Solved

Azure replacement tool

Posted on 2016-08-12
1
120 Views
Last Modified: 2016-08-13
My customer is company with the following IT infrastructure:

1. A single forest/domain with multiple sites in a Hybrid organization AD -Azure

2. Exchange 2010 - Office 365 hybrid infrastructure

3. In the production network, there are multiple DCs, GC, 2 internal ADFS servers. One IntraVnet for prod, load balancers. Another Vnet with 2 WAP proxy servers between internal firewall and external firewalls.

4, There is a express route between on premise resources and Microsoft Azure resources

5. Client has 2 Azure subscriptions, one for production and another one for QA

5, Client has deployed 2 tenant, one for their internal resources and applications, and another tenant to host applications for their consultants and apps


Client purchased a while ago a tool named Tools4ever that basically allow clients to reset their password in the cloud, unlock their accounts, via self-service.


Here are my questions

My client is looking to purchase Premium Azure version, and use all features to:

Allow customers to self-service password reset, same for unlock their accounts via browser using same self-service model.

What are my options to replace this tool, and have Azure to perform all activities above?

Please, provide at least 2 options, and their implications. For example, option 1. Enable password writeback and redirect current URL login users to use new link in Azure? what ULR should use? implication, service impact?


As per screenshots below? this is critical, and please make sure to look at every single screen, and validate Azure allow same functionality

Can you please make sure that Azure offers same features and allow Enroll, password reset, and all features?

For any of the options above, please provide step-step instructions on how to setup, or enable whatever is your recommendation in Azure.

Where specifically do we direct users?
URL?
Currently SSRPM presents Unlock as well as PW reset, will this also be delivered?
Tool4everscreenshots.docx
0
Comment
Question by:Jerry Seinfield
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 41

Accepted Solution

by:
Adam Brown earned 500 total points
ID: 41754411
https://azure.microsoft.com/en-us/documentation/articles/active-directory-passwords/ has links to information that should answer most of your questions regarding the URLs and User actions required for resetting passwords.

All of this stuff would be set up in the Azure Active Directory portal, and https://azure.microsoft.com/en-us/documentation/articles/active-directory-passwords-getting-started/ has all the instructions required for setting it up.

As for replacing your current solution, you don't necessarily have to if it doesn't continue to cost money, since changes made by the tool will sync with Azure AD still, even with the Premium subscription. If you want to ditch it, though, the first link I gave will help you determine what URLs to use.
0

Featured Post

Automating Terraform w Jenkins & AWS CodeCommit

How to configure Jenkins and CodeCommit to allow users to easily create and destroy infrastructure using Terraform code.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The following article is comprised of the pearls we have garnered deploying virtualization solutions since Virtual Server 2005 and subsequent 2008 RTM+ Hyper-V in standalone and clustered environments.
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question