Extranets in SharePoint and Office 365 May 17, 2017

Similar documents
Extranets in SharePoint and SSO for Claims Apps. January 18, 2017

External Collaboration with Office 365 Project Sites. September 16, 2015

SharePoint 2019 and Extranet User Manager

Extranet Identity Management and Authentication for SharePoint On Premise, Office 365 and Beyond

Define Your Office 365 External Sharing Strategy

Office 365 External Sharing Webinar November 7, 2017

Extranets in SharePoint 2010 and 2013

Extranets in SharePoint 2010 and 2013

Running Effective Projects In Office 365. June 1, 2017

Thank You Sponsors! GOLD SILVER BRONZE / PRIZES

Envision IT Office 365 Productivity Series Experience, Branding and Navigation. June 24, 2015

Step by Step process to activate guest access in Microsoft Teams.

Office 365 and Azure Active Directory Identities In-depth

CLB379 SharePoint 2010 Extranets and Authentication. Peter Carson President Envision IT

Tech Dive: Microsoft Azure Identity Management and Office 365

Identity as the Entrée to the Microsoft Cloud

2010 Publishing Site Upgrade to SharePoint 2013

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions

Search in SharePoint 2013

Crash course in Azure Active Directory

Use EMS to protect your mobile data and mobile app

Vendor: Microsoft. Exam Code: Exam Name: Administering Office 365. Version: DEMO

Web Content Management in SharePoint 2013

DATACENTER MANAGEMENT Goodbye ADFS, Hello Modern Authentication! Osman Akagunduz

Use Microsoft EMS. to Protect your Mobile Data and Mobile Apps. Chris Nackers Nackers Consulting

Azure Active Directory from Zero to Hero

MCSA Office 365 Bootcamp

MB Microsoft Dynamics CRM 2016 Online Deployment.

SAP Security in a Hybrid World. Kiran Kola

News and Updates June 1, 2017

Microsoft SharePoint Server 2013 Plan, Configure & Manage

Single Sign-On Showdown

Partner Center: Secure application model

Overview What is Azure Multi-Factor Authentication? How it Works Get started Choose where to deploy MFA in the cloud MFA on-premises MFA for O365

Vendor: Microsoft. Exam Code: MB Exam Name: Microsoft Dynamics CRM Online Deployment. Version: Demo

Centrify for Dropbox Deployment Guide

Exam Code: Exam Code: Exam Name:Managing Office 365 Identities and Requirements.

Office : Enabling and Managing Office 365. Upcoming Dates. Course Description. Course Outline

[MS20347]: Enabling and Managing Office 365

Vendor: Microsoft. Exam Code: Exam Name: Managing Office 365 Identities and Requirements. Version: Demo

Tracking changes in Hybrid Identity environments with both Active Directory and Azure Active Directory

ENABLING AND MANAGING OFFICE 365

20347: Enabling and Managing Office hours

SharePoint 2013 Web Sites

Technology Partners.

Ramnish Singh IT Advisor Microsoft Corporation Session Code:

AvePoint Online Services 2

Course Outline. Enabling and Managing Office 365 Course 20347A: 5 days Instructor Led

Q&As Managing Office 365 Identities and Requirements

Google Identity Services for work

Active Directory Services with Windows Server

Enabling and Managing Office 365

20331B: Core Solutions of Microsoft SharePoint Server 2013

Hybrid Identity de paraplu in de cloud

Microsoft Managing Office 365 Identities and Requirements. Download Full version :

Jay Ferron. CEHi, CISSP, CHFIi, C)PTEi, CISM, CRISC, CVEi, MCITP, MCSE, MCT, MVP, NSA-IAM blog.mir.

