Planky
Planky
Planky is the Azure evangelist in the UK who is obsessed with the concept 2 rowing machine...
-
Using Windows Azure to Build Pop-Up Labs in the Cloud: CartoonAlthough you might build say, a Sharepoint infrastructure in Windows Azure and leave it deployed as a permanent feature, totally integrated into your enterprise infrastructure, there are a growing number of organisations taking advantage of the temporary nature such infrastructures can have. Whether...
-
Programming Windows Azure Active DirectoryWindows Azure Active Directory (WAAD) now gives you Single-Sign-On to your apps, an API that allows you to both read and write data to the directory and you can even perform differential queries where only the changes since your last query are returned.
This video explains the concepts in cartoon-format...
-
Windows Azure Active Directory: Control Access to Windows AzureAnother cartoon format video plus demos, which shows how you can use Windows Azure Active Directory to create a team of users who can login and access the Windows Azure infrastructure; how you can set up 2-factor authentication for those with serious responsibilities, how to set up Dir-Sync between...
-
Windows Azure Active Directory CartoonWindows Azure Active Directory is described in cartoon format in this video. It's an easy to follow sketch of all the major pieces and how you can use it. It also describes the differences between Windows Azure Active Directory and Windows Server Active Directory.
Staff
Here is a list of Channel 9 staff members.
Windows Azure Active Directory Cartoon
Apr 05, 2013 at 3:29 AMHi BraveStarr,
Yes - that's exactly right. In federated environments, the authentication itself is performed by the "identity provider" (IP). It the creates a token which is signed and forwarded to the consumer who trusts it. It means the app and WAAD don't do the password management. That is done by the folks who know it best - the IT admins INSIDE your organisation. If somebody forgets their password, they get it changed in AD. If somebody leaves the org, when you disable their account in AD, they are automatically locked out of not only the AD-integrated environments, but also the environments that are federated with the local AD - such as WAAD based apps.
There's a video which describes the process (using the "old" Ofice 365 directory and apps - exactly the same principles though) here:
http://blogs.msdn.com/b/plankytronixx/archive/2011/01/25/whiteboard-video-how-adfs-and-the-microsoft-federation-gateway-work-together-up-in-the-office-365-cloud.aspx
Windows Azure Active Directory: Control Access to Windows Azure
Mar 13, 2013 at 2:40 PMHi Dean,
I can set you on the right track - email me a splank@microsoft.com. I just won't be able to get involved in detail - I'm in the UK. I can put you on to a partner who know this very well - UK based but they have international offices.. I don't know any swiss partners in this cloud/identity space...
Windows Azure Active Directory: Control Access to Windows Azure
Mar 13, 2013 at 2:37 PMHi CodeGrue - I'd recommend you watch a video I made to explain possibilities between on prem AD and Office 365 (AKA Azure AD) Dirsync. The click-by-clikc screencast first: http://blogs.msdn.com/b/plankytronixx/archive/2011/01/24/video-screencast-complete-setup-details-for-federated-identity-access-from-on-premise-ad-to-office-365.aspx
and the theory second:
http://blogs.msdn.com/b/plankytronixx/archive/2011/01/25/whiteboard-video-how-adfs-and-the-microsoft-federation-gateway-work-together-up-in-the-office-365-cloud.aspx
Windows Azure Active Directory: Control Access to Windows Azure
Mar 13, 2013 at 2:32 PMHi mrpaulb.
You are describing a feature of IE (since IE8 I think) where if you have ANY instance of IE open, it maintains the authentication cookie across all instances. You could alternatively open private tabs.
Windows Azure Active Directory: Control Access to Windows Azure
Mar 08, 2013 at 11:33 AMDo you mean you had to try 3 different browsers to get the button to appear?
Anyway I'm glad you have it all working now.
Windows Azure Active Directory: Control Access to Windows Azure
Mar 06, 2013 at 3:37 AMHi mrpaulb,
On re-reading your opening post I can see that you tried to log in to Azure using a standard LiveID.
To get those new AD features enabled in the portal, you need to log in to the Azure portal using your WAAD account. That means you need to CREATE THE WAAD TENANT FIRST. Go to 11:18 in the video and be sure to follow that initial step. Some steps are not shown in that part because it was recorded on a pre-production system. You need to associate a WAAD tenant with the Azure subscription of the admin of the tenant. Right now, that means creating a new trial subscription. In the spring that restriction will be lifted and you'll be able to associate an existing Azure subscription with your tenant.
I've created a short video with all the steps here http://aka.ms/WAADsubscription... Hope this helps you.
Thanks for your enthusiasm Mike.
Windows Azure Active Directory: Control Access to Windows Azure
Mar 04, 2013 at 12:45 PMGive it a try now
Windows Azure Active Directory Cartoon
Feb 09, 2013 at 2:00 AMThanks Dave - I really appreciate your enthusiasm.
Tony - Ha ha! I guess that's the "richness of humanity"
Windows Azure Active Directory Cartoon
Jan 03, 2013 at 1:06 PMThanks Liam.
Windows Azure Active Directory Cartoon
Dec 24, 2012 at 3:23 PM1. Yes, that's exactly what you can do.
2. It was recently announced that WAAD is free. Office 365 licenses, which you apply to WAAD users still have to be paid for, but the users you create in WAAD are free. To manage the users in Office 365 (remember the users are now in WAAD) go to activedirectory.windowsazure.com and log in using your Office 365 administrator account.
Remember the difference between free users in the directory and Office 365 licenses that you have to pay for. A license is then "attached" to one of the free users in the directory. The users are free, the Office 365 services provided to any users are not free.
You can have some users in your WAAD that have O365 licneses applied and some users that don't have them applied.
Hope that explains.
Planky
See more comments…