Premium always has a nice ring to it. It sound like the best thing you can get. Seriously try adding premium to anything and it sound good.
Now as you all know active Directory, you all know that there’s a Cloud substitute named Azure Active Directory , let’s have a look at the best version of this : the Azure Active Directory Premium.
What’s the difference ?
Today we’ll focus on the branding and self service password reset functionality. ( Also available in the basic version )
We’ll cover some other features, like delegated group management later.
Let’s start with opening the azure management and activating the trial premium azure ad.
Create a new group
Add a user to the group
Now assign the license to the created group.
Also add at least one user to the assigned licenses. (Won’t work with only the group applied, makes sense )
Now logoff and logon and the additional configure tabs should be present.
Now let’s enable the password reset , activate the secret password option and create a set of security questions.
Let’s also do some rebranding on the logon portal
Now let’s test …
Press Tab et voila …
Nice … no let’s try the self service password reset, logon to the http://myapps.microsoft.com page and register for the password reset.
Let’s setup the security questions in this case. ( You can also require this registration at first logon )
Okay now say we’ve lost our password how can we reset it ?
Easy go to https://passwordreset.microsoftonline.com or click the can’t access button on the portal. Make sure your test user is part of the azure premium license users or you will recieve a message that the functionality is not activated for this user. In this case the user will still have the possibility to contact the admin using a link for requesting a password reset.
Fill in the required information ( remark that the logo also applies here )
And fill in the requried questions …
And now you can select a new password
Now with the premium edition you could sync the new password back to the local AD environment.
Great features, the need for an on-premise Active Directory environment just got smaller.
Also remember that the Azure premium ad, intune and Azure rights management are now available in one license package EMS. Enterprise Mobility Suite : http://www.microsoft.com/en-us/server-cloud/products/enterprise-mobility-suite/