Enabling and Managing Office 365 (NI152) 40 Hours MOC 20347A

Developing Microsoft Azure Solutions (70-532) Syllabus

Microsoft Core Solutions of Microsoft SharePoint Server 2013

Directory Integration with Okta. An Architectural Overview. Okta Inc. 301 Brannan Street San Francisco, CA

10997: Office 365 Administration and Troubleshooting

Multi Factor Authentication & Self Password Reset

SERVERS TO SERVICES HOW MICROSOFT AZURE CAN MODERNISE YOUR IT INFRASTRUCTURE. Joey Lau 9 November 2017

Colligo Console. Administrator Guide

Microsoft Enabling and Managing Office 365

Education and Support for SharePoint, Office 365 and Azure

Planning for and Managing Devices in the Enterprise: Enterprise Mobility Suite (EMS) & On-Premises Tools

[ Sean TrimarcSecurity.com ]

SafeNet Authentication Client

Identity & Access Management: Changes for FAS and Beyond. May 6, p.m. FAS Standing Committee on IT Barker Center Plimpton Room

Enabling and Managing Office 365

Planning and Administering SharePoint 2016

Course Content of Office 365:

Course AZ-100T01-A: Manage Subscriptions and Resources

Using Flow in your On Premise Environment. SharePoint Saturday Baltimore #SPSBMORE May 20, 2017

Developing Microsoft Azure Solutions (70-532) Syllabus

Planning for and Managing Devices in the Enterprise: Enterprise Management Suite (EMS) & On-Premises Tools

Office 365 Administration and Troubleshooting

Avanan for G Suite. Technical Overview. Copyright 2017 Avanan. All rights reserved.

Planning for and Managing Devices in the Enterprise: Enterprise Mobility Suite (EMS) & On- Premises Tools

Integrating On-Premises Identity Infrastructure with Microsoft Azure

Coveo Platform 7.0. Microsoft SharePoint Legacy Connector Guide

Entrust PartnerLink Login Instructions

Extranet User Manager

GLOBAL INFOSKILLS SDN BHD

GLOBAL INFOSKILLS SDN BHD

Microsoft 365 Business FAQs

Ten most common Mistakes with AD FS and Hybrid Identity. Sander Berkouwer MVP, DirTeam.com

AvePoint Online Services for Partners 2

SharePoint 2013 Web Sites

Extranet User Manager User Guide

Identity as the core of enterprise mobility

Total Cost of Ownership Overview ADFS vs OneLogin WHITEPAPER

Managing Identity Lifecycles at Scale

How Microsoft s Enterprise Mobility Suite Provides helps with those challenges

At Course Completion After completing this course, students will be able to:

Microsoft Official Curriculum Enabling and Managing Office 365 (5 Days - English) Programme détaillé

Advanced Solutions of Microsoft SharePoint Server 2013 Course Contact Hours

Microsoft Azure Fundamentals: Azure identity Practical Exercises

WHITE PAPER AIRWATCH SUPPORT FOR OFFICE 365

Transcription:

Extranets in SharePoint and Office 365 May 17, 2017

Peter Carson President, Envision IT SharePoint MVP Partner Seller, Microsoft Canada peter.carson@extranetusermanager.com http://blog.petercarson.ca www.envisionit.com Twitter @carsonpeter VP Toronto SharePoint User Group

Denesh Sohan Director of Products e: denesh.sohan@extranetusermanager.com p: (647) 265-8245

Logan Guest Sales e: logan.guest@extranetusermanager.com p: (647) 265-8256

Agenda Introduction to Extranets SharePoint Authentication Extranet User Manager Features Licensing SharePoint 2013 Demo Office 365 Demo Wrap-Up and Q&A

What is an Extranet Web site accessible to users outside of the corporate network Allows organizations to share information and collaborate with their customers, partners, and/or vendors Secure It may be delivered in a number of ways As an extension of the public web site As a secure portion of the corporate Intranet As a standalone Extranet

Examples of Extranet Users Members Customers Vendors Suppliers Volunteers Board of Directors Citizens Researchers Tenants Partners

Considerations Who is coming into the Extranet? Does everyone see the same information? Is there a member database to interface with? Is it invitation only, or can people self-register Who approves new registrations? Is it just the Extranet they will be accessing, or are there other systems?

