Notes on IT (mainly Microsoft)

Archive for March 2013

Windows Azure Active Directory Graph Team blog

leave a comment »

The Windows Azure Active Directory Graph Team has a blog:

“Windows Azure Active Directory( AAD ) provides identity management and access control capabilities for your cloud applications. The AAD graph API will let you access the information in the directory through a very simple RESTful service.”

This post has an overview and context for AAD and you can try out the Graph API here (and click Use Demo Company).

Understand and Troubleshoot Dynamic Access Control in Windows Server 2012

leave a comment »

I have updated my post on Dynamic Access Control in Windows Server 2012 learning resources to include a link to the recently released update of the outstandingly good

Understand and Troubleshoot Dynamic Access Control in Windows Server 2012

guide by Mike Stephens of Microsoft. The doc was part of the Understand and Troubleshoot guides for the Windows Server 2012 beta program,  a very fine example of a technical guide.

Written by adamsync

March 1, 2013 at 21:47

IGNITE events for Office 365 and Exchange

leave a comment »

Regional Office and Exchange teams run “Ignite” training events for new waves of their products. I have attended online versions from both the US and UK in the past. The events are often over two days and are very useful for getting up to speed. The teams also have related webcasts and a selection covering topics such as: Hybrid deployment, Cutover and Staged migrations, Click-to-run deployment amongst others are available to replay (with presentation downloads) here.

The webcast on Identities and Single Sign on is interesting as it covers Windows Azure Active Directory tenancy and the Graph API that I have mentioned before.


On multi-forest AD the presentation indicates:

Multi-forest AD support is available through Microsoft-led deployments
Multi-forest DirSync appliance supports multiple dis-joint account forests
FIM 2010 Office 365 connector supports complex multi-forest topologies

If you find that presentation relevant then you might also want to check out the session from TechEd 2012 on Office 365 Identity Federation Technology Deep-Dive.

If you are responsible for the on-premise Active Directory that synchronizes to Office 365 using DirSync then you might want to look at the IdFix DirSync Error Remediation tool for object and attribute  sanitization.