Book Image

Mastering Identity and Access Management with Microsoft Azure - Second Edition

By : Jochen Nickel
Book Image

Mastering Identity and Access Management with Microsoft Azure - Second Edition

By: Jochen Nickel

Overview of this book

Microsoft Azure and its Identity and access management are at the heart of Microsoft's software as service products, including Office 365, Dynamics CRM, and Enterprise Mobility Management. It is crucial to master Microsoft Azure in order to be able to work with the Microsoft Cloud effectively. You’ll begin by identifying the benefits of Microsoft Azure in the field of identity and access management. Working through the functionality of identity and access management as a service, you will get a full overview of the Microsoft strategy. Understanding identity synchronization will help you to provide a well-managed identity. Project scenarios and examples will enable you to understand, troubleshoot, and develop on essential authentication protocols and publishing scenarios. Finally, you will acquire a thorough understanding of Microsoft Information protection technologies.
Table of Contents (23 chapters)
Title Page
Copyright and Credits
About Packt
Contributors
Preface
Index

Synchronization scenarios


With the creation of a new Azure AD tenant, the directory information is managed independently from the on-premises AD forest by default. So, basically, a new onboarded user must be created in both directories: the Azure AD and the local AD. Unless you drive a cloud-only company, you always need to synchronize identities from the on-premises AD to the Azure AD tenant you own to provide a single identity. After the synchronization process is in place, Azure AD and AD can be viewed as one unique identity service. The following section provides you with several integration scenarios, including the user sign-in options. We will divide this section into the following situations:

  • Single-forest integration
  • Multi-forest integration
  • Multi Azure Active Directory Integration
  • Azure Active Directory Domain Services Integration
  • Stretched Active Directory to Azure IaaS
  • Azure Active Directory B2B Integration
  • Azure Active Directory and Microsoft Office 365 synchronization
  • Identity and password...