tips for building school wi-fi network in a simple … · g suite, office 365 with adfs steps for...
TRANSCRIPT
All for One, One for All
Light and Life
Tips for Building School Wi-Fi Network in a Simple and Easy Way
Single Sign-On (SSO)
10th December, 2016 (Saturday) |
Mr. Louis LUI, Assistant Principal, Munsang College
Agenda
1. What is SSO and Why SSO benefit to schools
2. Different Protocols in SSO
3. Demonstration in SSO with OAuth with google, MS,
moodle
4. Demonstration: HKEdCity's SSO
5. Discussion
All for One, One for All
Light and Life
Authenticate to multiple systems with
Many username and Many password 🔒 G Suite
Office 365
🔒
🔒
🔒
🔒
🔒
🔒
🔒
🔒
Current Authentication
All for One, One for All
Light and Life
Single Sign On –One Credential
Authenticate to multiple systems with
one username and one password 🔒 G Suite
Office 365
🔒
🔒
🔒
🔒
🔒
🔒
🔒
🔒All for One, One for All
Light and Life
G Suite, Office 365 with ADFS
auto sign on
once user signed on to their computer
in on-premises network (domain) with
their Active Directory account, G Suite
and Office 365 will be signed on
automatically.
https://outlook.office365.com/
G Suite, Office 365 with ADFS
G Suite, Office 365 with ADFS
Password for Internet
Username and Password will be
required if user sign on from Internet
https://outlook.office365.com/
sign on
G Suite, Office 365 with ADFS
Sign On tomultiple at once
Once you signed on into ADFS, all
other services will also be signed on
https://outlook.office365.com/https://outlook.office365.com/
https://outlook.office365.com/
G Suite, Office 365 with ADFS
Combines two independent
credentials, the password and the PIN
from your mobile phone
Multi-factor Authentication
G Suite, Office 365 with ADFS
What you needs
• Active Directory
• ADFS
• WAP
• Static public IP
• Third-party SSL certificate
• G Suite account
• Google Directory Sync
• Office 365 account
• Azure account
• Azure Active Directory Connect
G Suite, Office 365 with ADFS
Steps for G Suite
1. Make sure you have Active Directory, G Suite account and third-party
SSL certificate
2. Install Google Directory Sync
3. Set up and make sure accounts can be synchronized to G Suite
4. Install ADFS
5. Import SSL certificate to ADFS
6. Add trusted relying party
7. Enable SSO in G Suite
8. Upload Token-signing certificate to G Suite
9. Done
G Suite, Office 365 with ADFS
Steps for Office 365
1. Make sure you have Active Directory, Office 365 account, Azure
account and third-party SSL certificate
2. Install Azure Active Directory Connect
3. Set it up and make sure accounts can be synchronized to Azure AD
4. Install ADFS
5. Import SSL certificate to ADFS
6. Enable Federation Trust with Office 365
7. Done
SharePoint with NTLM
auto sign on
Can be used in on-premises network
with their Active Directory account
https://outlook.office365.com/
SharePoint with NTLM
SharePoint with NTLM
No more setup
Integrated with SharePoint, and all
user account will be created in
SharePoint automatically🎊
SharePoint with NTLM
What you needs
Active Directory
SharePoint
1. Sign in to SharePoint Central
Administration
2. Enable Integrated Windows
authentication for your Zone
Steps
PHP
auto sign on
once user signed on to their computer
in on-premises network with their
Active Directory account, G Suite and
Office 365 will be signed on
automatically.
https://outlook.office365.com/
PHP