Abstract image of a woman sitting on books and studying on a laptop

The bits and pieces of Azure AD B2C

Download as PPTX, PDF
A
Anton Staykov

Azure Saturday 2019 in Munich highlighted Azure Active Directory B2C features such as password reset, account lockout, and multi-factor authentication. The event focused on identity management through Single Sign-On (SSO), OAuth, and OpenID Connect while discussing integration with various identity providers and user journey customization. Azure AD B2C aims to provide secure and branded registration experiences, suitable for enterprise needs and capable of scaling to millions of users.

Internet
1 of 19
Downloaded 16 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
Welcome to Azure Saturday 2019 Munich 18.05.2019 – Microsoft Munich – azuresaturday.de -- @azuresaturday #AzureSaturday
The bits and pieces of Azure AD B2C #AzureSaturday Speaker: Anton Staykov 18.05.2019 – Microsoft Munich – azuresaturday.de – @azuresaturday
Password reset Web Frontend Hash Backend Salt MFA Account Lockout Email verification
The bits and pieces of Azure AD B2C
SSO OpenID Connect OAuth Federation Client credentials ROPC AuthZ Code STS JWTSSI Token IdP Implicit flow JWKS This Photo by Unknown Author is licensed under CC BY claim on behalf of Device Code
Term Explanation SSO Single SignOn. Once signed in stay signed in across applications SSI Single Sign In. Use same set of credentials (username+password) across applications. Sign-in every time Claim Assertion about an object issued by a trusted authority Security Token Set of claims, digitally signed, issued by a Security Token Service STS Security Token Service. Issues tokens (does not do token validation) IdP Identity Provider. Reliable and secure store for usernames and passwords. Validates identity upon request OAuth Authorization Framework. IETF Standard: https://tools.ietf.org/html/rfc6749 OpenID Connect Interoperable authentication protocol based on the OAuth 2.0 family of specifications. https://openid.net/connect/faq/ JWT JSON Web Token JWKS JSON Web Key Secret SWT Simple Web Token (XML based security token format) SAML Security Assertion Markup Language. Token format SAML-P Security Assertion Markup Language. Protocol implementation that uses SAML Tokens WS-Federation Microsoft Protocol for SSO. Uses SAML Token format WS-Trust Microsoft Protocol for service identity authentication/authorization Various “flows” Implicit Flow, Client Credentials Flow, Authorization Code Grant Flow, On-Bhalf-Of Flow, Device Code. OAuth flows for obtaining tokens. https://oauth.net/2/
The bits and pieces of Azure AD B2C
The bits and pieces of Azure AD B2C
Apps & APIs Analytics CRM and Marketing Automation Business Social IDs Business & Government IDs contoso Customers Azure Active Directory B2C Provide branded (white-label) registration and login experiences Securely authenticate your customers using their preferred identity provider Capture login, preference, and conversion data for customers
App developers Sign-in any user. Any identity provider, social or email, consumer and enterprise Customize each pixel. Your brand, your HTML and CSS Use built-in, self-service, user journeys or define custom ones Scale to 100s of millions of users, enterprise ready, secure, cost effective Use social accounts Create custom user attributes Customize your pages using HTML and CSS Protect your users with MFA  </> for App Developers JavaScript
Step-by- step user journeys Open standards Connect to a store or migrate its users Conditional branching Enrich user journeys Connect with existing systems for Identity Experts Identity Experts Integrate with any SAML, OIDC, WsFed, or WsTrust-based identity provider Connect to your existing user stores or migrate from those systems seamlessly Connect with existing CRM systems, marketing tools, and databases Use REST APIs to enrich claims and empower user journeys Customize your user journeys with conditional branching Define user journeys between claims providers step-by-step
The bits and pieces of Azure AD B2C
=
… MS Graph =
Preconditions
The bits and pieces of Azure AD B2C
=
Continual Innovation! Generally available Public Preview Coming soon
https://aka.ms/aadb2csolutions https://aka.ms/aadb2csolutions https://aka.ms/aadb2cdemo https://aka.ms/aadb2cdemocode azure-ad-b2c

