Monday, February 09, 2015

Azure AD Conditional Access and Azure AD Connect Health - Now in Preview

This is a really neat announcement for a couple of reasons.  First, the Azure AD Conditional Access feature is a nice looking user experience for building simple policies.  At a glace you could see how it might be an admin experience for a policy engine like MIM’s request processor.  What is shown in the blog article does not have the extensibility of MIM, but it also requires a LOT less skill to configure, and none of the deployment finesse required (it’s already deployed).  Pretty cool.

Second, the Azure AD Connect Health should significantly reduce the burden of operations because it has such little on-premises footprint.  The local agent just uploads data to Azure which runs the already-deployed engine.  Optimistically I have to believe this is part of Operational Insights which I’ve been trying out (think SCOM in the cloud).  Right now it works for ADFS, and there are plans for it to monitor sync servers soon.

Oh, and here’s the blog post:

Azure AD Conditional Access and Azure AD Connect Health - Now in Preview

No comments: