on fait le point
 
Enterprise Mobility + Security : tour d'horizon
Enterprise Mobility + Security : tour d'horizonEnterprise Mobility + Security : tour d'horizon
Enterprise Mobility + Security : tour d'horizon
 
DeepDive - Azure AD Identity Protection
DeepDive - Azure AD Identity ProtectionDeepDive - Azure AD Identity Protection
DeepDive - Azure AD Identity Protection
 
Retour d’expérience sur le monitoring et la sécurisation des identités Azure
Retour d’expérience sur le monitoring et la sécurisation des identités AzureRetour d’expérience sur le monitoring et la sécurisation des identités Azure
Retour d’expérience sur le monitoring et la sécurisation des identités Azure
 

Dernier

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 

Dernier (20)

Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 

aOS Brussels - Azure Active Directory News

  • 1. aOS Brussels December 5th 2016 Azure Active Directory News Maxime Rastello @MaximeRastello http://www.maximerastello.com
  • 2. aOS Brussels December 5th 2016 Maxime Rastello • IT & Cloud Architect – AZEO • Microsoft MVP Enterprise Mobility • Microsoft P-Seller Device, EMS, WE • Books: Windows 8.1, Office 365
  • 3. aOS Brussels December 5th 2016 Agenda • Licensing changes • New Features & Enhancements • Authentication / Azure AD Connect / Connect Health • Conditional Access • New Management Portal • Access Panel • Azure AD PowerShell 2.0 • Azure AD Identity Protection • Privileged Identity Management • Azure B2B Invitation API • Azure AD Domain Services
  • 4. aOS Brussels December 5th 2016 Licensing Changes
  • 5. aOS Brussels December 5th 2016 Features Free Basic Premium P1 Premium P2 Office 365 Common Active Directory objects 500 000 Illimité Illimité Illimité Illimité SSO with SaaS apps 10 / utilisateur 10 / utilisateur Illimité Illimité 10 / utilisateur User creation, management, Device Registration ✓ ✓ ✓ ✓ ✓ Directory sync with Azure AD Connect ✓ ✓ ✓ ✓ ✓ Self-Service Password Change for cloud users ✓ ✓ ✓ ✓ ✓ Usage & Security advanced Reports 3 rapports 3 rapports Avancés Avancés 3 rapports Basic Group-based access management / provisioning ✓ ✓ ✓ Self-Service Password Reset for cloud users ✓ ✓ ✓ ✓ Company Branding ✓ ✓ ✓ ✓ Azure App Proxy ✓ ✓ ✓ SLA 99,9% ✓ ✓ ✓ ✓ Premium Self-Service Password Change/Reset/Unlock for AD Synced users ✓ ✓ Self-Service Group and app Management/Self-Service application additions/Dynamic Groups ✓ ✓ Administrative Units ✓ ✓ Multi-Factor Authentication cloud (Azure MFA) & on-premises (MFA Server) ✓ ✓ Cloud uniquement MIM CALs / MIM Server License Connect Health ✓ ✓ Cloud App Discovery ✓ ✓ Azure AD Identity Protection / Azure AD Privileged Identity Management ✓ Azure Active Directory Editions
  • 6. aOS Brussels December 5th 2016 New Features & Enhancements
  • 7. aOS Brussels December 5th 2016 Authentication Mecanisms • Existing solutions : • Full Cloud • Password Hash Sync (PHS) • ADFS Federation • Pass-Through Authentication (PTA) • Azure AD Connect for Kerberos proxy • Authentication is made on-premises • Avoid Password Sync • Private Preview Licensing : All
  • 8. aOS Brussels December 5th 2016 Azure Active Directory Connect • New build v1.1.343.0 - November 2016 • Now supports : • Windows Server 2016 • SQL Server 2016 • AD FS 2016 • LDAP Support : Private Preview Licensing : All General Availability
  • 9. aOS Brussels December 5th 2016 Azure AD Connect Health • Monitoring solution for on-premises services • Monitored products: • Active Directory Domain Services (AD DS) • Active Directory Federation Services (AD FS) • Azure AD Connect • Sync error report : Public Preview Licensing : Premium P1 & P2 General Availability
  • 10. aOS Brussels December 5th 2016 Conditional Access • SaaS application access for compliant, domain-joined or enrolled devices • Supported operating system: • Windows 7 (MSI) • Windows 8.1 (Native) • Windows 10 (Native) • Supports IE11 and Edge Licensing : Premium P1 & P2 General Availability
  • 11. aOS Brussels December 5th 2016 New Management Portal • Azure Active Directory management in new Portal (portal.azure.com) • Not all features are available for now (Preview) • User • Groups • Apps • Domains • Branding • Light reports • New Preview Release soon • Full parity with Classic Portal Licensing : All Public Preview
  • 12. aOS Brussels December 5th 2016 Azure AD Access Panel • Also called “My Apps” (myapps.microsoft.com) Licensing : All General Availability BEFORE AFTER
  • 13. aOS Brussels December 5th 2016 Azure AD PowerShell module v2 • Install-Module -Name AzureADPreview • Old cmdlets : New-MSOLUser • New cmdlets : New-AzureADUser • Features : • Better alignment with Graph API • SearchString parameter • Token lifetime management • Certificate Authority management • App management Licensing : All Public Preview
  • 14. aOS Brussels December 5th 2016 Azure AD Identity Protection • Detect suspicious user activity • Different locations in a short period of time • Access using anonymous proxies (Tor…) • Enforce MFA registration for your users • Start automatic remediation • Trigger MFA at sign-in • Trigger a password change Licensing : Premium P2 General Availability
  • 15. aOS Brussels December 5th 2016 Azure AD Privileged Identity Management • Set users as Eligible administrators • Different locations in a short period of time • Access using anonymous proxies (Tor…) • Assign temporary Admin Roles • From 30min to 72h max • Monitor admin rights usage in your organization Licensing : Premium P2 General Availability
  • 16. aOS Brussels December 5th 2016 Azure AD Business 2 Business (B2B) • Current behavior : CSV import for user invitation (max 2000) • New feature : use API to send user invitation Licensing : All Public Preview
  • 17. aOS Brussels December 5th 2016 Azure AD Domain Services • Standalone AD DS domain in Azure • Identities are synced from Azure AD • Not an extension of your on-prem AD • Use to domain-join Azure VMs • Kerberos authentication • New GA features • Secure LDAP • DNS management • Domain-Join for Linux • Custom Ous • … Licensing : Separate pricing General Availability
  • 18. aOS Brussels December 5th 2016 Thanks to our sponsors! Gold

Notes de l'éditeur

  1. Plage lagon Boucan Canot