More Related Content

PPTX
DevSum: Azure AD B2C Application security made easy
Sjoukje Zaal
 
PPTX
Introduction to Azure AD and Azure AD B2C
Joonas Westlin
 
PPTX
Azure B2C
Marco De Sanctis
 
PPTX
[Noel] Azure AD Connect Technical Deep Dive
European Collaboration Summit
 
PPTX
Azure - Identity as a service
BizTalk360
 
PDF
Azure AD B2C – integration in a bank
Kseniia Lvova
 
PDF
OAuth 2.0 and OpenID Connect
Jacob Combs
 
PDF
Understanding Azure AD
New Horizons Ireland
 
DevSum: Azure AD B2C Application security made easy
Sjoukje Zaal
 
Introduction to Azure AD and Azure AD B2C
Joonas Westlin
 
Azure B2C
Marco De Sanctis
 
[Noel] Azure AD Connect Technical Deep Dive
European Collaboration Summit
 
Azure - Identity as a service
BizTalk360
 
Azure AD B2C – integration in a bank
Kseniia Lvova
 
OAuth 2.0 and OpenID Connect
Jacob Combs
 
Understanding Azure AD
New Horizons Ireland
 

What's hot (20)

PPTX
External collaboration with Azure B2B
Sjoukje Zaal
 
PPTX
OpenId Connect Protocol
Michael Furman
 
PPTX
An introduction to OAuth 2
Sanjoy Kumar Roy
 
PDF
OAuth & OpenID Connect Deep Dive
Nordic APIs
 
PDF
やりたいことから考えるMicrosoft Azure 上の データストアの選び方とデータサイエンティスト向け活用法。KVSからDWHまで
Daisuke Masubuchi
 
PPTX
OAuth2 + API Security
Amila Paranawithana
 
PPTX
Introduction to Amazon S3
Ashay Shirwadkar
 
PPTX
Mastering Identity Management with Entra ID in Microsoft Azure AD
Bert Blevins
 
PDF
Black Belt Online Seminar Amazon Cognito
Amazon Web Services Japan
 
PPTX
Azure Powershell. Azure Automation
Alexander Feschenko
 
PDF
Client Initiated Backchannel Authentication (CIBA) and Authlete’s Approach
Tatsuo Kudo
 
PPTX
Azure Active Directory - An Introduction
Venkatesh Narayanan
 
PPTX
Cognitive Intelligence using azure search
Karthikeyan VK
 
PPTX
OpenID Connect: An Overview
Pat Patterson
 
PDF
Introduction to OpenID Connect
Nat Sakimura
 
PDF
OpenID Connect Explained
Vladimir Dzhuvinov
 
PPTX
Windows Azure Active Directory
Krunal Trivedi
 
PPTX
FIWARE implementation of IDS concepts
fisuda
 
PDF
OAuth 2.0の概要とセキュリティ
Hiroshi Hayakawa
 
PDF
OAuth 2.0
Uwe Friedrichsen
 
External collaboration with Azure B2B
Sjoukje Zaal
 
OpenId Connect Protocol
Michael Furman
 
An introduction to OAuth 2
Sanjoy Kumar Roy
 
OAuth & OpenID Connect Deep Dive
Nordic APIs
 
やりたいことから考えるMicrosoft Azure 上の データストアの選び方とデータサイエンティスト向け活用法。KVSからDWHまで
Daisuke Masubuchi
 
OAuth2 + API Security
Amila Paranawithana
 
Introduction to Amazon S3
Ashay Shirwadkar
 
Mastering Identity Management with Entra ID in Microsoft Azure AD
Bert Blevins
 
Black Belt Online Seminar Amazon Cognito
Amazon Web Services Japan
 
Azure Powershell. Azure Automation
Alexander Feschenko
 
Client Initiated Backchannel Authentication (CIBA) and Authlete’s Approach
Tatsuo Kudo
 
