14. IDENTITY AS A SERVICE
Single sign-onSelf-service
Simple connection
On-premises
Other
directories
Windows Server
Active Directory
SaaSAzure
Public
cloud
CloudMicrosoft Azure Active Directory
15. AZURE SERVICE MANAGEMENT VS.
AZURE RESOURCE MANAGER
ASM / CLASSIC ARM
29.04.2017SÜDNIEDERSACHSEN AZURE MEETUP 15
16. AZURE SERVICE MANAGEMENT VS.
AZURE RESOURCE MANAGER
ASM / CLASSIC ARM
29.04.2017SÜDNIEDERSACHSEN AZURE MEETUP 16
• Klassisch, seit Azure startete
• Komplexe Abhängigkeiten
• Viele verschiedene APIs
• XML basierend
• Neue Ressourcen nicht mehr
unterstützt
• MCD und MAS nicht unterstützt
• Neu, seit 2015
• Klare Abhängigkeiten
• Einheitliche APIs
• JSON basierend
• Noch nicht alle Ressourcen portiert
• MCD und MAS nur mit ARM
unterstützt
17. MANAGEMENT MIT ARM
• Public Azure
• Microsoft Cloud
Deutschland
• Azure Stack
• PowerShell
• ARM Templates
• …
29.04.2017SÜDNIEDERSACHSEN AZURE MEETUP 17
18. Microsoft’s hybrid cloud platform
Cloud-inspired infrastructure
Azure IaaS | Azure PaaS
Compute | Network | Storage
App Service | Service Fabric*
Azure Resource Manager
Portal | PowerShell | DevOps tools
Microsoft Azure Stack
Private | Hosted
Cloud infrastructure
IaaS | PaaS
Azure Resource Manager
Portal | PowerShell | DevOps tools
Microsoft Azure
Public
Cloud-inspired infrastructure
Azure IaaS | Azure PaaS
Compute | Network | Storage
App Service | Service Fabric*
Azure Resource Manager
Portal | PowerShell | DevOps tools
Microsoft Azure Stack
Private | Hosted
Azure services in your datacenter
Unified app development
One Azure ecosystem
Developers
IT
Power of Azure in your datacenter
19. AZURE STACK IM CLOUD MODELL
29.04.2017SÜDNIEDERSACHSEN AZURE MEETUP 19
Applications
Data
Runtime
Middleware
O/S
Virtualization
Servers
Storage
Network
On Premises
Applications
Data
Runtime
Middleware
O/S
Virtualization
Servers
Storage
Network
IaaS
Applications
Data
Runtime
Middleware
O/S
Virtualization
Servers
Storage
Network
PaaS
Applications
Data
Runtime
Middleware
O/S
Virtualization
Servers
Storage
Network
SaaS
22. BESCHAFFUNGSWEGE
• Enterprise Agreement (EA) / Server and Cloud Enrollment (SCE)
• Erfordert ein Monetary Commitment
• Keine Rabatte im Voraus, aber entsprechende vertragliche Vergünstigungen
möglich
• Microsoft Products and Services Agreement (MPSA)
• Quartalsweise Abrechnung
• Monetery Commitment ist möglich
• Cloud Service Provider (CSP)
• CSP ist der Vertragspartner und auch Ansprechpartner für Support
• Pay-as-you-go
• Monatliche Abrechnung über Kreditkarte
• Rechnung ohne CC nur nach Rücksprache mit Support möglich
29.04.2017SÜDNIEDERSACHSEN AZURE MEETUP 22
26. DANKE!
• Benjamin Hüpeden
• VAS Value Added Services GmbH
• Cloud Architect
• Twitter: @bhuepeden
• Blog: https://intheclouds.eu
• Mail: Benjamin.Huepeden@vaserv.eu
• http://go2azure.eu
05.04.2017SÜDNIEDERSACHSEN AZURE MEETUP 26
Hinweis der Redaktion
Stefan
Global – animation? $15b investment – more than Amazon and Google combined
Global – animation? $15b investment – more than Amazon and Google combined
Global – animation? $15b investment – more than Amazon and Google combined
Microsoft has a solution for this
[Click] Traditional identity and access management solutions providing sing-sign on to on-premises applications and directory services such as Active Directory and others are used from the vast majority of organizations and huge investments were made to deploy and maintain them. These solutions are perfect for the on-premises world.
[Click] Now, as we have discussed, there are new pressing requirements to provide the same experience to cloud applications hosted in any public cloud.
[Click] Azure Active Directory can be the solution to this new challenge by extending the reach of on-premises identities to the cloud in a secure and efficient way.
[Click] In order to do that, one simple connection is needed from on-premises directories to Azure AD.
[Click] and everything else will be handled by Azure AD. Secure single sign-on to thousands of SaaS applications hosted in any cloud by using the same credentials that exist on-premises
[Click] And we don’t forget the users. Azure AD provides Self-service capabilities and easy access to all the application, consumer or business, they need.
in the cloud but on-premises too (Application Proxy)