Simplified SSO for Office 365
Give users single sign-on (SSO) access to their Office 365 environment, while administrators continue to use their existing administrative tools as they do for their internal environment.
Secure access to Office 365 can be hard
Depending on your Microsoft Active Directory infrastructure, it can be complicated to provide single sign-on (SSO) to your Office 365 environment. For multiple domain configurations with trust relationships, building a single login solution across your local domains and Office 365 can be overwhelming.
To deliver a single login experience to your users, you'll need Microsoft Active Directory Federation Services (ADFS). Good luck with that. If you're like many organizations, you'll struggle to get ADFS up-and-running. And if you have problems down the road you may be lacking the expertise to troubleshoot them. Even if you're confident in your team's fix-it abilities, ADFS can be a pain to maintain.
For provisioning of local accounts to Office 365, Microsoft offers DirSync, which is rigid in how it can be configured and comes with notably high overhead. Therefore, many organizations choose to keep their Office 365 separate from their internal environment.
The result is user accounts that are manually created separate from their internal accounts. This is frequently true for departmental usage of Office 365 that may or may not be formalized with IT. This causes a gap in account and login management between Office 365 and your internal SSO implementation.
CloudAccess can help.
Seamless access to Office 365
- Simple—With CloudAccess, once users log into their computer, they are also authenticated for the Office 365 environment. After they authenticate to their local device, it's just a single click of the shortcut and they're in.
- Secure—Users don't need to write down their passwords.
Automation—simple replaces complicated
CloudAccess uses automation to make many processes simpler:
Automates user provisioning and deprovisioning between Active Directory and Office 365. This increases convenience, so new users don't need to wait around for access but can be productive immediately. And it improves security because disabled users are immediately deprovisioned.
Automates granular control of licensed services. This helps you take advantage of specific capabilities that you may have paid extra fees for.
Requires no paradigm shifts. Active Directory remains the single source of truth and its established administrative processes and tools remain untouched. (Note: If you want to further simplify access administration, be sure to check out Directory Resource Administrator.)
Simplifies your single sign-on infrastructure. With CloudAccess you no longer have to deal with the headache and complexity of ADFS. And unlike ADFS, it's easy to use CloudAccess to extend single sign-on to other cloud-based applications as well.
When you want to add single sign-on to other Software as a Service (SaaS) applications, you don't need to hire a consulting service or assemble expensive developers. Just use CloudAccess's toolkit. Have additional questions? If you're a Priority Support customer, call Technical Services and they'll configure single sign-on to other cloud services for you.
Simplifies account synchronization. If you have more than just the most basic Active Directory environment, you must deal with the complexity of multiple DirSync engineers keeping accounts current on Office 365.
With CloudAccess, all you need is a single instance. The value of a single instance becomes clear as you define policies, maintain systems and troubleshoot problems. Inside CloudAccess is our industry-leading Identity Manager engine that is used to provision/deprovision user accounts. Yet on the outside, all the administrator sees is a simple, user-friendly interface.
The CloudAccess Office 365 connector enables administrators to perform granular policy mapping of Office 365 subscriptions, such as:
- Office Web Apps
- SharePoint Online
- Exchange Online
So to better manage the Office 365 licenses that you have purchased, you can now automate assignment and removal of individual Office 365 application subscriptions.
Fig. 4 Outlook
Support for Exchange Control Panel (ECP)
The new connector for Office 365 supports ECP (also called http proxy authentication) for desktop clients such as Microsoft Outlook. In addition, the connector supports ECP for email on Android and iPhone devices.