+ Post New Thread
Page 2 of 3 FirstFirst 123 LastLast
Results 16 to 30 of 34
Cloud Services Thread, Office 365 with SSO availability question in Technical; Originally Posted by themightymrp If you have setup AD synchronisation with the Azure system, does that not then have the ...
  1. #16

    AngryTechnician's Avatar
    Join Date
    Oct 2008
    Posts
    3,730
    Thank Post
    698
    Thanked 1,212 Times in 761 Posts
    Rep Power
    394
    Quote Originally Posted by themightymrp View Post
    If you have setup AD synchronisation with the Azure system, does that not then have the ability to authenticate users when they try to sign on?
    No, because directory sync does not copy passwords to Azure.

  2. Thanks to AngryTechnician from:

    themightymrp (25th March 2013)

  3. #17
    themightymrp's Avatar
    Join Date
    Dec 2009
    Location
    Leeds, West Yorkshire
    Posts
    1,201
    Thank Post
    212
    Thanked 222 Times in 191 Posts
    Rep Power
    72
    Bu**er. Thanks

  4. #18
    jamesbmarshall's Avatar
    Join Date
    Feb 2010
    Location
    Reading, UK
    Posts
    524
    Thank Post
    26
    Thanked 229 Times in 159 Posts
    Rep Power
    86
    Quote Originally Posted by AngryTechnician View Post
    No, because directory sync does not copy passwords to Azure.
    Yet

  5. #19
    jamesbmarshall's Avatar
    Join Date
    Feb 2010
    Location
    Reading, UK
    Posts
    524
    Thank Post
    26
    Thanked 229 Times in 159 Posts
    Rep Power
    86
    Quote Originally Posted by themightymrp View Post
    If you have setup AD synchronisation with the Azure system, does that not then have the ability to authenticate users when they try to sign on? So that, in the event of the schools AD system being down, people can still log into email?
    If you set up DirSync you can still log into Office 365 even if your AD is unavailable because Office 365 holds a separate set of credentials for your users; it is only if you deploy AD FS that you become that single point of failure that requires your AD to always be available.

  6. #20
    Cache's Avatar
    Join Date
    Apr 2008
    Location
    Cumbria
    Posts
    1,214
    Thank Post
    454
    Thanked 176 Times in 173 Posts
    Blog Entries
    3
    Rep Power
    64
    Quote Originally Posted by jamesbmarshall View Post
    Windows Azure Active Directory is the identity platform that underpins Office 365; it's an extensible service that allows customers and partners to develop solutions that can hook into the WAAD identities to use with other services. It isn't the same as your traditional AD, hosted in the cloud, but I think you've figured that out!

    Every existing, and new, Office 365 tenant has WAAD at the core.
    Yeah that's what I figured out, althoguh I think I went arround 20 different sites until I found out that it was just what underpinned it, not holding the password.

    It's such a shame that it doesn't though........

  7. #21

    AngryTechnician's Avatar
    Join Date
    Oct 2008
    Posts
    3,730
    Thank Post
    698
    Thanked 1,212 Times in 761 Posts
    Rep Power
    394
    Quote Originally Posted by AngryTechnician View Post
    Directory sync does not copy passwords to Azure.
    Quote Originally Posted by jamesbmarshall View Post
    Yet


    It's not nice to tease!

    Seriously though, I realise you may not be authorised to talk about it, but I'm going to ask anyway: any estimate on when that might happen? Even a hint?

  8. #22

    EduTech's Avatar
    Join Date
    Aug 2007
    Location
    Reading
    Posts
    5,062
    Thank Post
    160
    Thanked 920 Times in 723 Posts
    Blog Entries
    3
    Rep Power
    272
    Quote Originally Posted by AngryTechnician View Post


    It's not nice to tease!

    Seriously though, I realise you may not be authorised to talk about it, but I'm going to ask anyway: any estimate on when that might happen? Even a hint?
    I don't believe any date has been officially published yet, but watch this space i can't see it being long now... :-)

    I believe it was also spoken about at one of the recent Office 365 Conferences... so it's been put out there but with no dedicated information at present but this will be coming soon enough!

    .. :P

    James.

  9. #23
    jamesbmarshall's Avatar
    Join Date
    Feb 2010
    Location
    Reading, UK
    Posts
    524
    Thank Post
    26
    Thanked 229 Times in 159 Posts
    Rep Power
    86
    Quote Originally Posted by AngryTechnician View Post
    It's not nice to tease!

    Seriously though, I realise you may not be authorised to talk about it, but I'm going to ask anyway: any estimate on when that might happen? Even a hint?
    Are you kidding? It's not often I get to tease, so I take the opportunity when I can!

    We've been working with some customers on testing PCNS-style functionality with Office 365 but at the moment we have no more information to share publicly. As soon as, and if, I can, I will.

  10. #24
    chazzy2501's Avatar
    Join Date
    Jan 2008
    Location
    South West
    Posts
    1,782
    Thank Post
    213
    Thanked 263 Times in 213 Posts
    Rep Power
    67
    I'm just looking into 365 and SSO. I believe that I'm going to have a hard time. my users currently use their domain login locally 'dcc-sch-4505' domain their username '06thomph' and password. They currently use owa for email which can assume the domain name so its a simple domain username and password again. The issue is what happens if I move them to 365? Their email addresses are firstnamesecondname@beaminster.dorset.sch.uk not username@beaminster.dorset.sch.uk?

    What lies ahead for me?!
    Last edited by chazzy2501; 23rd April 2013 at 01:02 PM.

  11. #25

    EduTech's Avatar
    Join Date
    Aug 2007
    Location
    Reading
    Posts
    5,062
    Thank Post
    160
    Thanked 920 Times in 723 Posts
    Blog Entries
    3
    Rep Power
    272
    Hi Chazzy,

    The current username can stay the same and will not need to be changed, when you implement office 365 with SSO you modify the users Universal Principal Name (UPN)... You will add: beaminster.dorset.sch.uk as an alternative UPN and then you will assign this to all users, the first part of the UPN will most likely currently match the username, but it is recommended to change this to match the Primary SMTP Address.

    I hope that helps,

    Regards,
    James.

  12. Thanks to EduTech from:

    chazzy2501 (23rd April 2013)

  13. #26
    chazzy2501's Avatar
    Join Date
    Jan 2008
    Location
    South West
    Posts
    1,782
    Thank Post
    213
    Thanked 263 Times in 213 Posts
    Rep Power
    67
    @EduTech how will my users login remotely? username@beaminster or firstlast@beaminster . I suppose is it possible to have a office365 account login be different from their 365 email?

    Also I assume I can have multiple email addresses for my staff?

    Should I create a new mailbox policy on my exchange 2007 to give every pupil a primary smtp of username@beaminster and get them using that... (dunno how to do that retrospectively but I'm sure you can)

    I don't suppose it's possible to make a office 365 use local domain logins with a custom portal?

  14. #27

    EduTech's Avatar
    Join Date
    Aug 2007
    Location
    Reading
    Posts
    5,062
    Thank Post
    160
    Thanked 920 Times in 723 Posts
    Blog Entries
    3
    Rep Power
    272
    Quote Originally Posted by chazzy2501 View Post
    @EduTech how will my users login remotely? username@beaminster or firstlast@beaminster . I suppose is it possible to have a office365 account login be different from their 365 email?

    Also I assume I can have multiple email addresses for my staff?

    Should I create a new mailbox policy on my exchange 2007 to give every pupil a primary smtp of username@beaminster and get them using that... (dunno how to do that retrospectively but I'm sure you can)

    I don't suppose it's possible to make a office 365 use local domain logins with a custom portal?
    They would login with what ever is specified as the UPN, You can technically use the username as the UPN as I say and then just have the Primary SMTP address but I always find you sometimes get problems with some devices if this is the case.

    You can have multiple email address, if you have different domains just ensure that they are verified in office 366/

    You can do that, If you want people's Primary SMTP Address to be the username@domain.com then you can do this, normally people would prefer to keep their current email address as the primary SMTP address.

    Nope, with SSO you need to use ADFS & DirSync and use the UPN to authenticate and it has to be a federated domain (public domain) not an internal domain.

    Regards,
    James.

  15. Thanks to EduTech from:

    chazzy2501 (23rd April 2013)

  16. #28
    funkyfin2000's Avatar
    Join Date
    Sep 2008
    Location
    Stafford, Staffordshire
    Posts
    143
    Thank Post
    57
    Thanked 28 Times in 26 Posts
    Rep Power
    17
    Just touching on the SSO bit of information and the Single Point of Failure with ADFS - it might be worth considering RM Unify (Discover: RM Unify) which allows you single sign on to a multitude of Cloud Education Service Providers, but also Google Apps and/or Office365 Suite. It also integrates with your own AD (Vanilla etc)

    Rich

  17. #29

    Edu-IT's Avatar
    Join Date
    Nov 2007
    Posts
    7,139
    Thank Post
    403
    Thanked 622 Times in 568 Posts
    Rep Power
    181
    Quote Originally Posted by funkyfin2000 View Post
    Just touching on the SSO bit of information and the Single Point of Failure with ADFS - it might be worth considering RM Unify (Discover: RM Unify) which allows you single sign on to a multitude of Cloud Education Service Providers, but also Google Apps and/or Office365 Suite. It also integrates with your own AD (Vanilla etc)

    Rich
    We're looking at this. The pricing is really good too. When you look at what others are charging for similar services, you're talking £XXXX's.

  18. Thanks to Edu-IT from:

    funkyfin2000 (1st May 2013)

  19. #30
    MicrodigitUK's Avatar
    Join Date
    May 2007
    Location
    Wiltshire
    Posts
    334
    Thank Post
    37
    Thanked 55 Times in 51 Posts
    Rep Power
    24
    Quote Originally Posted by jamesbmarshall View Post
    Are you kidding? It's not often I get to tease, so I take the opportunity when I can!

    We've been working with some customers on testing PCNS-style functionality with Office 365 but at the moment we have no more information to share publicly. As soon as, and if, I can, I will.
    So if we implement PCNS like we have for Live@Edu by editing settings in the version of FIM hidden inside DirSync, it might work for 365?

    Obviously not supported by Microsoft. But is that basically what you are doing with test customers?

    I'm curious and want to go try this out now.

SHARE:
+ Post New Thread
Page 2 of 3 FirstFirst 123 LastLast

Similar Threads

  1. Office 365 and high availability
    By vikpaw in forum Cloud Services
    Replies: 7
    Last Post: 19th November 2012, 11:13 AM
  2. Office 365 and SSO
    By Simcfc73 in forum Cloud Services
    Replies: 1
    Last Post: 10th November 2012, 12:31 AM
  3. Office 365 Preview file management question
    By gshaw in forum Cloud Services
    Replies: 0
    Last Post: 6th November 2012, 12:15 PM
  4. Office 365 for education - available now!
    By jamesbmarshall in forum Cloud Services
    Replies: 76
    Last Post: 20th July 2012, 09:13 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •