SlideShare una empresa de Scribd logo

How does Quest Software fit into a Microsoft hybrid environment?

Descargar como PPTX, PDF
Xylos
Xylos

Microsoft Office 365 is a key element of your current IT infrastructure. What does this mean for your management, security, reporting and auditing? In this session, Quest invites you to explore their hybrid AD management and security solutions.

Presentaciones y charlas públicas
1 de 45
Marc Koeneman Software Sales Engineer Hybrid AD-Management and Security.
• Quest 2.0 • Microsoft Hybrid Setup • Hybrid Challenges • Migrations • Hybrid solutions from On-Prem • Hybrid solutions from Cloud Agenda
Our Portfolio We deliver solutions for: One Identity Information Management Endpoint Systems Management Platform management Data protection
Migration Security & Compliance Management & Governance Platform Management • Prepare, assess and clean up • Simplify migration • Deliver seamless coexistence • Streamline management • Continually assess • Detect and alert • Remediate and mitigate • Investigate and recover • Backup and recover • Ensure performance and availability • Simplify reporting • Automate administration
Microsoft Hybrid Setup
Hybrid Environment Local AD Azure ADAzure AD Connect Office 365  OneDrive • Migrate • Manage • Secure • Report • Recover From On Premise • Migrate • Manage • Secure • Report • Recover From The Cloud Teams SharePoint • Migrate • Manage • Secure • Report • Recover From The Cloud • Migrate • Manage • Secure • Report • Recover From On Premise
Hybrid Challenges
Common approaches Assume Microsoft has it all covered Put in more hours Use native tools or PowerShell Charge ahead
But the risk with these approaches is … Assume Microsoft has it all covered Put in more hours Use native tools or PowerShell Charge ahead Unexpected delays & additional work Your team already lacks time and resources Yes they’re free … but have critical gaps Unknown hurdles & compromised security
Hybrid Environment Local AD Azure ADAzure AD Connect Office 365  OneDrive Teams SharePoint
Challenges • Migration • On-Prem – O365 • O365 – O365 • Management of Directories • Group management • (De-)Provisioning • Delegation • Audit Trails • Decentral • Limited Time available • Search? • Reporting • On-Prem permissions / delegation • Cloud permissions / delegation • Recovery Directories • Recycle Bin • Cloud Only Objects • Synced Objects • O365 License management
Where can we help? - Migration - From On-Premise with Cloud - From Cloud with On Prem
Migration Solutions
From On-Premise with Cloud Hybrid Report Hybrid Audit + Recover Search Hybrid Manage • Investigate AD security Incidents • Continuously test your AD business continuity plan • Recover from a security incident • Improve your RTO • Secure access to AD/Azure AD • Enforce permission • Implement least-privilege access model • Reduce surface attack area in AD/Azure AD • Prevent unauthorized access to sensitive resources • Remediate unauthorized activities • Who has access to what sensitive data in AD/Azure AD/O365 • Who has elevated privileged permissions in AD/Azure AD/O365, servers • What systems are vulnerable to security threats • Detect suspicious privileged AD activities • Alert on potential AD/Azure AD/O365 insider threats • Notify in real time of unauthorized intrusions against AD/Azure AD/O365 • Detect and alert on brute-force attacks IT Security Search & Recovery Managers Enterprise Reporter Active Roles Change Auditor From On Premise
Components in IT-Security Suite + Demo IT-Security Search Change Auditor (Security Auditing) Knowledge Portal SQL Reporting Service + IIS Enterprise Reporter (‘Snapshot’) InTrust (Event Gathering) • BS ISO/IEC 27002: 2005 * • COBIT * • GDPR • FISMA • COSO • HIPAA • PCI • SOX • ………. Recovery Manager (Recovery of AD objects/attributes) Active Roles Server (Directory management) From On Premise
Demo Environment KOENEMAN.COM KDC1 19.111.1.1 KAPP1 19.111.1.3 InTrust CA ER RMAD KSQL1 19.111.1.2 AADC ITSS KARS1 19.111.1.4 ARS KEX1 19.111.1.5 From On Premise
Demo From On Premise
On Demand From The Cloud
From Cloud with On-Premise Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
Why Quest On Demand? Fast, easy setup – No installation, no upgrades, no complex configuration — no sweat! Secure and reliable SaaS –ISO/IEC27001:2013, ISO/IEC 27017:2015 and ISO/IEC 27018:2019 certified. Rapid innovation – we keep pace with Microsoft updates so you don’t have to! From The Cloud
On Demand Migration From The Cloud
2019 Market Guide for Cloud Office Migration Tools 40 out of 40 Use of cloud-to-cloud migration tools is growing prominent as organizations undergo acquisitions, mergers and divesture as well as shifts in their digital business strategies. Gartner, Inc. Figure 3. Look for Features and Functionality That Go Beyond Replicating the On-Premises Environment Gartner, Market Guide for Cloud Office Migration Tools, Gavin Tay, Adam Preset, Joe Mariano, 28 February 2019. This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Quest. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved. Quest is the only vendor listed with all 40 features and functionality supported.
Quest® On Demand Migration Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
Migration Scenarios Supported Migrate multiple Office 365 tenants to a single target tenant for consolidation or restructuring. Multiple Tenants Use Migration Manager for AD to migrate On-premise AD and then match accounts with On Demand Migration for tenant migration. AD Hybrid Tenants* Migrate Azure AD, Exchange Online, and OneDrive from one Office 365 tenant to another. Tenant to Tenant MMAD From The Cloud
What sets ‘On Demand’ Migration apart? Hybrid Support Hybrid support Mail Mail data migration OneDrive OneDrive data migration SharePoint SharePoint data migration Teams Teams data migration Groups Group migration Free Profile Updates Update profiles World Class Support! Perfect Support From The Cloud
On Demand Recovery From The Cloud
Quest® On Demand Recovery Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
On Demand Recovery product overview From The Cloud
Comparing Quest with Azure AD recycle bin Azure AD and Office 365 recovery Recycle Bin Restore multiple attributes at one time Restore Azure AD Groups and group membership Granular restore of user attributes – i.e. O365 license type Restore hard deleted objects which bypassed the recycle bin Difference reporting with restore capability Search and restore capability From The Cloud
On Demand Audit From The Cloud
Quest® On Demand Audit Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
Comparing Quest with native auditing Critical auditing requirement Native Alert on suspicious events regardless of whether they occur on prem or cloud X  Cut through raw data and see only what is important for the change/activity X  Flexible search on any event or any field, including by actor, changed attributes, activity details or cloud-only objects X  Normalize view of all user activity, on prem and in the cloud X  Keep audit data for up to 10 years to satisfy internal policies and external compliance regulations X  From The Cloud
On Demand Group Management From The Cloud
Quest® On Demand Group Management Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
+ More secure + Unburdens IT Increases user productivity + From The Cloud On Demand Group Management
Key benefits Increased visibility by managing groups via a single console Keep order in your environment with rules for group creation, naming, attestation, expiration, etc. Confidently offload administrator workloads to end users using a self-service UI Empower users to create and manage their own groups within a pre-selected framework in the self-service UI Continually validate group membership through automated attestation Enable users to quickly recognize and request access to resources connected to Azure AD From The Cloud
Demo ‘On Demand’ From The Cloud
Thank You!
How does Quest Software fit into a Microsoft hybrid environment?
How does Quest Software fit into a Microsoft hybrid environment?
How does Quest Software fit into a Microsoft hybrid environment?
How does Quest Software fit into a Microsoft hybrid environment?
How does Quest Software fit into a Microsoft hybrid environment?
How does Quest Software fit into a Microsoft hybrid environment?
How does Quest Software fit into a Microsoft hybrid environment?

