SlideShare a Scribd company logo

The user s identities

Download as PPTX, PDF
Giuliano Latini, profile picture
Giuliano Latini

This document discusses identity management solutions provided by Azure Active Directory (AAD). AAD allows users to self-manage their identities through features like password reset and multi-factor authentication. It also enables single sign-on for on-premises and cloud applications. AAD provides tools to measure identity security levels and integrate with other identity providers. It is a growing product supported by Microsoft with documentation, procedures, and monitoring. AAD helps users take more responsibility for their identities while improving security.

Technology
Related topics:
Identity Management
1 of 23
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
1 TOPIC The User's Identities
Who I am @giulianolatini giulianolatini giulianolatini GIULIANO LATINI
About me • ITPro > 30 year • Istruttore Informatico at Comune di Chiaravalle (AN) • Senior Software Developer at INNOTEAM s.r.l. • CTS Senior Member at Federation IDEM AAI • ICT Administrator at Università Politecnica delle Marche • Member of WindowServer.it community • Member of DevMarche community • Member of GetLatestVersion community • Linux Foundation Member
Users Identities: what’s the needs • Self-manage basic operation as change&recovery; • Strong security and MultiFactorAuthentications; • Manage external figures as collaborators, clients, contractors; • User Exprerience (UX) simple and brended; • Simple integration with other identities providers; • SingleSignOn for on-premises and cloud software products; • Measurement of acceptable security level;
We start from: /etc/passwd Security Account Manager (SAM) database LDAP Active Directory™ Active Directory™ Federation Services
Azure Active Directory Features
Azure Active Directory Features
Why trust in Azure Active Directory?
Break Office Perimeter with monitoring
Passwordless Authentications with AAD With FIDO2 security keys With Microsoft Authenticator App With Windows Hello for Business
Azure AD self-service password reset
Personalization and Brending of Login Page User login @ Danske Statsbaner
Identity Secure Score in AAD How does it work? Every 48 hours, Azure looks at your security configuration and compares your settings with the recommended best practices. • Objectively measure your identity security posture; • Plan identity security improvements; • Review the success of your improvements. How does it help me?
How be a Service Provider of SPID
SPID authentication workflow
Create AAD App with SSO mode
Set SAML configuration of AAD App
Azure Active Directory: the solutions gived It is a growing product with staff, ALM, procedures, docs, support, and monitoring health. It grows user’s self-manage and responsibility. The users can or are obligated to use complex passwords and the MFA, FIDO2 technologies from tenant's administrations. It gives tools to monitor security levels of tenant dynamically. It could be joined to other Identity providers for giving SSO on SaaS and Web applications.
Bibliograpy • Documentazione Azure Active Directory • Azure Active Directory: Microsoft’s cloud based identity and access management service • Azure Active Directory Authentication Overview: Authentication Fundamentals: The Basics • Deep Dive into Azure Active Directory (Azure AD): Learn Microsoft Azure Active Directory from Basic to Advanced concepts with real time walkthroughs
Bibliograpy • Modern Authentication with Azure Active Directory for Web Applications (Developer Reference) • [VIDEO] Managing Identities in Microsoft Azure Active Directory • Azure AD Introduction For Red Teamers • Azure AD/Office 365 Single Sign-On with Shibboleth 2 • MyWorkDrive Azure AD SAML Overview
Bibliograpy • SPID Sistema Pubblico di Identità Digitale • SPID - Regole Tecniche • SPID SAML Check • Identity Provider di test per SPID (docker: italia/spid-testenv2) • SAML-to-SAML Proxy: Satosa-Saml2Spid
Thanks Questions? giulianolatini @giulianolatini giulianolatini
“ Quote

More Related Content

PPTX
CSA Presentation - Software Defined Perimeter
Vishwas Manral
 
PDF
Shifting security left simplifying security for k8s open shift environments
LibbySchulze
 
PPTX
AppGate: Achieving Compliance in the Cloud
Cryptzone
 
PPTX
The Software-Defined Perimeter: Securing Network Access for the Modern Workforce
Perimeter 81
 
PDF
Zero trust server management - lightning
Kevin Gilpin
 
PDF
CSA SV Threat detection and prediction
Vishwas Manral
 
PPTX
TechWiseTV Workshop: Cisco CloudCenter (CliQr)
Robb Boyd
 
PDF
Recipe for good secrets management
Kevin Gilpin
 
CSA Presentation - Software Defined Perimeter
Vishwas Manral
 
Shifting security left simplifying security for k8s open shift environments
LibbySchulze
 
AppGate: Achieving Compliance in the Cloud
Cryptzone
 
The Software-Defined Perimeter: Securing Network Access for the Modern Workforce
Perimeter 81
 
