Agenda
Azure AD and the Hybrid Enterprise
Azure AD Identity & Access Management Scenarios
Azure AD Premium
Q&A
Windows Azure
Identity Management
HR
Other apps
Sync
Custom
apps
Windows Server
Other Directories Active Directory
SaaS
apps
10,000 + apps
Devices
Other Directories
Azure AD directory
management
Manage users in your cloud directory
Management portal
PowerShell
Programmatic Graph API
Features used
Interactive dashboard:
See usage graphs for SaaS apps that can be pivoted on users,
web requests or volume of data exchanged with the
application
Features used
Windows Azure AD single sign on (SSO) for SaaS
applications
Automated user provisioning and de-provisioning
to SaaS applications
Access Panel at myapps.microsoft.com
Company-branded sign-in and app access
experience
7:37 AM
Features used
Synchronize across on-premises data sources
and into Windows Azure AD
Windows Azure AD provides user and group
provisioning to ServiceNow and other SaaS
apps
Features used
Synchronize on-premises data sources to
Windows Azure AD
Group-based application assignment in WAAD
Incorporate users from HR sources such as SAP,
PeopleSoft and Oracle
Features used
Application dashboard
Features used
Reset of on-premises passwords from
the cloud (pwd. writeback to WSAD)
Phone and email verification methods
End-user registration of contact
methods
Customization of helpdesk URL and
branding of Password Reset Portal
with universitys logo
Features used
Sign-in page branded with company
logo and illustration
Customized help text on sign-in page
Access Panel for end-users customized
with company logo
Features used
Targeted MFA for sensitive accounts
Customization of MFA greetings, fraud alerts,
one time bypass capabilities
End-user self-service enrollment
Machine learning
Detection of attacks spanning
organizations
Investigate sign in activity and devices
Admin Notifications
Download data for offline analysis
AD-integrated applications can access Office 365 and other web APIs
Write powerful applications that access email, calendar, contacts, files, etc. in
Office 365 and other applications
Cross-platform support
Web applications and web APIs can run on Windows Azure or other infrastructure
Native client applications can run on iOS, Android, and Windows
Open Standards
SAML, OAuth 2.0, OpenID Connect, Odata 3.0
AAD Premium
Yes - No Limit
User/Group Management
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Directory as a Service
Yes
Yes
Yes
Multi-Factor Authentication
Yes
Yes
Yes
Yes
Yes
Usage Reporting
Yes
Yes
Yes
Yes
SLA
Yes
Yes
Yes
MICROSOFT CONFIDENTIAL