Recomendados

Microsoft 365 Enterprise Security with E5 Overview
Microsoft 365 Enterprise Security with E5 OverviewMicrosoft 365 Enterprise Security with E5 Overview
Microsoft 365 Enterprise Security with E5 Overview
David J Rosenthal
 
Hitachi ID Identity and Access Management Suite
Hitachi ID Identity and Access Management SuiteHitachi ID Identity and Access Management Suite
Hitachi ID Identity and Access Management Suite
Hitachi ID Systems, Inc.
 
Microsoft 365 Security and Compliance
Microsoft 365 Security and ComplianceMicrosoft 365 Security and Compliance
Microsoft 365 Security and Compliance
David J Rosenthal
 
Windows Virtual Desktop Powered By Microsoft Azure
Windows Virtual Desktop Powered By Microsoft AzureWindows Virtual Desktop Powered By Microsoft Azure
Windows Virtual Desktop Powered By Microsoft Azure
David J Rosenthal
 
Deep dive into Microsoft Purview Data Loss Prevention
Deep dive into Microsoft Purview Data Loss PreventionDeep dive into Microsoft Purview Data Loss Prevention
Deep dive into Microsoft Purview Data Loss Prevention
Drew Madelung
 
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
David J Rosenthal
 
Fundamentals of Microsoft 365 Security , Identity and Compliance
Fundamentals of Microsoft 365 Security , Identity and ComplianceFundamentals of Microsoft 365 Security , Identity and Compliance
Fundamentals of Microsoft 365 Security , Identity and Compliance
Vignesh Ganesan I Microsoft MVP
 
Labelling in Microsoft 365 - Retention & Sensitivity
Labelling in Microsoft 365 - Retention & SensitivityLabelling in Microsoft 365 - Retention & Sensitivity
Labelling in Microsoft 365 - Retention & Sensitivity
Drew Madelung
 

Recomendados

Microsoft 365 Enterprise Security with E5 Overview
Microsoft 365 Enterprise Security with E5 OverviewMicrosoft 365 Enterprise Security with E5 Overview
Microsoft 365 Enterprise Security with E5 Overview
David J Rosenthal
 
Hitachi ID Identity and Access Management Suite
Hitachi ID Identity and Access Management SuiteHitachi ID Identity and Access Management Suite
Hitachi ID Identity and Access Management Suite
Hitachi ID Systems, Inc.
 
Microsoft 365 Security and Compliance
Microsoft 365 Security and ComplianceMicrosoft 365 Security and Compliance
Microsoft 365 Security and Compliance
David J Rosenthal
 
Windows Virtual Desktop Powered By Microsoft Azure
Windows Virtual Desktop Powered By Microsoft AzureWindows Virtual Desktop Powered By Microsoft Azure
Windows Virtual Desktop Powered By Microsoft Azure
David J Rosenthal
 
Deep dive into Microsoft Purview Data Loss Prevention
Deep dive into Microsoft Purview Data Loss PreventionDeep dive into Microsoft Purview Data Loss Prevention
Deep dive into Microsoft Purview Data Loss Prevention
Drew Madelung
 
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
Microsoft Intune - Empowering Enterprise Mobility - Presented by Atidan
David J Rosenthal
 
Fundamentals of Microsoft 365 Security , Identity and Compliance
Fundamentals of Microsoft 365 Security , Identity and ComplianceFundamentals of Microsoft 365 Security , Identity and Compliance
Fundamentals of Microsoft 365 Security , Identity and Compliance
Vignesh Ganesan I Microsoft MVP
 
Labelling in Microsoft 365 - Retention & Sensitivity
Labelling in Microsoft 365 - Retention & SensitivityLabelling in Microsoft 365 - Retention & Sensitivity
Labelling in Microsoft 365 - Retention & Sensitivity
Drew Madelung
 
Azure Virtual Desktop Overview.pptx
Azure Virtual Desktop Overview.pptxAzure Virtual Desktop Overview.pptx
Azure Virtual Desktop Overview.pptx
ceyhan1
 
Azure security and Compliance
Azure security and ComplianceAzure security and Compliance
Azure security and Compliance
Karina Matos
 
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud AppsSecure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Vignesh Ganesan I Microsoft MVP
 
TechnicalTerraformLandingZones121120229238.pdf
TechnicalTerraformLandingZones121120229238.pdfTechnicalTerraformLandingZones121120229238.pdf
TechnicalTerraformLandingZones121120229238.pdf
MIlton788007
 
Metadata Strategies - Data Squared
Metadata Strategies - Data SquaredMetadata Strategies - Data Squared
Metadata Strategies - Data Squared
DATAVERSITY
 
cyber-security-reference-architecture
cyber-security-reference-architecturecyber-security-reference-architecture
cyber-security-reference-architecture
Birendra Negi ☁️
 
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data ArchitectureADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
DATAVERSITY
 
Cloud Migration Strategy - IT Transformation with Cloud
Cloud Migration Strategy - IT Transformation with CloudCloud Migration Strategy - IT Transformation with Cloud
Cloud Migration Strategy - IT Transformation with Cloud
Blazeclan Technologies Private Limited
 
Data Architecture Best Practices for Advanced Analytics
Data Architecture Best Practices for Advanced AnalyticsData Architecture Best Practices for Advanced Analytics
Data Architecture Best Practices for Advanced Analytics
DATAVERSITY
 
Securing your Azure Identity Infrastructure
Securing your Azure Identity InfrastructureSecuring your Azure Identity Infrastructure
Securing your Azure Identity Infrastructure
Vignesh Ganesan I Microsoft MVP
 
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Nikki Chapple
 
Cloud App Security Customer Presentation.pdf
Cloud App Security Customer Presentation.pdfCloud App Security Customer Presentation.pdf
Cloud App Security Customer Presentation.pdf
ErikHof4
 
Microsoft 365 Compliance and Security Overview
Microsoft 365 Compliance and Security OverviewMicrosoft 365 Compliance and Security Overview
Microsoft 365 Compliance and Security Overview
David J Rosenthal
 
