http://blogs.msdn.com/b/plankytronixx/archive/2013/01/12/windows-azure-active-directory-cartoon.aspxI posted this video on to Channel 9 before Christmas but I can see something has gone wrong with the indexing and it’s pretty undiscoverable on the site. Thought I’d make it known through the blog.en-USTelligent Evolution Platform Developer Build (Build: 5.6.50428.7875)http://blogs.msdn.com/b/plankytronixx/archive/2013/01/12/windows-azure-active-directory-cartoon.aspx#10400759Fri, 08 Mar 2013 19:20:36 GMT91d46819-8472-40ad-a661-2c78acb4018c:10400759...Planky<p>Hi mrpaulb,</p> <p>Yes I agree. I think Tony probably works in a large company with a big on-premises infrastructure. For him federated identities make perfect sense.</p> <p>The identities in WAAD for a small business are still in essence federated, it&#39;s just that the claims store is running up in the cloud as Is the IP. For a small business, I think the more infrastructure you can put in the cloud, the better. </p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10400759" width="1" height="1">http://blogs.msdn.com/b/plankytronixx/archive/2013/01/12/windows-azure-active-directory-cartoon.aspx#10400716Fri, 08 Mar 2013 17:01:47 GMT91d46819-8472-40ad-a661-2c78acb4018c:10400716mrpaulb<p>If your a small business why put AD onsite and then have to deal with federation, security general management etc. why have any infrastructure on site for that matter.</p> <p>I strongly believe that an integrate cloud experience covering O365, InTune, Azure with WAAD will be a boon for many a small business.</p> <p>Keep up the good work</p> <p>Kind regards</p> <p>Paul</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10400716" width="1" height="1">http://blogs.msdn.com/b/plankytronixx/archive/2013/01/12/windows-azure-active-directory-cartoon.aspx#10392176Fri, 08 Feb 2013 14:27:43 GMT91d46819-8472-40ad-a661-2c78acb4018c:10392176atif<p>we really enjoy from it, i thin we miss it before &nbsp; , &nbsp; <a rel="nofollow" target="_new" href="http://www.web-hosting-pakistan.net">www.web-hosting-pakistan.net</a></p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10392176" width="1" height="1">http://blogs.msdn.com/b/plankytronixx/archive/2013/01/12/windows-azure-active-directory-cartoon.aspx#10392111Fri, 08 Feb 2013 09:03:52 GMT91d46819-8472-40ad-a661-2c78acb4018c:10392111...Planky<p>Hi Tony,</p> <p>Wow - you really are passionate about federation - that&#39;s good to see.</p> <p>I don&#39;t think you&#39;d put AD (traditional AD) in the cloud if the only service you were consuming was ofice365. It has its own directory (which is now called Azure AD). So there&#39;s no need for it - it&#39;s all part of Office365 in the first place.</p> <p>But let&#39;s say you have some cloud apps, a few other internet connected apps PLUS office 365, then obviously federation is the answer - exactly the point you make. But if you are a small organisation with a small number of users then the IT burden of building an internal AD to federate with these external services would be pretty huge. The service management - like for example if the local ADFS server went down, then you&#39;d not be able to access any federated services - that&#39;s a pretty big risk for a small business.</p> <p>The non-enterprise size businesses have been asking Microsoft for a few years now if we could provide a way for them to do this but in the cloud so that we run the infrastructure and they consume its services.</p> <p>So think of it more for the organisation that doesn&#39;t own and operate its own AD and federation infrastructure. If you think about it - in the on-premises world, to federate your AD with Office 365, you need an ADFS server. But you also need a proxy so that your road-warriors can also authenticate. But of course that&#39;s risky, so you need a minimum of 2 of each server in case of failures. The burden of these extra 4 servers on a small organisation would probably be substantial. To a large enterprise, it&#39;s just a case of expanding the existing infrastructure. To a smaller company - especially say one in the 10-user area - it&#39;s just not tenable.</p> <p>So - yes, I wholeheartedy agree with your point that the world is moving toward federation. It&#39;d be a shame to lock the smaller business out of that opportunity - so the cloud is used to deliver the directory/federation service and take away almost all of the aspects of service management. I think that&#39;s perfect for the business that doesn&#39;t have an IT person on its staff...</p> <p>If the only businesses in the world were big companies with IT departments - I&#39;d be 110% on your side so I can exactly see where you are coming from.</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10392111" width="1" height="1">http://blogs.msdn.com/b/plankytronixx/archive/2013/01/12/windows-azure-active-directory-cartoon.aspx#10391987Thu, 07 Feb 2013 20:52:02 GMT91d46819-8472-40ad-a661-2c78acb4018c:10391987Tony<p>The push for Azure AD is really nothing more than transparent marketing from MS. Please tell me why in God&#39;s name I would put AD &quot;in the cloud&quot; for Office 365 as opposed to using federated authentication (SAML, WS-Fed)? </p> <p>I think it&#39;s hilarious that while the rest of the world is moving toward a federated identity model, Microsoft is pushing has this ridiculous agenda of pulling AD to the cloud. #pointless</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10391987" width="1" height="1">http://blogs.msdn.com/b/plankytronixx/archive/2013/01/12/windows-azure-active-directory-cartoon.aspx#10384890Mon, 14 Jan 2013 20:41:07 GMT91d46819-8472-40ad-a661-2c78acb4018c:10384890Mike Kline<p>I like the style of your video, very easy for people to follow. &nbsp;I also just followed you on twitter. &nbsp; </p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10384890" width="1" height="1">