SC-300 Microsoft Identity and Access Administrator – Single Sign On

1. Introduction to Enterprise Application Integration

So we moved on to the next big objective of this exam, which says implement access management for apps. But it’s only worth ten to 15%. Still obviously important that we understand both enterprise apps and custom apps. So in this section of the course, we’re going to be talking about single sign on for enterprise applications. What does that mean? Mean? Well, you might not even be aware of this, maybe you are, but you can actually use Azure Active Directory, your tenant as the authentication provider for hundreds of enterprise applications. So if we go into your tenant and we go into enterprise applications and we say new application, we can do some searching.

Now, right off the bat, we’re presented with a handful of featured providers. So you can actually use your Azure Ad tenant as the authentication provider for your AWS account, for your Google Cloud platform account, oracle Cloud account, or even your SAP account. Well, how does that work? So let’s say you were to enable AWS integration with Azure Ad, you’re going to have to do something on the AWS side as well as activating It here within Azure Ad. But basically then when you log into AWS using your Azure Ad account, which could be integrated with your onpremises ad, then it’s going to understand your role and your credentials, what permissions you have, just as if you were logging into an AWS managed account.

Now, it’s not only cloud providers that handle this, there’s also third party enterprise grade applications, adobe At Last, CN Box and Dropbox DocuSign, cisco GoToMeeting for to Gate, lots of different providers. So if you want to browse the apps that are available, you actually probably have to switch back to the Legacy Gallery experience, go back to here, you can see 1900 apps available. And then you can choose by category from finance, health, It, infrastructure, mail. So the integrations, again, hundreds and hundreds of integrations. Let’s go back to the so called improved experience. And so if you are interested in a particular provider so let’s say we’re looking for different Cisco Per applications.

We can get webex integration, cloud security fabric, which is called Cloud Lock, et cetera. So, depending on your need, you can basically tie in these enterprise applications with Azure Ad as the back end. Now, there’s certain steps to go through, like I said, on both sides of the equation to set this up. But you can do it. It’s fairly straightforward to get going. You could even get this integration with a lot of other social media applications. We can do this with GitHub, there’s also GitHub, Enterprise, all of your sort of work related applications, enterprise applications. We can get this integration started.