Azure Governance
Azure GovernanceAzure Governance
Azure Governance
Benjamin Hüpeden
 
An introduction to Defender for Business
An introduction to Defender for BusinessAn introduction to Defender for Business
An introduction to Defender for Business
Robert Crane
 
March 2023 CIAOPS Need to Know Webinar
March 2023 CIAOPS Need to Know WebinarMarch 2023 CIAOPS Need to Know Webinar
March 2023 CIAOPS Need to Know Webinar
Robert Crane
 
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Ivanti
 
Power of the cloud - Introduction to azure security
Power of the cloud - Introduction to azure securityPower of the cloud - Introduction to azure security
Power of the cloud - Introduction to azure security
Bruno Capuano
 
Creating your Center of Excellence (CoE) for data driven use cases
Creating your Center of Excellence (CoE) for data driven use casesCreating your Center of Excellence (CoE) for data driven use cases
Creating your Center of Excellence (CoE) for data driven use cases
Frank Vullers
 
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
Microsoft Cloud Adoption Framework for Azure: Governance ConversationMicrosoft Cloud Adoption Framework for Azure: Governance Conversation
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
Nicholas Vossburg
 
Mitigating Risk in a Complex Hybrid Directory Environment
Mitigating Risk in a Complex Hybrid Directory EnvironmentMitigating Risk in a Complex Hybrid Directory Environment
Mitigating Risk in a Complex Hybrid Directory Environment
Quest
 
How to Secure Access Control in Office 365 Environments
How to Secure Access Control in Office 365 EnvironmentsHow to Secure Access Control in Office 365 Environments
How to Secure Access Control in Office 365 Environments
Quest
 

Más contenido relacionado

La actualidad más candente

TechnicalTerraformLandingZones121120229238.pdf
TechnicalTerraformLandingZones121120229238.pdfTechnicalTerraformLandingZones121120229238.pdf
TechnicalTerraformLandingZones121120229238.pdf
MIlton788007
 
Metadata Strategies - Data Squared
Metadata Strategies - Data SquaredMetadata Strategies - Data Squared
Metadata Strategies - Data Squared
DATAVERSITY
 
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data ArchitectureADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
DATAVERSITY
 
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Nikki Chapple
 
Microsoft 365 Compliance and Security Overview
Microsoft 365 Compliance and Security OverviewMicrosoft 365 Compliance and Security Overview
Microsoft 365 Compliance and Security Overview
David J Rosenthal
 
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Ivanti
 
Creating your Center of Excellence (CoE) for data driven use cases
Creating your Center of Excellence (CoE) for data driven use casesCreating your Center of Excellence (CoE) for data driven use cases
Creating your Center of Excellence (CoE) for data driven use cases
Frank Vullers
 

La actualidad más candente (20)

Azure Virtual Desktop Overview.pptx
Azure Virtual Desktop Overview.pptxAzure Virtual Desktop Overview.pptx
Azure Virtual Desktop Overview.pptx
 
Azure security and Compliance
Azure security and ComplianceAzure security and Compliance
Azure security and Compliance
 
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud AppsSecure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
 
TechnicalTerraformLandingZones121120229238.pdf
TechnicalTerraformLandingZones121120229238.pdfTechnicalTerraformLandingZones121120229238.pdf
TechnicalTerraformLandingZones121120229238.pdf
 
Metadata Strategies - Data Squared
Metadata Strategies - Data SquaredMetadata Strategies - Data Squared
Metadata Strategies - Data Squared
 
cyber-security-reference-architecture
cyber-security-reference-architecturecyber-security-reference-architecture
cyber-security-reference-architecture
 
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data ArchitectureADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
ADV Slides: Strategies for Fitting a Data Lake into a Modern Data Architecture
 
Cloud Migration Strategy - IT Transformation with Cloud
Cloud Migration Strategy - IT Transformation with CloudCloud Migration Strategy - IT Transformation with Cloud
Cloud Migration Strategy - IT Transformation with Cloud
 
Data Architecture Best Practices for Advanced Analytics
Data Architecture Best Practices for Advanced AnalyticsData Architecture Best Practices for Advanced Analytics
Data Architecture Best Practices for Advanced Analytics
 
Securing your Azure Identity Infrastructure
Securing your Azure Identity InfrastructureSecuring your Azure Identity Infrastructure
Securing your Azure Identity Infrastructure
 
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
Governance, Risk and Compliance and you | CollabDays Bletchley Park 2022
 
Cloud App Security Customer Presentation.pdf
Cloud App Security Customer Presentation.pdfCloud App Security Customer Presentation.pdf
Cloud App Security Customer Presentation.pdf
 
Microsoft 365 Compliance and Security Overview
Microsoft 365 Compliance and Security OverviewMicrosoft 365 Compliance and Security Overview
Microsoft 365 Compliance and Security Overview
 
Azure Governance
Azure GovernanceAzure Governance
Azure Governance
 
An introduction to Defender for Business
An introduction to Defender for BusinessAn introduction to Defender for Business
An introduction to Defender for Business
 
March 2023 CIAOPS Need to Know Webinar
March 2023 CIAOPS Need to Know WebinarMarch 2023 CIAOPS Need to Know Webinar
March 2023 CIAOPS Need to Know Webinar
 
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
 
Power of the cloud - Introduction to azure security
Power of the cloud - Introduction to azure securityPower of the cloud - Introduction to azure security
Power of the cloud - Introduction to azure security
 
Creating your Center of Excellence (CoE) for data driven use cases
Creating your Center of Excellence (CoE) for data driven use casesCreating your Center of Excellence (CoE) for data driven use cases
Creating your Center of Excellence (CoE) for data driven use cases
 
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
Microsoft Cloud Adoption Framework for Azure: Governance ConversationMicrosoft Cloud Adoption Framework for Azure: Governance Conversation
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
 

Similar a How does Quest Software fit into a Microsoft hybrid environment?

