IT Professionals04 | Active Directory on IaaS
David Tesar | Microsoft Technical EvangelistDavid Aiken | Microsoft Group Technical Product Manager
Agenda • Why AD on Windows Azure?• AD Architecture Options
Windows Azure AD vs VM with AD on IaaS
AzureAD
AD
Office 365
AzureAD
AD
ExchangeOnline
SharePointOnline
LyncOnline
CRM Online
WindowsInTune
Contoso CORP SITE – Las
Vegas, NV
Local authentication in Windows Azure
Windows AzureDatacenter – West US
VPN Tunnel
ADCloud Service SharePoint RDS
Virtual Network
ADWebsite
ADWebsite
Contoso CORP SITE – Las
Vegas, NV
Disaster Recovery
Windows AzureDatacenter – West US
VPN Tunnel
ADCloud Service SharePoint Website
Virtual Network
AD Architecture Options
Domain Controller On-Premises Only
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Site to Site VPN Tunnel
AD Authentication+
On-Premises Resources
Contoso.com Active Directory
Contoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
Load BalancerPublic IP
Active Directory in Azure Only
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Load BalancerPublic IP
Site to Site VPN Tunnel
On Premises Resources
Contoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
AD / DNS
AD Auth
Extranet Active Directoryfabrikam.com
Domain Controller On Prem + Azure
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Site to Site VPN Tunnel
AD Authentication+
On-Premises Resources
Contoso.com Active DirectoryContoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
AD / DNS
AD Auth
Load BalancerPublic IP
Deploy DC in Separate Cloud Service Cloud Service Configuration for AD
Cloud Service for AD ClientsLocation: North Central USName: app-cloudservice.cloudapp.netAffinity Group: ADAG
DeploymentVirtual Network: MyVNETDNS IPs: 192.168.1.4
Virtual MachineRole Name: advm1Subnet: AppSubnetIP Address: 192.168.2.4
Cloud Service for AD DomainsLocation: North Central USName: ad-cloudservice.cloudapp.netAffinity Group: ADAG
DeploymentVirtual Network: ADVNETDNS IPs: (On-Premise AD IP)
Virtual MachineRole Name: ad-dcSubnet: ADSubnetIP Address: 192.168.1.4
DIP
Windows Azure Subscription
Demo
Deploying AD – On Prem + AzureRunning AD on Windows Azure IaaS
http://technet.microsoft.com/en-us/library/jj713614.aspx Windows Azure Training Kit
http://aka.ms/githubHOL-DeployingActiveDirectoryHOL-DeployingActiveDirectoryPS