+ All Categories
Home > Documents > Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Date post: 17-Jan-2018
Category:

Documents
Upload: myra-marshall
View: 222 times
Download: 0 times
Download Report this document
Share this document with a friend
Description:
Lesson 1: Active Directory Federation Services Describe AD FS operation Describe AD FS installation
13
Module 10: Identity and Access Services in Windows Server 2008 Active Directory
Transcript
Page 1: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Module 10: Identity and Access Services in Windows Server 2008 Active Directory

Page 2: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Overview

Install and configure Active Directory Federation ServicesInstall and configure Active Directory Lightweight Directory ServicesInstall and configure Active Directory Rights Management Services

Page 3: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Lesson 1: Active Directory Federation Services

Describe AD FS operationDescribe AD FS installation

Page 4: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

AD FS Overview

Corporate Network Client

Account Federation Server

Active Directory

Resource Federation Server

ADFS Enabled Web Server

Active Directory

Internal Client

Corporate Network

Perimeter Network

Page 5: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

AD FS Installation Considerations

Review the requirements for deploying ADFS in your organization.Install one or more federation serversInstall one or more ADFS-enabled Web servers using the appropriate ADFS Web AgentInstall either an Active Directory account store or an Active Directory Lightweight Directory Services account storeIncoming claims must be associated with organization group claims or custom claims for SSOInstall either a claims-aware application or a Windows NT token-based application, or both.

Page 6: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Lesson 2: Active Directory Lightweight Directory Services

Describe previous Windows directory services technologiesDescribe AD LDSList benefits of using AD LDSExplain AD LDS usage scenarios

Page 7: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

New Technology

Active Directory Lightweight Directory Services

Active Directory Application Mode

Page 8: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

AD LDS Overview

Active Directory Lightweight Directory Services

AD DS

Page 9: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Benefits of AD LDS

Functional Benefits Operational Benefits

AD LDS uses same Directory Service Technology as AD DS.

Increased scalability.

Separate schema.

X.500-style naming contexts.

Secure.

Backwards compatible.

Easy to deploy.

Doesn’t affect AD DS.

Doesn’t require restart.

Same administrative model as AD DS.

Increased reliability.

Page 10: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

AD LDS Usage Scenarios

Application-specific directories that use customized schemas

Directory-enabled application development that are separate from the enterprise’s domain structure

Management of external client computer’s access to network resources

Enabling of earlier LDAP client computers in a heterogeneous environment to authenticate against AD DS

Page 11: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Lesson 3: Active Directory Rights Management Services

Explain how AD RMS worksDescribe AD RMS configuration tasks

Page 12: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

AD RMS Overview

1

2

1

2

Page 13: Module 10: Identity and Access Services in Windows Server 2008 Active Directory.

Configuring Active Directory Rights Management Services

Install AD RMS

Configure SSL

Register a Service Connection Point

Configure AD RMS Client and Client Service Discovery


Recommended
Active Directory Overview - Windows-Expert.NET

Active Directory Overview - Windows-Expert.NET

Documents

Windows Azure Active Directory

Windows Azure Active Directory

Documents

How to install Active Directory on Windows 2008 - …vworld.nl/wp-content/uploads/2011/01/SCCM_InstallAD.pdfHome Windows 2008 Active Directory How to install Active Directory on Windows

How to install Active Directory on Windows 2008 - …vworld.nl/wp-content/uploads/2011/01/SCCM_InstallAD.pdfHome Windows 2008 Active Directory How to install Active Directory on Windows

Documents

Brian Desmond - Identity and directory synchronization with office 365 and windows azure active directory

Brian Desmond - Identity and directory synchronization with office 365 and windows azure active directory

Technology

Intro to windows identity foundation

Intro to windows identity foundation

Technology

Claims-Based Identity for Windows

Claims-Based Identity for Windows

Documents

Windows Identity Flow & Azure Service Bus Queuescscblogsamples.blob.core.windows.net/whitepapers/Windows...WINDOWS IDENTITY FLOW & AZURE SERVICE BUS QUEUES Michael Stephenson Abstract

Windows Identity Flow & Azure Service Bus Queuescscblogsamples.blob.core.windows.net/whitepapers/Windows...WINDOWS IDENTITY FLOW & AZURE SERVICE BUS QUEUES Michael Stephenson Abstract

Documents

Windows Azure Active Directory: Identity Management in the Cloud

Windows Azure Active Directory: Identity Management in the Cloud

Technology

Active Directory Windows Server 2008R2

Active Directory Windows Server 2008R2

Documents

Azure Active Directory Hybrid Identity Design ... · Azure Active Directory Hybrid Identity Design Considerations ... manageability, and security) level requirements. Specifically,

Azure Active Directory Hybrid Identity Design ... · Azure Active Directory Hybrid Identity Design Considerations ... manageability, and security) level requirements. Specifically,

Documents

Windows Azure Active Directory Active Directory Domain Services og Windows Azure AD ADFS & Windows Azure Directory Sync tool AD til WAAD dir & password.

Windows Azure Active Directory Active Directory Domain Services og Windows Azure AD ADFS & Windows Azure Directory Sync tool AD til WAAD dir & password.

Documents

Azure Active Directory Identity

Azure Active Directory Identity

Technology

Oracle® Directory Server Enterprise EditionOracle Directory Server Enterprise Edition Identity Synchronization for Windows Deployment Planning Guide, 11g Release 1 (11.1.1.5.0) E25870-01

Oracle® Directory Server Enterprise EditionOracle Directory Server Enterprise Edition Identity Synchronization for Windows Deployment Planning Guide, 11g Release 1 (11.1.1.5.0) E25870-01

Documents

Stay in control of your identity with Windows Azure AD … › sites › default › files › files...Stay in control of your identity with Azure Active Directory (Premium) Introduction

Stay in control of your identity with Windows Azure AD … › sites › default › files › files...Stay in control of your identity with Azure Active Directory (Premium) Introduction

Documents

Troubleshoot Windows Active Directory Authentication

Troubleshoot Windows Active Directory Authentication

Documents

Windows Identity Foundation

Windows Identity Foundation

Documents

Windows Server 2008 Active Directory

Windows Server 2008 Active Directory

Education

Active Directory Windows Server

Active Directory Windows Server

Documents