Microsoft Azure Overview
Microsoft Azure OverviewMicrosoft Azure Overview
Microsoft Azure Overview
David J Rosenthal
 

Similar a How does Quest Software fit into a Microsoft hybrid environment? (20)

Mitigating Risk in a Complex Hybrid Directory Environment
Mitigating Risk in a Complex Hybrid Directory EnvironmentMitigating Risk in a Complex Hybrid Directory Environment
Mitigating Risk in a Complex Hybrid Directory Environment
 
How to Secure Access Control in Office 365 Environments
How to Secure Access Control in Office 365 EnvironmentsHow to Secure Access Control in Office 365 Environments
How to Secure Access Control in Office 365 Environments
 
2018 November - AZUGDK - Azure AD
2018 November - AZUGDK - Azure AD 2018 November - AZUGDK - Azure AD
2018 November - AZUGDK - Azure AD
 
Executive Summit for ISV & Application builders - January 2015
Executive Summit for ISV & Application builders - January 2015Executive Summit for ISV & Application builders - January 2015
Executive Summit for ISV & Application builders - January 2015
 
Azure Active Directory
Azure Active DirectoryAzure Active Directory
Azure Active Directory
 
Future of Your Atlassian Platform - Data Center and Cloud Migration
Future of Your Atlassian Platform - Data Center and Cloud MigrationFuture of Your Atlassian Platform - Data Center and Cloud Migration
Future of Your Atlassian Platform - Data Center and Cloud Migration
 
Microsoft Azure Overview
Microsoft Azure OverviewMicrosoft Azure Overview
Microsoft Azure Overview
 
Transformation of IT Spending
Transformation of IT SpendingTransformation of IT Spending
Transformation of IT Spending
 
04_Extending and Securing Enterprise Applications in Microsoft Azure_GAB2019
04_Extending and Securing Enterprise Applications in Microsoft Azure_GAB201904_Extending and Securing Enterprise Applications in Microsoft Azure_GAB2019
04_Extending and Securing Enterprise Applications in Microsoft Azure_GAB2019
 
Innovation morning agenda+azure arc
Innovation morning agenda+azure arcInnovation morning agenda+azure arc
Innovation morning agenda+azure arc
 
Microsoft Azure Cloud Services
Microsoft Azure Cloud ServicesMicrosoft Azure Cloud Services
Microsoft Azure Cloud Services
 
Moving Core Business to the Cloud -이덕성 대표 :: AWS 파트너 테크시프트 세미나 Moving Core B...
Moving Core Business to the Cloud -이덕성 대표 :: AWS 파트너 테크시프트 세미나 Moving Core B...Moving Core Business to the Cloud -이덕성 대표 :: AWS 파트너 테크시프트 세미나 Moving Core B...
Moving Core Business to the Cloud -이덕성 대표 :: AWS 파트너 테크시프트 세미나 Moving Core B...
 
2017-10-04 aOS back from MSIgnite aux MS Experiences 17
2017-10-04 aOS back from MSIgnite aux MS Experiences 172017-10-04 aOS back from MSIgnite aux MS Experiences 17
2017-10-04 aOS back from MSIgnite aux MS Experiences 17
 
2017-10-03 Session aOS - Back from Ignite - MS Experiences
2017-10-03 Session aOS - Back from Ignite - MS Experiences2017-10-03 Session aOS - Back from Ignite - MS Experiences
2017-10-03 Session aOS - Back from Ignite - MS Experiences
 
SmartProfiler for Active Directory Office 365 and Azure Virtual Desktop Asses...
SmartProfiler for Active Directory Office 365 and Azure Virtual Desktop Asses...SmartProfiler for Active Directory Office 365 and Azure Virtual Desktop Asses...
SmartProfiler for Active Directory Office 365 and Azure Virtual Desktop Asses...
 
Hybrid Identity Made Simple - Microsoft World Partner Conference 2016 Follow Up
Hybrid Identity Made Simple - Microsoft World Partner Conference 2016 Follow UpHybrid Identity Made Simple - Microsoft World Partner Conference 2016 Follow Up
Hybrid Identity Made Simple - Microsoft World Partner Conference 2016 Follow Up
 
SecureKloud_Corporate Deck.pdf
SecureKloud_Corporate Deck.pdfSecureKloud_Corporate Deck.pdf
SecureKloud_Corporate Deck.pdf
 
Automated Security & Continuous Compliance on Microsoft Azure
Automated Security & Continuous Compliance on Microsoft AzureAutomated Security & Continuous Compliance on Microsoft Azure
Automated Security & Continuous Compliance on Microsoft Azure
 
CSS17: Houston - Azure Shared Security Model Overview
CSS17: Houston - Azure Shared Security Model OverviewCSS17: Houston - Azure Shared Security Model Overview
CSS17: Houston - Azure Shared Security Model Overview
 
Cloud Summit: Protect Hybrid Active Directory from cyber threads, track attac...
Cloud Summit: Protect Hybrid Active Directory from cyber threads, track attac...Cloud Summit: Protect Hybrid Active Directory from cyber threads, track attac...
Cloud Summit: Protect Hybrid Active Directory from cyber threads, track attac...
 

Más de Xylos

Innovation that sticks
Innovation that sticksInnovation that sticks
Innovation that sticks
Xylos
 

Más de Xylos (20)

Connecting & Sensing | Software AG
Connecting & Sensing | Software AGConnecting & Sensing | Software AG
Connecting & Sensing | Software AG
 
Webinar: Connecting & Sensing
Webinar: Connecting & SensingWebinar: Connecting & Sensing
Webinar: Connecting & Sensing
 
Webinar Mitel MiCloud Flex: an introduction
Webinar Mitel MiCloud Flex: an introductionWebinar Mitel MiCloud Flex: an introduction
Webinar Mitel MiCloud Flex: an introduction
 
Innovation that sticks
Innovation that sticksInnovation that sticks
Innovation that sticks
 
Everything will be technology (or die)
Everything will be technology (or die)Everything will be technology (or die)
Everything will be technology (or die)
 
The CEO’s office: Satya Nadella’s Teams tips
The CEO’s office: Satya Nadella’s Teams tipsThe CEO’s office: Satya Nadella’s Teams tips
The CEO’s office: Satya Nadella’s Teams tips
 
Get an overview of your network and relax with aruba clear pass and device in...
Get an overview of your network and relax with aruba clear pass and device in...Get an overview of your network and relax with aruba clear pass and device in...
Get an overview of your network and relax with aruba clear pass and device in...
 
At the table with security solution provider VMware
At the table with security solution provider VMwareAt the table with security solution provider VMware
At the table with security solution provider VMware
 
v10 of Backup & Replication: a sneak peek
v10 of Backup & Replication: a sneak peekv10 of Backup & Replication: a sneak peek
v10 of Backup & Replication: a sneak peek
 
Operational information processing: lightning-fast, delightfully simple
Operational information processing: lightning-fast, delightfully simpleOperational information processing: lightning-fast, delightfully simple
Operational information processing: lightning-fast, delightfully simple
 
A closer look at your data management
A closer look at your data managementA closer look at your data management
A closer look at your data management
 
Keep your user experience under control
Keep your user experience under controlKeep your user experience under control
Keep your user experience under control
 
OMP saves 10 times more storage capacity with Nimble and Cohesity
OMP saves 10 times more storage capacity with Nimble and CohesityOMP saves 10 times more storage capacity with Nimble and Cohesity
OMP saves 10 times more storage capacity with Nimble and Cohesity
 
Innovation powered by Do-Days
Innovation powered by Do-DaysInnovation powered by Do-Days
Innovation powered by Do-Days
 
What if absolutely everything could be connected?
What if absolutely everything could be connected?What if absolutely everything could be connected?
What if absolutely everything could be connected?
 
