Microsoft Identity, Authentication & Authorisation Made Easy!
In this deeper session I’ll explain the various mechanisms that Microsoft use to not only identify users, but also authenticate and authorise them in both a Windows domain environment, but also in Microsoft 365 & Azure AD. Authentication ensures that your users are who they say they are. Authorisation ensure that they can only access resources in a controlled manner. So if you want to learn, buckle up and get ready. This is a busy session with lots of demos.
Timecodes
00:00 Introductions
02:03 Identity, Authentication & Authorisation Explained - Presentation
05:26 Demo - Creating an Identity in Microsoft Active Directory Domain Services ADDS
07:19 Authentication Explained
09:29 Creating Identities in the Cloud
11:11 Demo - Creating a cloud identity in Azure AD
14:13 Authentication - Proving who you are!
18:04 Demo - Authentication Methods in the cloud. Authentication methods, Conditional Access, MFA,
23:12 Authorisation - Here is what you can do. User Permissions, RBAC,MAC, ABAC
28:44 Demo - Authorisation Methods. Onedrive permissions, RBAC, Dynamic Groups, ABAC
34:36 Session conclusions and next steps
Пікірлер: 30
Absolutely great tutorial it helps to understand the rules and concepts behind what Microsoft deploys! Microsoft should pay you to producing such a knowledgeable Videos for the entire public forms for free of cost bravo!! 👍👍
@AndyMaloneMVP
Жыл бұрын
I wish they would🤪 many thanks
Very nice Andy! Very well described.
This video is excellent, providing valuable information. Please continue creating more videos like this :)
@AndyMaloneMVP
Жыл бұрын
I’ll do my best 😊👍
Not sure how to like the video multiple times, just watched 5 minutes of video and got my doubts cleared. I was so confused. Thank you for clarifying everything
@AndyMaloneMVP
Жыл бұрын
I’m delighted to hear that 👍
Great Video Andy, succinct description of the process, thank you for all your great videos.
Amazing Presentation Andy, as usual! Thanks for share all Microsoft new feature!
@AndyMaloneMVP
Жыл бұрын
No worries!
Hey Andy, I just wanted to say may God bless you!!! The practicality of your videos make them unmatched!!! ..and oh, I did subscribe! ❤
@AndyMaloneMVP
Жыл бұрын
Hey that’s so nice to hear. Thanks so much🙂👍
Very Well demonstrated each concept
Excellent Video Andy. I've watched and learned so much from your videos. You Sir are a great instructor. You have my subscription. Keep up the great work!
@AndyMaloneMVP
Жыл бұрын
Thanks so much Derrick I really appreciate that. You are very welcome.😊👍
This was a very well planned and detailed video. I just joined your channel recently. Thank you.
@AndyMaloneMVP
Жыл бұрын
Well, thank you very much and you’re very welcome 😊
Good overview! Thank you
Thank you. Answered so many questions.
Brilliant stuff, really helpful Andy 🙂
@AndyMaloneMVP
Жыл бұрын
Glad you enjoyed it
I like your videos so much! Thank you!❤ Is it possible to make a video on API management in internal mode? 😊
@AndyMaloneMVP
Жыл бұрын
Gosh, I would love to help you unfortunately I’m not a developer and this is not my area of expertise. Really sorry but I wish you the very best of luck.
Great video! If you don't already have one, could you make a video of a company with on-prem and it's way to use the benefits of azure without leaving any company data in the cloud. Think of a company with very critical data that is completely confidential.
@AndyMaloneMVP
Жыл бұрын
That’s a very good concept actually. Once you have deployed Azure AD You are essentially in hybrid. You do not have to migrate data across. You can leave it in the cloud. In the case of one drive for business you can have a hybrid SharePoint environment in which sensitive data is retained on premises, but for the user in the cloud, it looks like it’s in the same location. It’s a very clever concept.
Great demo . Could you explain how on premise hosted application having AD integrated authentication & authorisation using security groups could be replace with azure AD .
@AndyMaloneMVP
Жыл бұрын
Thanks very much. The topic of integrated applications involves two elements. In most cases, lenders will now offer a cloud based LOB or a line of business application which you can purchase in enterprise applications. Note of azure active directory. In terms of older applications that you are hosting on premises, then once you are in hybrid, you can then take advantage of the Azure AD Web app proxy feature. This allows the installation of an agent on premises. Once configured it will then proxy your applications to users in Microsoft 365. It’s a great, but I’m sure you’ll agree, temporary solution. Thanks again for watching and I hope this helped. For more details on these features visit, learn.microsoft.com
In conditional access, i get lots of azure cli? From bad actors.
@AndyMaloneMVP
Жыл бұрын
Weird but I’ve never heard if that