Technologies Microsoft s collaboration platform that provides portals, document management, web content management, and much more Microsoft s cloud hosted versions of Exchange (email), Lync (instant messaging), and SharePoint Microsoft s infrastructure and platform hosted services Envision IT s tool for managing users outside your organization

Poll 1 Which Version of SharePoint are you currently using? Office 365 SharePoint Server 2016 SharePoint Server or Foundations 2013 SharePoint Server or Foundations 2010 MOSS 2007 or WSS 3.0

Poll 2 How do you use SharePoint today? Internal collaboration Internal web publishing (Intranet) Extranets Public facing website

SharePoint Authentication

SharePoint On Premise Authentication Options Azure AD B2B Windows Authentication Forms-Based Authentication Federated Identity Azure Application Proxy.NET Providers Relying Party Active Directory AD SQL Trusted Identity Provider Windows Authentication Windows Claims Or Classic Mode Claims AD Claims User Store Active Directory Windows Claims Or Classic Mode

Office 365 Authentication Options Cloud Identity Directory and Password Synchronization Federated Identity Federated Azure AD Windows Azure Active Directory Windows Azure Active Directory Windows Azure Active Directory Windows Azure Active Directory DirSync and Password Sync Federation User Sync Azure AD B2B No Integration On Premise Identity Integration with no federation On Premise Identity Single federated identity and credentials

Azure AD B2B Simple Partners are invited into your Azure AD Each partner user uses an existing Azure AD account or one that is easily created during invitation acceptance Permissions can be managed through Azure AD groups Secure All access is controlled through your Azure AD directory Partner users can be removed from your Azure AD and their access is immediately revoked When the partner user leaves the partner organization, access is lost automatically Seamless Partner companies who need access do not need to have Azure AD Azure AD B2B collaboration provides a simple user sign-up experience for these partners

Azure AD B2B and Office 365 Partner users can be granted access to any part of your SharePoint Online Considered external users by Microsoft No Office 365 subscription is required for the partner users Permissions in SharePoint Online can be applied to Azure AD groups Site owners can manage the Azure AD group membership through EUM

B2B Experiences User Type Existing Office 365 or Azure AD user Business email not in Azure AD Consumer email (Gmail, Hotmail, etc.) Experience Logs in with their Azure AD credentials to accept the invitation Azure AD tenant is created behind the scenes User creates a password Can provide their name and country Azure AD manages the password reset requirements Tenant can be converted to a fully managed Azure AD tenant later Account is converted to a Microsoft account in the background

Azure B2B Current Limitations Delegation of user management is supported, but it is all or nothing No way to restrict access to users in a group Managed through the Azure portal Can be overwhelming for business users No self-registration or approval process No integration to other line of business systems Profile management, CRM integration, account verification No integration to on premises AD This can be used with Azure Application Proxy to provide access to on premise systems through B2B single sign on

Extranet User Manager Easy delegation of user management to business Self-registration, approvals, forgotten password reset Simplified login for both internal and external users

EUM and Azure B2B EUM provides the self-registration, profile management, and delegation As users and groups are created by the business owners, they are setup in Azure AD by EUM EUM sends the invitations Azure AD manages the login process EUM manages the group membership leveraged for permissions

EUM and SharePoint On Premises EUM acts as an Identity Provider Manage single sign-on to SharePoint and other on premise or cloud based apps Fully branded registration and login experience

EUM and Other Systems Azure Web Sites SaaS applications such as Desire2Learn (www.d2l.com) Custom applications Can create and update the user profiles in these other applications

Extranet User Manager Features

Branded Experience Maintain your corporate brand throughout the entire user experience Registration All end-user pages

Single Sign-On Users sign in once As they move to other systems, they are automatically logged in Securely managed through SAML tokens

ezrealm Home Realm Discovery Internal IP Address? No Internal email domain? No Yes Yes Extranet Login Internal AD FS or Windows Authentication

