Azure Active Directory Premium


 

Hello,

Premium always has a nice ring to it. It sound like the best thing you can get. Seriously try adding premium to anything and it sound good.

Now as you all know active Directory, you all know that there’s a Cloud substitute named Azure Active Directory , let’s have a look at the best version of this : the Azure Active Directory Premium.

What’s the difference ?

See https://msdn.microsoft.com/en-us/library/azure/dn532272.aspx

Today we’ll focus on the branding and self service password reset functionality. ( Also available in the basic version )

We’ll cover some other features, like delegated group management later.

Let’s start with opening the azure management and activating the trial premium azure ad.

clip_image001

Create a new group

clip_image002

Add a user to the group

clip_image003

Now assign the license to the created group.

clip_image004

Also add at least one user to the assigned licenses. (Won’t work with only the group applied, makes sense )

clip_image005

Now logoff and logon and the additional configure tabs should be present.

clip_image006

Now let’s enable the password reset , activate the secret password option and create a set of security questions.

clip_image007

Let’s also do some rebranding on the logon portal

clip_image008

Now let’s test …

clip_image009

Press Tab et voila …

clip_image010

Nice … no let’s try the self service password reset, logon to the http://myapps.microsoft.com page and register for the password reset.

clip_image011

Let’s setup the security questions in this case. ( You can also require this registration at first logon )

clip_image012

Done.

clip_image013

Okay now say we’ve lost our password how can we reset it ?

Easy go to https://passwordreset.microsoftonline.com or click the can’t access button on the portal. Make sure your test user is part of the azure premium license users or you will recieve a message that the functionality is not activated for this user. In this case the user will still have the possibility to contact the admin using a link for requesting a password reset.

clip_image014

Fill in the required information ( remark that the logo also applies here )

clip_image015

And fill in the requried questions …

clip_image016

And now you can select a new password

clip_image017

Done.

clip_image018

Now with the premium edition you could sync the new password back to the local AD environment.

Great features, the need for an on-premise Active Directory environment just got smaller.

Also remember that the Azure premium ad, intune and Azure rights management are now available in one license package EMS. Enterprise Mobility Suite : http://www.microsoft.com/en-us/server-cloud/products/enterprise-mobility-suite/

Enjoy.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s