Azure Active Directory - An Introduction
Venkatesh Narayanan
 
Cognitive Intelligence using azure search
Karthikeyan VK
 
OpenID Connect: An Overview
Pat Patterson
 
Introduction to OpenID Connect
Nat Sakimura
 
OpenID Connect Explained
Vladimir Dzhuvinov
 
Windows Azure Active Directory
Krunal Trivedi
 
FIWARE implementation of IDS concepts
fisuda
 
OAuth 2.0の概要とセキュリティ
Hiroshi Hayakawa
 
OAuth 2.0
Uwe Friedrichsen
 
Ad

Similar to The bits and pieces of Azure AD B2C (20)

DOC
Authentication Models
Raj Chanchal
 
PDF
Serverless Meetup - Authentication for Serverless Applications [Jul 2020]
Dhaval Nagar
 
PPTX
SharePoint 2010 Extranets and Authentication: How will SharePoint 2010 connec...
Brian Culver
 
PPTX
"Secure Mobile Apps with the Microsoft Identity Platform", Christos Matskas, ...
Fwdays
 
PPTX
SPSLisbon 2017 Office 365 Multi-factor Authentication with Microsoft Azure Ac...
Nuno Árias Silva
 
PPTX
TugaIT 2017 Office 365 Multi-factor authentication with Microsoft Azure Activ...
Nuno Árias Silva
 
PPTX
Microsoft Graph API Webinar Application Permissions
Stefan Weber
 
PPT
Authentication and strong authentication for Web Application
Sylvain Maret
 
PPTX
CTU June 2011 - Windows Azure App Fabric
Spiffy
 
PPTX
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?
Scott Hoag
 
PDF
Exploring the Power of Microsoft Identity Platform.pdf
Facile Technolab
 
PDF
"Securing SSO Authentication: Strategies to eliminate vulnerabilities", Oleh ...
Fwdays
 
PPTX
Azure AD B2C Webinar Series: Identity Protocols OIDC and OAuth2 part 2
Vinu Gunasekaran
 
PPTX
Microsoft identity manoj mittal
Manoj Mittal
 
PDF
AWS IoT Deep Dive - AWS IoT Web Day
AWS Germany
 
PPTX
Spsbe15 high-trust apps for on-premises development
BIWUG
 
PPTX
SPS Belgium 2015 - High-trust Apps for On-Premises Development
Edin Kapic
 
PDF
Serverless Meetup - Getting started with AWS Cognito [Jul 2020]
Dhaval Nagar
 
PDF
Create a Uniform Login Experience with a Centralized Cloud Authentication Sys...
Xamarin
 
PDF
GHC18 Abstract - API Security, a Grail Quest
PaulaPaulSlides
 
Authentication Models
Raj Chanchal
 
Serverless Meetup - Authentication for Serverless Applications [Jul 2020]
Dhaval Nagar
 
SharePoint 2010 Extranets and Authentication: How will SharePoint 2010 connec...
Brian Culver
 
"Secure Mobile Apps with the Microsoft Identity Platform", Christos Matskas, ...
Fwdays
 
SPSLisbon 2017 Office 365 Multi-factor Authentication with Microsoft Azure Ac...
Nuno Árias Silva
 
TugaIT 2017 Office 365 Multi-factor authentication with Microsoft Azure Activ...
Nuno Árias Silva
 
Microsoft Graph API Webinar Application Permissions
Stefan Weber
 
Authentication and strong authentication for Web Application
Sylvain Maret
 
CTU June 2011 - Windows Azure App Fabric
Spiffy
 
SPS Sydney - Office 365 and Cloud Identity – What does it mean for me?
Scott Hoag
 
Exploring the Power of Microsoft Identity Platform.pdf
Facile Technolab
 
"Securing SSO Authentication: Strategies to eliminate vulnerabilities", Oleh ...
Fwdays
 
Azure AD B2C Webinar Series: Identity Protocols OIDC and OAuth2 part 2
Vinu Gunasekaran
 