Multi-Factor Authentication Second factor authentication through a phone call or text message Infrastructure provided by Azure MFA service

Self-Registration Fully customizable registration experience Self service profile page Fields can be added or removed Can be integrated into back-end systems Customizable approval workflow Full Visual Studio source code project provided

Forgotten Password Request a password reset by email Passwords themselves are never sent through email One-time use, time expiring token sent

Works with SharePoint 2010, 2013, 2016 and Office 365 Does not need to be installed on the SharePoint Server PowerShell script setups up the trust Office 365 supported through Azure B2B

Delegated User Management Management of the Extranet users is delegated to the business IT doesn t need to manage accounts Can also be delegated securely to the external organizations themselves

Adaptive Design Leverages the Twitter Bootstrap framework All end-user pages adapt to smartphone, tablet, or desktop experiences

Azure Hosted or On Premise Can be installed on an on premises server SharePoint Server IIS Server Hosted in Azure Secure multi-tenant hosting Managed by Envision IT 7x24 monitoring and remediation

Multi-Lingual Support Full multi-lingual support for end user pages Resource files for easy translation and updating of text

Licensing

Extranet User Manager Licensing Version On Premise Hosted Standard Edition Enterprise Edition Annual Software Assurance $8,000 $850 / month $13,000 $1,070 / month 20% Included Full pricing details available at https://www.extranetusermanager.com/pricing

Extranet Clients

Extranet Clients

Demo SharePoint 2013 Registration through to Login

Demo Scenario Sample site at https://productdemo13.envisionit.com EUM installed at https://login.eumdemo.com/landing Sample claims app at https://productdemo13sample.envisionit.com AD FS for internal users External users In a separate AD or SQL Database Authenticating through Identity Server Managed with the Envision IT Extranet User Manager

Client Demos Public Health Ontario www.publichealthontario.ca Ontario Association of Children s Aid Societies oacas.sharepoint.com Boys and Girls Clubs of Canada Members Portal www.bgccan.com Oakland County Government to Government Marketplace www.g2gmarket.com Supreme Court of Victoria Case Management www.redcrest.com.au ivari Public Web Site and Advisors Portal ivari.ca Kinross Gold Supplier Portal suppliers.kinross.com CAMH Problem Gambling Professionals http://www.problemgambling.ca/en

Sample Azure Hosted Environment O365 Tenant EUM Hosted Multi- Tenant Infrastructure O365 to Azure Publishing Process EUM / AD FS Public Web Site EUM Database Traffic Manager Traffic Manager EUM / AD FS Public Web Site EUM AD Claims Applications Client Web Services

Demo Office 365 and Azure B2B Registration through to Login

Demo Scenario Office 365 sample site at https://eumdemo.sharepoint.com SharePoint Online in Office 365 EUM installed at https://login.eumdemo.com Self registration is available at https://login.eumdemo.com/landing/register/register.aspx AD FS for internal users External users invited in through Azure AD B2B Managed with the Envision IT Extranet User Manager

Ontario Association of Children's Aid Societies EUM Hosted Multi- Tenant Infrastructure EUM / AD FS EUM Database Traffic Manager OACAS O365 Tenant EUM / AD FS OACAS Training Portal EUM AD

Next Steps Reach out to Logan Guest, Sales e: logan.guest@extranetusermanager.com p: (647) 265-8256 More product information A technical demo with our team Request a hosted trial or evaluation copy of EUM

Upcoming Events May 30 June 2, 2017 Denver, CO www.sharepointfest.com/denver August 9-10, 2017 Seattle, WA www.sharepointfest.com/seattle See us in the exhibitor hall and come hear Peter speak at both events

Links www.extranetusermanager.com blog.petercarson.ca Video and presentation deck www.extranetusermanager.com/events-and-news Microsoft links https://azure.microsoft.com/en-us/documentation/articles/active-directory-b2b-collaboration-overview/ https://azure.microsoft.com/en-us/documentation/articles/active-directory-b2b-current-preview-limitations/

Questions?

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback