Additional security processing is applied to the password hash before it is synchronized to the Azure Active Directory Authentication service.
To synchronize a password, the Directory Sync tool extracts the user password hash from the on-premises Active Directory.
This tool does not provide SSO because there is no token sharing/exchange in the Password Sync based process.
ENABLE PASSWORD RESET OFFICE 365 UPDATE
The advantage is that the username and passwords are the same, and when users update their credentials on Active Directory, the password will get synchronized to WAAD. With this new tool, and without ADFS, users will get prompted for credentials when accessing Office 365 resources even if they are on a domain-joined client machine. ADFS provides many other features that this tool does not, one of them being Single-Sign On (SSO) where users only need to authenticate once when they are logged on to a domain-joined client machine. Rather, it is an alternative for organizations that find it sufficient to have users using the same password in Office 365 as in the on-premises Active Directory. However, this should not be seen as a replacement for ADFS.
ENABLE PASSWORD RESET OFFICE 365 WINDOWS
The latest version of the Windows Azure Active Directory (WAAD) Sync Tool, also known as DirSync, has just been released.īesides supporting Windows Server 2012, this new version provides the much anticipated Password Sync feature, which enables users to log into their Azure Active Directory services (such as Office 365, InTune, CRM Online, etc.) using the same password as they use to log into their on-premises network.
0 kommentar(er)