Microsoft identity manoj mittal
Manoj Mittal
 
AWS IoT Deep Dive - AWS IoT Web Day
AWS Germany
 
Spsbe15 high-trust apps for on-premises development
BIWUG
 
SPS Belgium 2015 - High-trust Apps for On-Premises Development
Edin Kapic
 
Serverless Meetup - Getting started with AWS Cognito [Jul 2020]
Dhaval Nagar
 
Create a Uniform Login Experience with a Centralized Cloud Authentication Sys...
Xamarin
 
GHC18 Abstract - API Security, a Grail Quest
PaulaPaulSlides
 
Ad

Recently uploaded (20)

PDF
Technical SEO Explained: How To Make Your Website Search-Friendly
cinzel communication llp
 
PPTX
购买林肯大学毕业证|i20Lincoln成绩单GPA修改本科毕业证书购买学历认证
南昆士兰大学毕业证学历文凭如可办理【Q微号:1954 292 140】USQ成绩单
 
PDF
Toolkit of the MultiCloud DevOps Professional.pdf
DiarioMario
 
PDF
ilide.info-huawei-odn-solution-introduction-pdf-pr_a17152ead66ea2617ffbd01e8c...
earl57613
 
PPTX
BIOS-and-VDU-The-Foundations-of-Computer-Startup-and-Display (1).pptx
OwaisShafi8
 
PPTX
日本横滨国立大学毕业证书文凭定制YNU成绩单硕士文凭学历认证
成绩单定购弗林德斯大学毕业证【Q微号:1954 292 140】
 
PDF
B2B Marketing mba class material for study
um24025
 
PPTX
WEEK 15.pptx WEEK 15.pptx WEEK 15.pptx WEEK 15.pptx
RayanRegalado
 
PPTX
IoT Lecture IoT Lecture IoT Lecture IoT Lecture
pratik695690
 
PPTX
FreePBX_Project_Presentation_With_Gantt.pptx
denismfalla9
 
PPTX
Introduction: Living in the IT ERA.pptx
joycecueva07
 
PPTX
c_languagew_structure_and_functions.pptx
tkathrani
 
PPT
Comparison of 2 Population Kuch toh bhadwa chodi karwa raha
neveyaj558
 
PPTX
DAY 1 - Introduction to Git.pptxttttttttttttttttttttttttttttt
sanskritig1705
 
PPTX
REE IN CARBONATITE EEPOSIT AND INCLUDE CASE STUDY ON AMBADUNGAR
bhagirathvadher234
 
PPTX
北安普顿大学毕业证UoN成绩单GPA修改北安普顿大学i20学历认证文凭
伦敦政治经济学院毕业证【Q微号:1954 292 140】购买法国成绩单LSE学位证
 
DOCX
Audio to Video AI Technology Revolutiona
zhsjsiushsossushksis
 
PDF
Testing & QA Checklist for Magento to Shopify Migration Success.pdf
CartCoders
 
PPTX
Dating App Development Cost: Factors, Features & Estimates
simarjeetsingh3033
 
PPTX
LiFi Technology an effective way of Communication
Juliet Thessalonica
 
Technical SEO Explained: How To Make Your Website Search-Friendly
cinzel communication llp
 
购买林肯大学毕业证|i20Lincoln成绩单GPA修改本科毕业证书购买学历认证
南昆士兰大学毕业证学历文凭如可办理【Q微号:1954 292 140】USQ成绩单
 
Toolkit of the MultiCloud DevOps Professional.pdf
DiarioMario
 
ilide.info-huawei-odn-solution-introduction-pdf-pr_a17152ead66ea2617ffbd01e8c...
earl57613
 
BIOS-and-VDU-The-Foundations-of-Computer-Startup-and-Display (1).pptx
OwaisShafi8
 