The ultimate Microsoft Teams experience: AI and mobile first
The ultimate Microsoft Teams experience: AI and mobile firstThe ultimate Microsoft Teams experience: AI and mobile first
The ultimate Microsoft Teams experience: AI and mobile first
 
There’s no I in team: your HR team’s starter plan
There’s no I in team: your HR team’s starter planThere’s no I in team: your HR team’s starter plan
There’s no I in team: your HR team’s starter plan
 
Mobile-oriented networking is the new black
Mobile-oriented networking is the new blackMobile-oriented networking is the new black
Mobile-oriented networking is the new black
 
Don’t let hackers near your privileged accounts
Don’t let hackers near your privileged accountsDon’t let hackers near your privileged accounts
Don’t let hackers near your privileged accounts
 
E-learning and data: two peas in a pod
E-learning and data: two peas in a podE-learning and data: two peas in a pod
E-learning and data: two peas in a pod
 

Último

Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...
Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...
Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...
ZurliaSoop
 
Uncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac FolorunsoUncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac Folorunso
Kayode Fayemi
 
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
amilabibi1
 
Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity
Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven CuriosityUnlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity
Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity
Hung Le
 
Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...
Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...
Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...
David Celestin
 

Último (17)

Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...
Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...
Jual obat aborsi Jakarta 085657271886 Cytote pil telat bulan penggugur kandun...
 
Uncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac FolorunsoUncommon Grace The Autobiography of Isaac Folorunso
Uncommon Grace The Autobiography of Isaac Folorunso
 
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
Bring back lost lover in USA, Canada ,Uk ,Australia ,London Lost Love Spell C...
 
Dreaming Marissa Sánchez Music Video Treatment
Dreaming Marissa Sánchez Music Video TreatmentDreaming Marissa Sánchez Music Video Treatment
Dreaming Marissa Sánchez Music Video Treatment
 
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdfAWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
AWS Data Engineer Associate (DEA-C01) Exam Dumps 2024.pdf
 
Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity
Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven CuriosityUnlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity
Unlocking Exploration: Self-Motivated Agents Thrive on Memory-Driven Curiosity
 
Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...
Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...
Proofreading- Basics to Artificial Intelligence Integration - Presentation:Sl...
 
Digital collaboration with Microsoft 365 as extension of Drupal
Digital collaboration with Microsoft 365 as extension of DrupalDigital collaboration with Microsoft 365 as extension of Drupal
Digital collaboration with Microsoft 365 as extension of Drupal
 
Zone Chairperson Role and Responsibilities New updated.pptx
Zone Chairperson Role and Responsibilities New updated.pptxZone Chairperson Role and Responsibilities New updated.pptx
Zone Chairperson Role and Responsibilities New updated.pptx
 
My Presentation "In Your Hands" by Halle Bailey
My Presentation "In Your Hands" by Halle BaileyMy Presentation "In Your Hands" by Halle Bailey
My Presentation "In Your Hands" by Halle Bailey
 
lONG QUESTION ANSWER PAKISTAN STUDIES10.
lONG QUESTION ANSWER PAKISTAN STUDIES10.lONG QUESTION ANSWER PAKISTAN STUDIES10.
lONG QUESTION ANSWER PAKISTAN STUDIES10.
 
SOLID WASTE MANAGEMENT SYSTEM OF FENI PAURASHAVA, BANGLADESH.pdf
SOLID WASTE MANAGEMENT SYSTEM OF FENI PAURASHAVA, BANGLADESH.pdfSOLID WASTE MANAGEMENT SYSTEM OF FENI PAURASHAVA, BANGLADESH.pdf
SOLID WASTE MANAGEMENT SYSTEM OF FENI PAURASHAVA, BANGLADESH.pdf
 
Introduction to Artificial intelligence.
Introduction to Artificial intelligence.Introduction to Artificial intelligence.
Introduction to Artificial intelligence.
 
ICT role in 21st century education and it's challenges.pdf
ICT role in 21st century education and it's challenges.pdfICT role in 21st century education and it's challenges.pdf
ICT role in 21st century education and it's challenges.pdf
 
in kuwait௹+918133066128....) @abortion pills for sale in Kuwait City
in kuwait௹+918133066128....) @abortion pills for sale in Kuwait Cityin kuwait௹+918133066128....) @abortion pills for sale in Kuwait City
in kuwait௹+918133066128....) @abortion pills for sale in Kuwait City
 
Report Writing Webinar Training
Report Writing Webinar TrainingReport Writing Webinar Training
Report Writing Webinar Training
 
Dreaming Music Video Treatment _ Project & Portfolio III
Dreaming Music Video Treatment _ Project & Portfolio IIIDreaming Music Video Treatment _ Project & Portfolio III
Dreaming Music Video Treatment _ Project & Portfolio III
 

How does Quest Software fit into a Microsoft hybrid environment?