Zero trust server management - lightning
Kevin Gilpin
 
CSA SV Threat detection and prediction
Vishwas Manral
 
TechWiseTV Workshop: Cisco CloudCenter (CliQr)
Robb Boyd
 
Recipe for good secrets management
Kevin Gilpin
 

What's hot (20)

PDF
Using Cisco pxGrid for Security Platform Integration: a deep dive
Cisco DevNet
 
PPT
Bio IT World 2015 - DevOps Security and Transparency
Kevin Gilpin
 
PPTX
Azure security basics
Stas Lebedenko
 
PDF
Azure Penetration Testing
Cheah Eng Soon
 
PDF
Building A Self-Documenting Application: A Study in Chef and Compliance
Kevin Gilpin
 
PDF
Patterns of evolution from monolith to microservices
Karina Mora
 
PPTX
Operational Complexity: The Biggest Security Threat to Your AWS Environment
Cryptzone
 
PPT
AlertSite Slideshow for the Booth at Web 2.0 Expo 2009
AlertSite
 
PDF
Azure Penetration Testing
Cheah Eng Soon
 
PPTX
SDWAN Concept - Certificate and keys Roles in Controllers and vEdge Router Au...
Farooq Khan
 
PDF
FIWARE Global Summit - Leveraging Kubernetes for FIWARE Components Automations
FIWARE
 
PDF
Identity Server on Azure: A Reference Architecture
WSO2
 
PDF
Moving Data Efficiently with Real-Time Streaming
WSO2
 
PPTX
DEVNET-1010 Using Cisco pxGrid for Security Platform Integration
Cisco DevNet
 
PDF
TechWiseTV Workshop: Q&A OpenDNS and AnyConnect
Robb Boyd
 
PPTX
TechWiseTV Workshop: Cisco ISE 2.1 (Identity Services Engine)
Robb Boyd
 
PPTX
Bevywise IoT Platform
Ranjith Kumar
 
PDF
Using Kubernetes to make cellular data plans cheaper for 50M users
Mirantis
 
PDF
TechWiseTV Workshop: Cisco Stealthwatch and ISE
Robb Boyd
 
PDF
F5 Cloud Solutions
MarketingArrowECS_CZ
 
Using Cisco pxGrid for Security Platform Integration: a deep dive
Cisco DevNet
 
Bio IT World 2015 - DevOps Security and Transparency
Kevin Gilpin
 
Azure security basics
Stas Lebedenko
 
Azure Penetration Testing
Cheah Eng Soon
 
Building A Self-Documenting Application: A Study in Chef and Compliance
Kevin Gilpin
 
Patterns of evolution from monolith to microservices
Karina Mora
 
Operational Complexity: The Biggest Security Threat to Your AWS Environment
Cryptzone
 
AlertSite Slideshow for the Booth at Web 2.0 Expo 2009
AlertSite
 
Azure Penetration Testing
Cheah Eng Soon
 
SDWAN Concept - Certificate and keys Roles in Controllers and vEdge Router Au...
Farooq Khan
 
FIWARE Global Summit - Leveraging Kubernetes for FIWARE Components Automations
FIWARE
 
Identity Server on Azure: A Reference Architecture
WSO2
 
Moving Data Efficiently with Real-Time Streaming
WSO2
 
DEVNET-1010 Using Cisco pxGrid for Security Platform Integration
Cisco DevNet
 
TechWiseTV Workshop: Q&A OpenDNS and AnyConnect
Robb Boyd
 
TechWiseTV Workshop: Cisco ISE 2.1 (Identity Services Engine)
Robb Boyd
 
Bevywise IoT Platform
Ranjith Kumar
 
Using Kubernetes to make cellular data plans cheaper for 50M users
Mirantis
 
TechWiseTV Workshop: Cisco Stealthwatch and ISE
Robb Boyd
 
F5 Cloud Solutions
MarketingArrowECS_CZ
 
Ad

Similar to The user s identities (20)

PDF
04_Extending and Securing Enterprise Applications in Microsoft Azure_GAB2019
Kumton Suttiraksiri
 
PDF
SailPoint VS CyberArk.pdf
VishnuGone
 
PDF
Blibli Web Application Security Policy Enforcement Point
SARCCOM
 
PDF
Proven Practices for Office 365 Deployment, Security and Management
Perficient, Inc.
 
PPTX
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
Scott Hoag
 
PPTX
SC-900 Capabilities of Microsoft Identity and Access Management Solutions
FredBrandonAuthorMCP
 
PPTX
2018 November - AZUGDK - Azure AD
Peter Selch Dahl
 
PDF
Symplified datasheet
Symplified
 
PPTX
Embracing secure, scalable BYOD with Sencha and Centrify
Sumana Mehta
 
PDF
Atlanta Salesforce UG Meeting 2/23/2011 Symplified
vraopolisetti
 
PDF
Sailpoint vs Okta.pdf
VishnuGone
 
PDF
Hitachi ID Access Certifier: Find and remove stale privileges with periodic r...
Hitachi ID Systems, Inc.
 