日本横滨国立大学毕业证书文凭定制YNU成绩单硕士文凭学历认证
成绩单定购弗林德斯大学毕业证【Q微号:1954 292 140】
 
B2B Marketing mba class material for study
um24025
 
WEEK 15.pptx WEEK 15.pptx WEEK 15.pptx WEEK 15.pptx
RayanRegalado
 
IoT Lecture IoT Lecture IoT Lecture IoT Lecture
pratik695690
 
FreePBX_Project_Presentation_With_Gantt.pptx
denismfalla9
 
Introduction: Living in the IT ERA.pptx
joycecueva07
 
c_languagew_structure_and_functions.pptx
tkathrani
 
Comparison of 2 Population Kuch toh bhadwa chodi karwa raha
neveyaj558
 
DAY 1 - Introduction to Git.pptxttttttttttttttttttttttttttttt
sanskritig1705
 
REE IN CARBONATITE EEPOSIT AND INCLUDE CASE STUDY ON AMBADUNGAR
bhagirathvadher234
 
北安普顿大学毕业证UoN成绩单GPA修改北安普顿大学i20学历认证文凭
伦敦政治经济学院毕业证【Q微号:1954 292 140】购买法国成绩单LSE学位证
 
Audio to Video AI Technology Revolutiona
zhsjsiushsossushksis
 
Testing & QA Checklist for Magento to Shopify Migration Success.pdf
CartCoders
 
Dating App Development Cost: Factors, Features & Estimates
simarjeetsingh3033
 
LiFi Technology an effective way of Communication
Juliet Thessalonica
 

The bits and pieces of Azure AD B2C

  • 1. Welcome to Azure Saturday 2019 Munich 18.05.2019 – Microsoft Munich – azuresaturday.de -- @azuresaturday #AzureSaturday
  • 2. The bits and pieces of Azure AD B2C #AzureSaturday Speaker: Anton Staykov 18.05.2019 – Microsoft Munich – azuresaturday.de – @azuresaturday
  • 6. Term Explanation SSO Single SignOn. Once signed in stay signed in across applications SSI Single Sign In. Use same set of credentials (username+password) across applications. Sign-in every time Claim Assertion about an object issued by a trusted authority Security Token Set of claims, digitally signed, issued by a Security Token Service STS Security Token Service. Issues tokens (does not do token validation) IdP Identity Provider. Reliable and secure store for usernames and passwords. Validates identity upon request OAuth Authorization Framework. IETF Standard: https://tools.ietf.org/html/rfc6749 OpenID Connect Interoperable authentication protocol based on the OAuth 2.0 family of specifications. https://openid.net/connect/faq/ JWT JSON Web Token JWKS JSON Web Key Secret SWT Simple Web Token (XML based security token format) SAML Security Assertion Markup Language. Token format SAML-P Security Assertion Markup Language. Protocol implementation that uses SAML Tokens WS-Federation Microsoft Protocol for SSO. Uses SAML Token format WS-Trust Microsoft Protocol for service identity authentication/authorization Various “flows” Implicit Flow, Client Credentials Flow, Authorization Code Grant Flow, On-Bhalf-Of Flow, Device Code. OAuth flows for obtaining tokens. https://oauth.net/2/
  • 9. Apps & APIs Analytics CRM and Marketing Automation Business Social IDs Business & Government IDs contoso Customers Azure Active Directory B2C Provide branded (white-label) registration and login experiences Securely authenticate your customers using their preferred identity provider Capture login, preference, and conversion data for customers
  • 10. App developers Sign-in any user. Any identity provider, social or email, consumer and enterprise Customize each pixel. Your brand, your HTML and CSS Use built-in, self-service, user journeys or define custom ones Scale to 100s of millions of users, enterprise ready, secure, cost effective Use social accounts Create custom user attributes Customize your pages using HTML and CSS Protect your users with MFA  </> for App Developers JavaScript
  • 11. Step-by- step user journeys Open standards Connect to a store or migrate its users Conditional branching Enrich user journeys Connect with existing systems for Identity Experts Identity Experts Integrate with any SAML, OIDC, WsFed, or WsTrust-based identity provider Connect to your existing user stores or migrate from those systems seamlessly Connect with existing CRM systems, marketing tools, and databases Use REST APIs to enrich claims and empower user journeys Customize your user journeys with conditional branching Define user journeys between claims providers step-by-step
  • 13. =
  • 17. =
  • 18. Continual Innovation! Generally available Public Preview Coming soon