  • 1. Marc Koeneman Software Sales Engineer Hybrid AD-Management and Security.
  • 2. • Quest 2.0 • Microsoft Hybrid Setup • Hybrid Challenges • Migrations • Hybrid solutions from On-Prem • Hybrid solutions from Cloud Agenda
  • 3. Our Portfolio We deliver solutions for: One Identity Information Management Endpoint Systems Management Platform management Data protection
  • 4. Migration Security & Compliance Management & Governance Platform Management • Prepare, assess and clean up • Simplify migration • Deliver seamless coexistence • Streamline management • Continually assess • Detect and alert • Remediate and mitigate • Investigate and recover • Backup and recover • Ensure performance and availability • Simplify reporting • Automate administration
  • 6. Hybrid Environment Local AD Azure ADAzure AD Connect Office 365  OneDrive • Migrate • Manage • Secure • Report • Recover From On Premise • Migrate • Manage • Secure • Report • Recover From The Cloud Teams SharePoint • Migrate • Manage • Secure • Report • Recover From The Cloud • Migrate • Manage • Secure • Report • Recover From On Premise
  • 8. Common approaches Assume Microsoft has it all covered Put in more hours Use native tools or PowerShell Charge ahead
  • 9. But the risk with these approaches is … Assume Microsoft has it all covered Put in more hours Use native tools or PowerShell Charge ahead Unexpected delays & additional work Your team already lacks time and resources Yes they’re free … but have critical gaps Unknown hurdles & compromised security
  • 10. Hybrid Environment Local AD Azure ADAzure AD Connect Office 365  OneDrive Teams SharePoint
  • 11. Challenges • Migration • On-Prem – O365 • O365 – O365 • Management of Directories • Group management • (De-)Provisioning • Delegation • Audit Trails • Decentral • Limited Time available • Search? • Reporting • On-Prem permissions / delegation • Cloud permissions / delegation • Recovery Directories • Recycle Bin • Cloud Only Objects • Synced Objects • O365 License management
  • 12. Where can we help? - Migration - From On-Premise with Cloud - From Cloud with On Prem
  • 14. From On-Premise with Cloud Hybrid Report Hybrid Audit + Recover Search Hybrid Manage • Investigate AD security Incidents • Continuously test your AD business continuity plan • Recover from a security incident • Improve your RTO • Secure access to AD/Azure AD • Enforce permission • Implement least-privilege access model • Reduce surface attack area in AD/Azure AD • Prevent unauthorized access to sensitive resources • Remediate unauthorized activities • Who has access to what sensitive data in AD/Azure AD/O365 • Who has elevated privileged permissions in AD/Azure AD/O365, servers • What systems are vulnerable to security threats • Detect suspicious privileged AD activities • Alert on potential AD/Azure AD/O365 insider threats • Notify in real time of unauthorized intrusions against AD/Azure AD/O365 • Detect and alert on brute-force attacks IT Security Search & Recovery Managers Enterprise Reporter Active Roles Change Auditor From On Premise
  • 15. Components in IT-Security Suite + Demo IT-Security Search Change Auditor (Security Auditing) Knowledge Portal SQL Reporting Service + IIS Enterprise Reporter (‘Snapshot’) InTrust (Event Gathering) • BS ISO/IEC 27002: 2005 * • COBIT * • GDPR • FISMA • COSO • HIPAA • PCI • SOX • ………. Recovery Manager (Recovery of AD objects/attributes) Active Roles Server (Directory management) From On Premise
  • 19. From Cloud with On-Premise Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
  • 20. Why Quest On Demand? Fast, easy setup – No installation, no upgrades, no complex configuration — no sweat! Secure and reliable SaaS –ISO/IEC27001:2013, ISO/IEC 27017:2015 and ISO/IEC 27018:2019 certified. Rapid innovation – we keep pace with Microsoft updates so you don’t have to! From The Cloud
  • 22. 2019 Market Guide for Cloud Office Migration Tools 40 out of 40 Use of cloud-to-cloud migration tools is growing prominent as organizations undergo acquisitions, mergers and divesture as well as shifts in their digital business strategies. Gartner, Inc. Figure 3. Look for Features and Functionality That Go Beyond Replicating the On-Premises Environment Gartner, Market Guide for Cloud Office Migration Tools, Gavin Tay, Adam Preset, Joe Mariano, 28 February 2019. This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Quest. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved. Quest is the only vendor listed with all 40 features and functionality supported.
  • 23. Quest® On Demand Migration Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
  • 24. Migration Scenarios Supported Migrate multiple Office 365 tenants to a single target tenant for consolidation or restructuring. Multiple Tenants Use Migration Manager for AD to migrate On-premise AD and then match accounts with On Demand Migration for tenant migration. AD Hybrid Tenants* Migrate Azure AD, Exchange Online, and OneDrive from one Office 365 tenant to another. Tenant to Tenant MMAD From The Cloud
  • 25. What sets ‘On Demand’ Migration apart? Hybrid Support Hybrid support Mail Mail data migration OneDrive OneDrive data migration SharePoint SharePoint data migration Teams Teams data migration Groups Group migration Free Profile Updates Update profiles World Class Support! Perfect Support From The Cloud
  • 27. Quest® On Demand Recovery Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
  • 28. On Demand Recovery product overview From The Cloud
  • 29. Comparing Quest with Azure AD recycle bin Azure AD and Office 365 recovery Recycle Bin Restore multiple attributes at one time Restore Azure AD Groups and group membership Granular restore of user attributes – i.e. O365 license type Restore hard deleted objects which bypassed the recycle bin Difference reporting with restore capability Search and restore capability From The Cloud
  • 30. On Demand Audit From The Cloud
  • 31. Quest® On Demand Audit Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
  • 32. Comparing Quest with native auditing Critical auditing requirement Native Alert on suspicious events regardless of whether they occur on prem or cloud X  Cut through raw data and see only what is important for the change/activity X  Flexible search on any event or any field, including by actor, changed attributes, activity details or cloud-only objects X  Normalize view of all user activity, on prem and in the cloud X  Keep audit data for up to 10 years to satisfy internal policies and external compliance regulations X  From The Cloud
  • 34. Quest® On Demand Group Management Your go-to SaaS dashboard for tackling Microsoft challenges in a hybrid world From The Cloud
  • 35. + More secure + Unburdens IT Increases user productivity + From The Cloud On Demand Group Management
  • 36. Key benefits Increased visibility by managing groups via a single console Keep order in your environment with rules for group creation, naming, attestation, expiration, etc. Confidently offload administrator workloads to end users using a self-service UI Empower users to create and manage their own groups within a pre-selected framework in the self-service UI Continually validate group membership through automated attestation Enable users to quickly recognize and request access to resources connected to Azure AD From The Cloud