PDF
Build Your Career With Sailpoint Training.pdf
Mrunalshetty3
 
PDF
Microsoft Authenticator on Mac MicrosofMicrosoft
bestauthenticatorapp1
 
PDF
Active Directory Proposal
MJ Ferdous
 
PPTX
FortiAuthenticator vs Ping Identity Guide
Samuel Onaghise
 
PDF
Premier Webcast - Identity Management with Windows Azure AD
uberbaum
 
PPTX
AbedElilahElmahmoumP1.pptx
AbedElElahElMHMOOM
 
PDF
TOP SAILPOINT INTERVIEW QUESTION
Infosec Train
 
PPTX
What is Microsoft Enterprise Mobility Suite and how to deploy it
Peter De Tender
 
04_Extending and Securing Enterprise Applications in Microsoft Azure_GAB2019
Kumton Suttiraksiri
 
SailPoint VS CyberArk.pdf
VishnuGone
 
Blibli Web Application Security Policy Enforcement Point
SARCCOM
 
Proven Practices for Office 365 Deployment, Security and Management
Perficient, Inc.
 
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
Scott Hoag
 
SC-900 Capabilities of Microsoft Identity and Access Management Solutions
FredBrandonAuthorMCP
 
2018 November - AZUGDK - Azure AD
Peter Selch Dahl
 
Symplified datasheet
Symplified
 
Embracing secure, scalable BYOD with Sencha and Centrify
Sumana Mehta
 
Atlanta Salesforce UG Meeting 2/23/2011 Symplified
vraopolisetti
 
Sailpoint vs Okta.pdf
VishnuGone
 
Hitachi ID Access Certifier: Find and remove stale privileges with periodic r...
Hitachi ID Systems, Inc.
 
Build Your Career With Sailpoint Training.pdf
Mrunalshetty3
 
Microsoft Authenticator on Mac MicrosofMicrosoft
bestauthenticatorapp1
 
Active Directory Proposal
MJ Ferdous
 
FortiAuthenticator vs Ping Identity Guide
Samuel Onaghise
 
Premier Webcast - Identity Management with Windows Azure AD
uberbaum
 
AbedElilahElmahmoumP1.pptx
AbedElElahElMHMOOM
 
TOP SAILPOINT INTERVIEW QUESTION
Infosec Train
 
What is Microsoft Enterprise Mobility Suite and how to deploy it
Peter De Tender
 
Ad

More from Giuliano Latini (20)

PPTX
Microsoft Graph Powershell, gestire vecchi problemi con una mentalità nuova....
Giuliano Latini
 
PDF
Dai comlet all'IT e la giornata l'ha sfangata^J dagli Graph Powershell e gest...
Giuliano Latini
 
PPTX
Docker_vs_Rancher_chi_dominerà_i_Desktop_dei_developers.pptx
Giuliano Latini
 
PPTX
Nat come esporre servizi https senza esporre l'applicazione
Giuliano Latini
 
PPTX
Nat come esporre servizi https senza esporre l'applicazione
Giuliano Latini
 
PPTX
Monitoring Applications in AKS
Giuliano Latini
 
PPTX
Uno, nessuno o 10.000, la gestione dell'identità ai tempi di Microsoft Azure
Giuliano Latini
 
PDF
La potenza è nulla senza controllo
Giuliano Latini
 
PPTX
La potenza è nulla senza controllo
Giuliano Latini
 
PPTX
DOCKER FROM ZERO TO HERO
Giuliano Latini
 
PPTX
Kubernetes e bello, sicuro è meglio!
Giuliano Latini
 
PPTX
Kubernetes as HA time series server, a proposal
Giuliano Latini
 
PPTX
Glv on air 08-10_2019
Giuliano Latini
 
PPTX
Funziona! allora non toccarlo, ovvero l'analisi d'infrastruttura in esercizio.
Giuliano Latini
 
PDF
Docker vs Virtualizzazioni
Giuliano Latini
 
PPTX
Linux@Azure, l'altra metà del cielo.
Giuliano Latini
 
PPTX
I containers in azure, light vm o un vero cambio di paradigma?
Giuliano Latini
 
PPTX
Swarm - 50 sfumature di docker
Giuliano Latini
 
PDF
Mobile Camp @Univpm - Introduzione all'evento
Giuliano Latini
 
PPTX
Google cloud: Big Data + docker = kubernetes
Giuliano Latini
 
Microsoft Graph Powershell, gestire vecchi problemi con una mentalità nuova....
Giuliano Latini
 
