sessions about to start – get your rig on!. highly available cloud-based sso for office365 james...
TRANSCRIPT
![Page 1: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/1.jpg)
Sessions about to start – Get your rig on!
![Page 2: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/2.jpg)
Highly Available Cloud-based SSO for Office365James Lewis – KloudAndreas Wasita – Kloud
OSS307
![Page 3: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/3.jpg)
• @jimmylewis @andreaswasita
![Page 4: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/4.jpg)
Gartner = Through 2016, Federated Single Sign-On Will Be the Predominant SSO Technology, Needed by 80 Percent of Enterprises*
* Gartner Identity and Access Management Summit 2013, March 11-13, in London, U.K
![Page 5: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/5.jpg)
AgendaOffice 365 Federated SSO Deployment ScenariosAzure Deployment BenefitsAAD SyncAAD Connect
![Page 6: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/6.jpg)
Office 365 Deployment ScenariosOn-premises deploymentAzure deploymentHybrid deployment
![Page 7: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/7.jpg)
All too hard…
![Page 8: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/8.jpg)
Typical On-Premises Deployment
• Infrastructure, Storage, Facilities
• Dependency on internal datacentres for access to “cloud services”
• Lots of network gear and configuration
![Page 9: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/9.jpg)
Azure Deployment Configuration
• VNET• Azure Cloud
Service• Azure ILB• Azure VMs• Endpoint• Availability Sets
![Page 10: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/10.jpg)
Azure VM high availability
Availability Set = to ensure VMs are located in different fault domains
Fault Domain
Rack
Fault Domain
Rack
AD FS Availability Set
WAP Availability Set
WAP WAP
AD FS AD FS
![Page 11: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/11.jpg)
Demo – Highly Available SSO on AzureJames Lewis – Kloud Andreas Wasita – Kloud
![Page 12: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/12.jpg)
Rapid Recovery
New-AzureVM
![Page 13: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/13.jpg)
Scalable Architecture• 1,000 – 15,000
users15,000 – 60,000 users
![Page 14: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/14.jpg)
Hybrid Deployment Configuration
zAzure
On-Premises
![Page 15: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/15.jpg)
Azure VM sizing for AD FS and WAP
WAP
AD FS
MS Recommendation: Dual Quad Core 2.27GHz CPU (8 cores) , 4 GB RAM
Azure VM Size A3 = 4 Cores, 7 GB RAM $0.364/h - $270.28/monthA4 = 8 Cores, 14 GB RAM $0.727/h - $540.56/month
![Page 16: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/16.jpg)
Some design considerations for Azure …Operational and Configuration Management
Passive Authentication Flows
Domain Controllers – at least one per domain
Azure VNETs – plan configuration carefully
Azure traffic manager for Geo DR
All Azure services need to run 24x7 to ensure HA – consider costs
![Page 17: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/17.jpg)
Why on Azure ?
Weeks vs Months
Agility
Simple HA
Resilience
Scalable
Scale Instantly
Opex vs Capex
Economy
Endpoint & ACL
Security
![Page 18: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/18.jpg)
AAD Sync
![Page 19: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/19.jpg)
AAD Sync = One Sync Service to Rule
Multi – Forest to AAD (incl. multi Exchange orgs)
Non-AD based directory sources
Advanced provisioning, mapping and filtering rules
Password Failover – DR for SSO Coming
soon
Coming
soon
![Page 20: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/20.jpg)
Demo – DirSync Password failover
James Lewis – Kloud Andreas Wasita – Kloud
![Page 21: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/21.jpg)
What about AAD Connect?
Removing complexity out of AAD integration
Wizard driven tool to make deployment easier
Downloads all installation pre-requisites
Provides the flexibility to deploy to patterns wehave discussed today
Currently in public preview
![Page 22: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/22.jpg)
Key Session Takeaways
Use the deployment model that best suits your Office 365 authentication requirements
Understand the benefits of Azure Deployment
Microsoft is making deployment easier for you!
![Page 23: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/23.jpg)
Contact [email protected]@jimmylewishttp://blog.kloud.com.au/
[email protected]@andreaswasitahttp://blog.kloud.com.au/http://wasita.net/
![Page 24: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/24.jpg)
Azure User GroupsMelbourne: http://www.meetup.com/MelbourneAzure/Sydney: http://www.meetup.com/Azure-Sydney-User-Group/
www.meetup.com/Azure-Sydney-User-Group/
Office365 User GroupsMelbourne: http://www.meetup.com/Melbourne-Office-365-Meetup/Sydney: http://www.meetup.com/Sydney-Office-365-Meetup/
![Page 25: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/25.jpg)
Related content
Microsoft Office 365 Security, Privacy and Compliance Overview (OSS203)Cloud Identities and Azure Active Directory Premium (DCI305)Microsoft Office 365 ProPlus Deployment (OSS301)
![Page 26: Sessions about to start – Get your rig on!. Highly Available Cloud-based SSO for Office365 James Lewis – Kloud Andreas Wasita – Kloud OSS307](https://reader035.vdocuments.mx/reader035/viewer/2022062421/56649d6d5503460f94a4de6e/html5/thumbnails/26.jpg)
Thanks! Don’t forget to complete your evaluations
aka.ms/mytechedmel