Notas del editor

  1. So how do we give you the time to shift your team’s focus from administration to innovation? We provide solutions in five primary areas – areas that impact your business every day and are becoming increasingly complex because of Cloud, Mobility, Security, and Big Data. They are: ESM MSFT Platform Mgmt Database Mgmt Data Protection And Performance Mgmt
  2. If you’re like most organizations, once your team has made the decision to take the leap to Office 365, you are anxious to just charge ahead. Whether it’s tackling internally or engaging your consultant or systems integrators and charge forward. We know that many organizations simply put in more time or throw more resources at a project. Meanwhile, many companies continue to handle compliance and migration issues separately from security. Some are using native tools or point solutions to move to the cloud. Others are writing custom scripts with PowerShell. Throughout this process many simply rely on Microsoft. And yes, Microsoft takes the security of the Office 365 platform very seriously and has made significant investments in service level security that protect Microsoft’s cloud-based applications from intrusions.
  3. But there are many risks with these approaches including: Many of the issues companies are facing in moving to the cloud are the direct result of charging forward without understanding the impact of old decisions on security, risk, and the health of the environment. This approach can bring forward legacy decisions and may be compromising security by handing out too much privilege and access in the cloud environment. Let’s talk about putting in more time. While that gets the job done in the short term, it’s certainly not sustainable for your team who is most likely already stretched. And, there’s not always additional budget to add more resources or augment your staff with consultants. Native tools – whether for migration, reporting, recovery, auditing – yes they’re free, but they have critical gaps in functionality. And finally, relying solely on Microsoft is a risky proposition. Microsoft takes ownership of platform security and Office 365 customers themselves (that’s you) are responsible for the safe and compliant use of the application. Users can still perform high-risk actions and account credentials can be compromised. Assuming Microsoft has it all covered, may result in unexpected delays and additional work.
  4. Here is our value proposition for ZeroIMPACT Migration. Migrations are labor intensive and fraught with risk. If not done correctly, they can be a real drain on time, resources and budget. But Quest ZeroIMPACT migration solutions help minimize the associated risk, cost, time and complexity. To say it another way, we ensure ZeroIMPACT! That means zero impact on: Users – enabling them to continue working Help desk – avoiding a flood of calls and tickets IT – helping them get this project done quickly and easily Above all, zeroimpact on the bottom line – ensuring that the overall business is without disruption We have a vast portfolio of migration products that address many of the scenarios our customers encounter, including Office 365, AD Migration, Exchange, SharePoint, OneDrive, Lotus Notes, google and more But in our many years of experience helping customers, we know that successful migrations are more than just the tools moving stuff from A to B. We know that migration success must include proper planning, a coexistence strategy and a vision toward the future environment. So we've built a value proposition—our ZeroIMPACT methodology – around 4 key pillars that help customers be more successful and differentiate us in the market. Quest Software can help: Prepare for the transition – assess what they have, clean up what they don’t need and plan –this is where we first introduce attaching management tools like UCCS, Enterprise Reporter and Change Auditor. Change Auditor for AD – Before the migration, get visibility into who has access to what to identify possible security gaps and unauthorized access. During the migration, you quickly determine whether a change was made by the migration tool or by a user, so you can spot any problems. After the migration, monitor AD for improved security and compliance. Change Auditor for AD Queries - Identifies and inventories application servers that are dependent on AD domains being migrated so that you can fix or redirect them to the new domain controllers. Enterprise Reporter - Understand what should and should not be migrated with a comprehensive assessment of your current environment, including active vs. inactive users and groups, what users and files you have, and when a user last logged in or resources were accessed. Recovery Manager– Ensure you have a back-up plan in the event that something goes wrong during the migration (server failure, network glitch, etc.). Quickly recover individual items that have been accidentally or incorrectly changed or deleted during the migration. Or quickly recover an entire forest in the event of a major disaster or corruption during migration. Recover missing or corrupted email in minutes to keep the migration running on schedule. Migrate with ZeroIMPACT on the entire organization. Quest can help customers Coexist to keep users on multiple messaging platforms working together seamlessly. Many of you have probably used our Migration Suite and Coexistence Manager products. Finally, Quest can help customers centrally MANAGE the environment to get the most out of their new platform from day 1. Many of the same tools you used to help prepare can now be used to manage your environment (along with many additional mgmt. solutions) to further reduce complexity and risk. Again, we’re including our management tools as part of our migration story.
  5. We’ve been in the migration business for 15 years but we still ran a 5 month technical preview to find out the main concerns companies are facing today with tenant migration. We’ve actually addressed the key asks and I’ll show you what they are.
  6. Note License Management due to release November 2019
  7. Fast, easy setup – Onboard with ease and start auditing in minutes. No installation, no upgrades, no complex configuration — no sweat! Secure and reliable SaaS — Quest On Demand delivers the security standards, service level and scalability that you need. ISO certifications include ISO/IEC27001:2013, ISO/IEC 27017:2015 and ISO/IEC 27018:2019. Rapid innovation  — We keep pace with Microsoft updates so you don’t have to. Quest On Demand automatic updates deliver new features, customer-requested enhancements and security patches quickly and without any effort on your part.
  8. We’ve been in the migration business for 15 years but we still ran a 5 month technical preview to find out the main concerns companies are facing today with tenant migration. We’ve actually addressed the key asks and I’ll show you what they are.
  9. <IMPORTANT NOTE to Quest sales: You may NOT edit this slide in any way, shape or form per our contract with Gartner. Any edits made and shared publicly could violate our terms and forfeit our distribution rights to this Market Guide.> Gartner, Market Guide for Cloud Office Migration Tools, Gavin Tay, Adam Preset, Joe Mariano, 28 February 2019. This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from One Identity. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.  
  10. Currently there are no native tools to help customers with tenant to tenant migration. Once they get to Office 365, they will grow and we’ve heard from customers about scenarios where they need help either merging or consolidating their Office 365 tenants. We considered all these factors and build On Demand Migration or ODM to accommodate these common scenarios. Tenant to Tenant - Migrate Azure AD, Exchange Online, and OneDrive from one Office 365 tenant to another. *Hybrid AD Tenants – We can use Migration Manager for AD to migrate On-premise AD and then match accounts with On Demand Migration for tenant migration and we can also offer PSO to achieve this. [NOTE: Hybrid capability sets Quest apart from many competitors] Multiple Tenants - Migrate multiple Office 365 tenants to a single target tenant for consolidation or restructuring. Do any of these fit your organization now? How about in the future?
  11. There are many reasons to choose Quest for your tenant to tenant migration, but here are some things that set us apart from the rest. We have: Hybrid AD and Hybrid Exchange support OneDrive Provisioning Group Migration Profile updating at no extra cost World class support! Core SaaS platform with common UI experience Finally, Quest on Demand is built in the cloud for the cloud – We are cloud born! This means we can pivot easily to adapt to user requests and feedback. We don’t have to do any heavy lifting.
  12. Every migration should start with a good recovery plan. What’s more, every move to a cloud environment should begin with a solid recovery plan! Let’s face it, if you lose access to your user id, you lose access to your cloud apps – and that’s how it should be, unless it’s unplanned.
  13. Azure application instances-service principal (add that to chart) B2B/B2C Hard-deleted security groups
  14. Limitations of Microsoft Azure Recycle bin – PoSH or O365 UI Not all objects stored in Recycle Bin Azure AD Groups\Group Membership Azure AD user attributes Nested Azure AD Groups Recycle Bin Expiration and Hard Deletes Any Azure AD objects stored in the Recycle Bin that expired (30 days) or have been hard deleted (by-passed the Recycle Bin) can not be restored Limited Recovery of Recycle Bin No ability to restore multiple users at a time from UI No ability to restore multiple attributes of users Reports Show list of cloud only objects Show list of objects synchronized on-prem (ADC) Differences report that shows all Azure users changes compared to backups and ability to roll back
  15. With Office 365 adoption on the rise, group sprawl remains a top concern for our customers. With On Demand Group Management continually cleaning up groups can become a thing of the past, and admins can finally regain peace of mind and control of Azure AD and Office 365 groups.