Dai comlet all'IT e la giornata l'ha sfangata^J dagli Graph Powershell e gest...
Giuliano Latini
 
Docker_vs_Rancher_chi_dominerà_i_Desktop_dei_developers.pptx
Giuliano Latini
 
Nat come esporre servizi https senza esporre l'applicazione
Giuliano Latini
 
Nat come esporre servizi https senza esporre l'applicazione
Giuliano Latini
 
Monitoring Applications in AKS
Giuliano Latini
 
Uno, nessuno o 10.000, la gestione dell'identità ai tempi di Microsoft Azure
Giuliano Latini
 
La potenza è nulla senza controllo
Giuliano Latini
 
La potenza è nulla senza controllo
Giuliano Latini
 
DOCKER FROM ZERO TO HERO
Giuliano Latini
 
Kubernetes e bello, sicuro è meglio!
Giuliano Latini
 
Kubernetes as HA time series server, a proposal
Giuliano Latini
 
Glv on air 08-10_2019
Giuliano Latini
 
Funziona! allora non toccarlo, ovvero l'analisi d'infrastruttura in esercizio.
Giuliano Latini
 
Docker vs Virtualizzazioni
Giuliano Latini
 
Linux@Azure, l'altra metà del cielo.
Giuliano Latini
 
I containers in azure, light vm o un vero cambio di paradigma?
Giuliano Latini
 
Swarm - 50 sfumature di docker
Giuliano Latini
 
Mobile Camp @Univpm - Introduzione all'evento
Giuliano Latini
 
Google cloud: Big Data + docker = kubernetes
Giuliano Latini
 

Recently uploaded (20)

PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Teaching material agriculture food technology
LiaRayya
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Cloud computing and distributed systems.
kkkkkhan
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
A Presentation on Artificial Intelligence
memembruh336
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 

The user s identities

  • 3. About me • ITPro > 30 year • Istruttore Informatico at Comune di Chiaravalle (AN) • Senior Software Developer at INNOTEAM s.r.l. • CTS Senior Member at Federation IDEM AAI • ICT Administrator at Università Politecnica delle Marche • Member of WindowServer.it community • Member of DevMarche community • Member of GetLatestVersion community • Linux Foundation Member
  • 4. Users Identities: what’s the needs • Self-manage basic operation as change&recovery; • Strong security and MultiFactorAuthentications; • Manage external figures as collaborators, clients, contractors; • User Exprerience (UX) simple and brended; • Simple integration with other identities providers; • SingleSignOn for on-premises and cloud software products; • Measurement of acceptable security level;
  • 5. We start from: /etc/passwd Security Account Manager (SAM) database LDAP Active Directory™ Active Directory™ Federation Services
  • 8. Why trust in Azure Active Directory?
  • 9. Break Office Perimeter with monitoring
  • 10. Passwordless Authentications with AAD With FIDO2 security keys With Microsoft Authenticator App With Windows Hello for Business
  • 11. Azure AD self-service password reset
  • 12. Personalization and Brending of Login Page User login @ Danske Statsbaner
  • 13. Identity Secure Score in AAD How does it work? Every 48 hours, Azure looks at your security configuration and compares your settings with the recommended best practices. • Objectively measure your identity security posture; • Plan identity security improvements; • Review the success of your improvements. How does it help me?
  • 14. How be a Service Provider of SPID
  • 16. Create AAD App with SSO mode
  • 18. Azure Active Directory: the solutions gived It is a growing product with staff, ALM, procedures, docs, support, and monitoring health. It grows user’s self-manage and responsibility. The users can or are obligated to use complex passwords and the MFA, FIDO2 technologies from tenant's administrations. It gives tools to monitor security levels of tenant dynamically. It could be joined to other Identity providers for giving SSO on SaaS and Web applications.
  • 19. Bibliograpy • Documentazione Azure Active Directory • Azure Active Directory: Microsoft’s cloud based identity and access management service • Azure Active Directory Authentication Overview: Authentication Fundamentals: The Basics • Deep Dive into Azure Active Directory (Azure AD): Learn Microsoft Azure Active Directory from Basic to Advanced concepts with real time walkthroughs
  • 20. Bibliograpy • Modern Authentication with Azure Active Directory for Web Applications (Developer Reference) • [VIDEO] Managing Identities in Microsoft Azure Active Directory • Azure AD Introduction For Red Teamers • Azure AD/Office 365 Single Sign-On with Shibboleth 2 • MyWorkDrive Azure AD SAML Overview
  • 21. Bibliograpy • SPID Sistema Pubblico di Identità Digitale • SPID - Regole Tecniche • SPID SAML Check • Identity Provider di test per SPID (docker: italia/spid-testenv2) • SAML-to-SAML Proxy: Satosa-Saml2Spid