Azure Active Directory and Windows 10: Microsoft’s Hybrid Vision

Azure Active Directory and Windows 10: Microsoft’s Hybrid Vision

As more and more companies make the transition from On-Premise to the Cloud, Microsoft believes that there will be a phase where companies run both data centers in parallel.  Microsoft believes that this Hybrid state will last for approximately 10 years.  Beyond these years most workloads will be in the cloud.

How can organisations manage users and devices from a single source of truth?  Microsoft has assisted with this Hybrid state allowing companies to administer cloud users, all with the assistance of Azure ADConnect. Today we are in a Cloud First era, if Cloud is not supported why not?

The days of imaging devices and adding them domains maybe coming to an end.  Companies will soon be able to manage Windows 10 (slated for first update) by simply joining them to Azure AD, with Azure AD Join.

This will be compatible with Microsoft Intune. Users will get a single sign on experience from their on premise applications, device and their cloud applications. This will be the start of large organisational process changes and is important as companies look to manage the plethora of mobile devices.  If your next device refresh is the same as your last one, it may be an outdated solution.

Let’s go for a test!  I installed Windows 10 build 10074 with Hyper-V on my laptop with 1.5 gig ram allocated (works, but definently needs resources), after installing I was presented with this screen

1

Here you can click Express or Custom, this just changes your Feedback and other experience related settings, then I got a loading screen

2

Then I selected “This Device Belongs to my Company”

4

I clicked continue make sure you read this screen first

5

Then I typed in my username and password

6

I got my password wrong first time, but this error gave me something interesting, my Azure AD branding that I configured at TechEd Australia last year came through.

8

Then I got this screen, after 10 minutes watching the circle I went got a coffee then played with my phone.

9

Then I got this log in screen

11

Logging in

10

Then this error.  Not sure if it was a VM, network or ram issue.

13

I selected Try Again and it worked immediately.  Please note the default PIN complexity requirements.  This pin may now automatically work across several different devices.

1415

But what does this mean and what has happen to my machine?  It is not on a domain, but if you check the sysinfo it says my logon server is \\AzureAD.

Edit:  I tested SSO for Office 365 and Azure as suggested by Alex Simons.  I could only get Azure SSO to work.  With Office 365 each time I tried to enter the URL it would redirect back to Office 365 login page.

I am sure in the coming months we will see more features and capabilities added.  Keep a look out for more on this topic at this year TechEd’s, Ignite and Build events around the world.

16

The key benefits and capabilities of Azure Active Directory and Windows 10:

  • Consistent user experience.
  • Single Sign on
  • Automatic Enrollment
  • Support modern form factors – devices that don’t have domain join functions.

This feature has huge potential so it is good to start planning any organisational transformations before Windows 10 goes GA.

Look at the following comment from Deniz regarding this new feature”Works great, well done, already started planning to decommission all onprem servers including ADs and work with AzureAD only with a fileserver vm in Azure.”

To get started refer to the following article:

Post by Alex Simons and Ariel Gordon

And follow these twitter handles

@aaronw2003  @Alex_A_Simons @askariel

To start planning for your business transformation you can deploy and test these features all from within your Microsoft Azure subscription and a VM.  If you don’t have an Microsoft Azure subscription you can take a trial here.

Aaron Whittaker @AaronW2003

profile pic

Advertisements

User Group Session next month

Next months User Group session will be on Microsoft’s HDInsight in Azure, presented by Microsoft.  If you are currently interested in Big Data, then this is the session for you.

Dates to be confirmed.  The technical level of this session will be 300.

Please add comments for any items that you wish you have covered in this session.

eg. Power BI for Office 365, data analytics, migration, DataZen, Hadoop.

MSFT-Love_thumb

Look forward to seeing you then.

Aaron @AaronW2003

How to install Microsoft Office 2016

Register for the preview by going here
Then proceed to here to download the script
Download the Admin_OfficePreview.zip script

Uninstall any previous versions of Office 2013 and Project and Visio.

Run the following to download the source files. (I am installing EN US 32 bit version)
PS C:\Users\aaron\Downloads\Admin_OfficePreview\Admin_OfficePreview> .\setup.exe /download
Run the following to install Office 2016.
PS C:\Users\aaron\Downloads\Admin_OfficePreview\Admin_OfficePreview> .\setup.exe /configure C:\Users\aaron\Downloads\Admin_OfficePreview\Admin_OfficePreview\Install_en-us\ProPlus_en-us_x86.xml

The installer will start up.

2

The installer will minimise to the taskbar.

4

Run the following to install Project 2016.
PS C:\Users\aaron\Downloads\Admin_OfficePreview\Admin_OfficePreview> .\setup.exe /configure C:\Users\aaron\Downloads\Admin_OfficePreview\Admin_OfficePreview\Install_en-us\Project_en-us_x86.xml
Run the following to install Visio 2016.
PS C:\Users\aaron\Downloads\Admin_OfficePreview\Admin_OfficePreview> .\setup.exe /configure C:\Users\aaron\Downloads\Admin_OfficePreview\Admin_OfficePreview\Install_en-us\Visio_en-us_x86.xml

Enter your registered details to Trial Software.

5

Update:

I am running Windows 10 build 9926.  I get the following error when I use the snipping tool and I attempt to email from within the tool (Via Outlook 2016).

error

Licensing Update:

You only get a few days grace without a valid license.

How to activate -> you simply need enter credentials for a valid Office 365 mailbox.  No other licenses/key will work.

profile pic Aaron @AaronW2003

Azure RemoteApp going GA next week

With Azure RemoteApp, you can enable your users to access corporate applications from anywhere and on a variety of devices, scale up or down to meet the dynamic business needs.  Azure RemoteApp will be generally available on December 11, 2014. Any Azure RemoteApp instances created during the current public preview period will continue to function as they do today. These instances will automatically transition to a 30-day free trial on December 11, 2014.

@aaronw2003 #tothecloud

remoteapp

Networking 101 for Disaster Recovery to @MSAU @Azure using Site Recovery

Definitely worth a read before implementing any DR to Microsoft Azure plan.

http://blogs.technet.com/b/virtualization/archive/2014/09/09/networking-101-for-disaster-recovery-to-microsoft-azure-using-site-recovery.aspx

http://azure.microsoft.com/blog/2014/09/04/networking-infrastructure-setup-for-microsoft-azure-as-a-disaster-recovery-site/