  16. [rep instructions: This is an optional slide that drills down deeper into the native auditing limitations] ++++++++++++++++++++ Native Office 365 and Azure AD auditing tools are riddled with gaps and complexity. There are multiple screens and consoles all with different views and no consolidated view of on-prem and cloud activity. For example, the Office 365 Audit Log service does NOT capture events from on-premises Microsoft servers for organizations with a hybrid setup, such as Active Directory domain controllers, Exchange Server and SharePoint Server in addition to Office 365. Difficult to configure auditing Have to configure audit policies for on premises separate from cloud workloads No way to monitor audit policies in case they change or are disabled by other administrators Limited alerting, searching and reporting Alerting is inconsistent across on premises and cloud workloads Not possible to search audit activity across on premises and cloud Cannot search based on actor (i.e. who initiated the activity) or many other important fields (see details below the +++++++++++) Difficult to interpret events Audit data is very raw (contains SIDs, GUIDs and other IDs), lacks friendly display names and the format is constantly changing There is no normalized format of what fields are displayed, so event formats will vary depending on the event or cloud workload you are looking at. Limited history of audit data Audit data only retained for a limited time before it is permanently lost For cloud workloads the retention period varies based on workload and subscription type. Retention but can be as short as 7 days, and Microsoft can change retention periods at any time For on premises workloads the retention period varies based on the volume of activity The limited data retention has significant implications for organizations that must comply with legal or regulatory retention requirements that dictate retention of this data for much longer periods. And it hinders your ability to investigate security incidents because you lack sufficient historical evidence to search See Microsoft retention policies: Office 365: https://docs.microsoft.com/en-us/office365/securitycompliance/search-the-audit-log-in-security-and-compliance Azure AD: https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/reference-reports-data-retention +++++++++++++++++++ Limited search capabilities Cannot search by specific User and Group attributes that were changed Cannot search by before and after change values Cannot search by Activity Details field Cannot search by Activity Synchronization type (e.g. identify only changes that were not produced by Azure AD Connect) Cannot search by User Synchronization Status (e.g. identify only changes that occurred to Cloud Only user accounts) Can only search by the target listed in the event (Change Auditor allows you to search for targets by their display name, UPN or SAMAccountName) Cannot combine multiple criteria into a single search (e.g. Who + Date + attribute + User Synchronization Status)
  17. When we launched Change Auditor version 7.0.3 in August 2019, the big news of that release was the integration with Quest On Demand Audit to create a new, complete hybrid auditing solution unlike any other in the market – the On Demand Audit Hybrid Suite for Office 365. On Demand Audit Hybrid Suite for Office 365 provides a single view of user activity across hybrid Microsoft environments, giving you visibility to all changes taking place, whether on premises, Azure AD or Office 365 workloads such as Exchange Online, SharePoint Online and OneDrive for Business. The new suite is delivered as a subscription service that gives you licenses to BOTH Change Auditor and On Demand Audit, and you can easily pair them together in just a few clicks. Change Auditor is the industry’s leading solution for in-depth, high fidelity auditing of on-prem Microsoft environments. It provides real-time auditing, alerting and forensics on all critical configuration, user and administrator changes across on-prem AD changes and logons, File servers, Exchange, SharePoint and more. Most cloud-based auditing products fail to provide you a view of your on premises activity, and those that do (e.g. SIEM tools) rely on native event logs for on premises activity and lack the fidelity of auditing that Change Auditor provides. On Demand Audit then consolidates and correlates Change Auditor’s on-prem audit data together with cloud activity from Azure AD and O365 workloads such as OneDrive for Business, Exchange Online and SharePoint Online. With Change Auditor and On Demand Audit combined, you get a single view for your on-prem and cloud audit data with responsive search, interactive data visualization and long-term storage. 
  18. With Office 365 adoption on the rise, group sprawl remains a top concern for our customers. With On Demand Group Management continually cleaning up groups can become a thing of the past, and admins can finally regain peace of mind and control of Azure AD and Office 365 groups.
  19. Get full control of groups across your organization — all in a single application — so you never have to worry about what’s out there. Plus, mitigate security and compliance risks with robust creation policies so you can manage resources and group naming rules, attestation, expiration, approval workflows and more.
  20. Conceptual diagram of the functionality that sits in Admin UI and Self-service UI of On Demand Group management. 
  21. Real-time audits Detailed audit logs are created in real-time, capturing every change as it occurs in the environment Single pane of glass Change Auditor’s console allows you to view audit activity from every platform in a single user interface, allowing you to track a user’s activity across the entire environment In additional Active Directory Change Auditor supports Azure AD, O365 Exchange (with on-prem Exchange module), O365 SharePoint and One Drive for Business (both with on-prem SharePoint module), Azure AD sign-ins (with on-prem Logon Activity module), file activity (Windows, EMC, NetApp, FluidFS), AD Queries (LDAP), Skype for Business, and SQL Server Proactive alerts Create email alerts when critical events are detected (e.g. a user is added to a built-in administrators group), or use SNMP to forward to an external application Object protection Create final line of defense protection from changes to critical AD, Exchange and file objects so that even privileged users cannot modify them (e.g. prevent users from being added to the Domain Admins group) Compliance reports Run out of the box reports to evaluate compliance against regulations such as SOX, HIPAA, and PCI-DSS Security forensics Use Change Auditor’s powerful UI to comb months or years of user activity, or IT Security Search for quick forensic exercises to determine root cause of an environmental issue or security breach
  22. While this is a fairly simple example of an AD breach, the point is that there could be dozens of individual indicators of the breach. Any one of these indicators on its own (e.g. the user logs on at an unusual time for that user) is not necessarily suspicious in and of itself. However when looked at in context with other activities taking place in the same time frame (e.g. the user log on at an unusual time was preceded by 8 failed logon attempts, did not take place from the user’s standard workstation, multiple logons to other accounts occurred from the same IP address, and were followed by a number of suspicious AD changes) you can establish a pattern of suspicious user behavior that is deserving of further investigation. How do you filter through the noise of hundreds of millions of audit events to find suspicious activity? How do you establish behavioral baselines so that anomalies become apparent? How can you get better security insights into the activity of my privileged users? How can you leverage my existing audit investment to detect suspicious insider activity and external attacks?
  23. Actual production results from a healthcare provider with over 80,000 users Change Auditor Threat Detection analyzes 200 different event types which comprise millions of actual events a day in most environments 35 threat indicators apply insight into the Change Auditor audit data to identify behavioral anomalies Threat indicators are correlated into SMART alerts, for which there are 19 across Active Directory, authentication and file activity
  24. (1-2 minutes total) TRANSCRIPT Just to wrap up from a summary perspective ... Talked about a couple of solutions. I spoke about active roles. Active roles is really designed for account administration. Automating the user and group management, creation in active directory. Again, taking that and then how you're going to extend that into your Cloud infrastructure. From a directory management perspectives, that can provide exchange recipient management, distribution list management, and really that least privileged access control from that directory perspective. Really limiting what that particular view is. Then from security perspective, obviously, this is really a firewall around your active directories. Least privileged based access control, using that proxy accounts. So when you have those internal/external threats, they really aren't even going to have any native permissions within their environment.
  25. (1 min) TRANSCRIPT The aspect of managing the GPO that we've talked about today comes from our GPO admin solution. Essentially, this is a platform tool that we've created that allows you to manage your policies with the confidence that I was trying to relate to you earlier. Be able to put you in the position to roll back changes, have check in and check out capability so that people aren't trying to edit the same policy at the same time. But then allow the flexibility to put the solution in to your work workflow and so ... Maybe it's executing a script while you check in a GPO so that it can open up a help desk ... All of these things come together to create what we call GPO admin.
  26. Quickly search through large amounts of audit data Simplify searching with event normalization Cross reference state and change information
  27. Granularly compare and restore AD data online Full-forest recovery from a central console Automate lab creation from production AD
  28. Let’s close with why Quest. Why partner with us?