5. Protocols
Windows Azure Active Directory supports the following
authentication protocols:
• WS-Federation
• OAuth 2.0 PREVIEW
• SAML 2.0
5
6. Active Directory as a Service 6
SQL Azure
Tables Blobs
Queues
Worker-role
Web-role
Web-role
Active Directory
Customer
Active
Directory
7. Single point of failure 7
User
Relying party
application
Access Control
Service
Active
Directory
Windows Azure
Active Directory
8. Main characteristics 8
Windows Azure Active Directory:
- Active Directory as a service
- Single sign-on and single sign-out for Windows Azure applications
- Manage users and groups
- Integrating with on-premises Active Directory servers
- Multi-factor authentication support
- Usage reports
9. Benefits 9
• Your application interacts only with Windows Azure Active Directory
• No need to implement your own authorization mechanism
• No need to setup and configure Active Directory virtual machine
• Ability to synchronize with on-premises Active Directory
• No single point of failure in case with Active Directory Federation Services
11. References
Scenarios and Solutions:
msdn.microsoft.com/en-us/library/windowsazure/dn151121.aspx
Single Sign-On in your Web Application:
msdn.microsoft.com/en-us/library/windowsazure/dn151790.aspx
Windows Azure Active Directory Premium:
msdn.microsoft.com/en-us/library/windowsazure/dn532272.aspx
11