Identity and Provisioning
Applies to: Office 365 Dedicated Plans
Topic Last Modified: 2013-11-25
The identity and provisioning technologies that are implemented with Microsoft Office 365 for enterprises dedicated subscription plans play a critical role in enabling and regulating your organization's access to Microsoft cloud-based applications such as Microsoft Exchange Online, Microsoft SharePoint® Online, and Microsoft Lync™ Online. The technologies focus primarily on the following key service areas:
- Authentication services. Active Directory® authentication services using Integrated Windows® authentication enables users to access Office 365 resources via a single sign-on experience. With single sign-on, users can sign in once to receive access to resources such as their Exchange Online mailbox, SharePoint Online sites, or Lync Online profile. Optional Active Directory authentication services include rights management services to protect email and documents within Exchange Online and SharePoint Online and federated authentication services to enable partners to access to your SharePoint sites and applications. Office 365 also offers optional two-factor authentication layers for Exchange Online and SharePoint Online services.
- Directory synchronization and provisioning services. For user accounts that reside within the Office 365 environment, synchronization and provisioning services ensure that user accounts are properly provisioned for the Office 365 resources for which they have a subscription to use. These provisioned user accounts are mail-enabled but are disabled for logon. Two examples of provisioned resources are an Exchange Online mailbox and a Lync Online profile.
This service description presents the authentication, directory synchronization, and provisioning components that Microsoft provides to your organization under Office 365 dedicated subscription plans (“dedicated plans”) and Office 365 ITAR-support subscription plans.
|Services provided under Office 365 dedicated plans and ITAR-support plans are delivered from a Microsoft cloud environment where your organization has its own dedicated data center hardware.|
The information applies to the following Office 365 services:
The intended audience for this information is IT professional level staff with a strong understanding of the Active Directory service including Active Directory forest and domain trust models and authentication.
The most recent service description updates for the identity and provisioning services of Office 365 dedicated plans includes the following clarifications, changes, and improvements:
Section added to describe Microsoft Office Client Authentication Services for the automation of licensing for Office application suites used by thick client and mobile devices.