First published on CloudBlogs on Nov, 04 2014
With IT departments enabling users to work anywhere on any device, identity management becomes a very critical component of an organization’s enterprise mobility strategy. It is important to allow your users access to the data they need, but to be able to manage and monitor that access. A user’s apps, devices, data, and identity need to be bound together to allow IT insight around their corporate resources. Having insight is only useful however, if operating your IT solutions is a simple process. Using a hybrid identity approach allows you to manage your on premise and cloud users on the same console and with the same processes. The integration of on premise identity with cloud identity is vital to a mobile enterprise. The Hybrid Identity Vision There are several key elements of Microsoft’s Hybrid Identity strategy:
With IT departments enabling users to work anywhere on any device, identity management becomes a very critical component of an organization’s enterprise mobility strategy. It is important to allow your users access to the data they need, but to be able to manage and monitor that access. A user’s apps, devices, data, and identity need to be bound together to allow IT insight around their corporate resources. Having insight is only useful however, if operating your IT solutions is a simple process. Using a hybrid identity approach allows you to manage your on premise and cloud users on the same console and with the same processes. The integration of on premise identity with cloud identity is vital to a mobile enterprise. The Hybrid Identity Vision There are several key elements of Microsoft’s Hybrid Identity strategy:
- Allow customers to create and manage a single identity for each user across all on premises directories, keeping attributes in sync and providing self-service and single sign-on for users.
- Sync user identities between on premises directories and Microsoft Azure Active Directory for a single identity across all corporate resources on premises and cloud.
-
Enable customers to choose the best option for connecting their on premises (
Windows Server Active Directory
) and cloud directories. For example, customers could:
- Federate identities with Windows Server Active Directory Federation Services to maintain all authentication against a datacenter-based directory.
- Utilize Azure Connect to set up synchronization between on premises and cloud directories (including write back to on premises).
- Provide single sign-on access to hundreds of cloud-based SaaS applications.
- Enforce strong authentication to sensitive applications and information with conditional access policies and multi-factor authentication.
- Keep users productive with self-service password reset and group management for both datacenter and cloud-based directories.
Published Sep 08, 2018
Version 1.0MicrosoftSecurityandComplianceTeam
Iron Contributor
Joined September 05, 2018
Security, Compliance, and Identity Blog
Follow this blog board to get notified when there's new activity