o better understand the structure of Azure® Active Directory® (AAD or Azure AD), we explore each tier of their services in a four-part series. This is part three of that series.
Each part covers the benefits of that particular service, as well as the drawbacks that come with each tier. Click here to read our previous blog on Azure AD Free, or here to read about our blog on Azure AD Office 365 apps.
Azure Active Directory Premium P1
Azure AD is a cloud-based user management platform often introduced to organizations via the purchase of an Office 365™ license or Azure subscription. Although IT teams commonly start their organizations with Azure AD Free or Office 365 apps (since those are included with a subscription to either service), organizations often look to upgrade their Azure AD instances to Premium P1 or P2 licenses.
AAD’s paid licenses are used alongside a directory service, and as such, complement features of an existing directory. Organizations often implement AAD Premium P1 in conjunction with a core identity provider, but many are aware that AAD Premium P1 can be used entirely on its own to manage Microsoft 365/Azure identities, as well as enact single sign-on (SSO) for
pre-integrated web applications. Below, we evaluate Azure AD Premium P1’s capabilities as a standalone tool, and how organizations can best utilize AAD Premium P1’s services.
Benefits of Azure AD Premium P1
Azure AD Premium P1 offers the following features:
- All of the features listed for Azure AD Office 365 apps
- SSO for an unlimited number of pre-integrated SaaS applications
- Self-service application assignment to enable users to self-discover and request access to applications; this enables cloud app discovery
- On-premises write-back for all password changes
- Group-based access management and provisioning (comes with additional provisioning customization)
- Advanced usage reporting
- Application proxy for remote access to on-prem applications
- Microsoft® Identity Management (MIM) Client Access Licenses (CAL) + MIM server for simplified lifecycle user management
- Conditional access based on device state or location and group
- Automated password rollover for group accounts
- For Windows® 10 Pro: desktop SSO, Microsoft Passport (Read more…)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Kayla Coco-Stotts. Read the original post at: https://jumpcloud.com/blog/understanding-aad-premium-p1
Reference: https://securityboulevard.com/2020/05/understanding-azure-ads-premium-p1-tier/