Hi Sir, All the videos in your channel are very simple, explanatory and easy to understand. The way you teach is really like spoon feeding that one can learn the concept in one go. Thank you so much.
All the videos are so professional and explained with simplicity. If he is gonna sell it on udemy it will sell like hotcakes. Thanks bro for putting so much effort and putting it out free. Guys share his channel as much as you can and increase his subscribers. Cheers!
great video One doubt, last 2 options you have shown one with ADFS and other without ADFS. If On premise to Azure authentication happens without ADFS, why would someone use complex ADFS?
The use of ADFS is not restricted only to Office 365. You can use ADFS for multiple Applications. Whereas the pass-through authentication is Azure AD capability. Use case - If you ADFS only for Office 365 and you don't want the passwords to be synced, use pass through authentication.
Could please make video on Difference between Managed identity and federated identity ? that would lead us understand granular things. BTW I got to know how that types of identity Azure offers.
Cloud Identities can also be Managed Identity or Federated Identity?? Because while creating a cloud user in Azure AD we can either choose Managed Domain or Federated Domain for their UPN suffix.
Sir, do you have the procedure or video to add domain name to Public DNS?. Also, how do we register it. I am planning to test in my lab domain. Thanks.
When you said to add the TXT record at public DNS of your custom domain, did you mean adding TXT record to public DNS like GoDaddy ? I had similar situation few days back where I had to verify the custom domain and my technical customer told me that should be added to our Enterprise DNS environment !
Yes, the DNS record should be added to public domain. How it works? When you add your domain and click on verify, Microsoft tries to verifiy the TXT record, now if you will add that if your enterprise DNS which is not publically routable, the verification will fail.
Thanks for the video, can you explain bit more why we need ADFS identities, while we have synced AD and user can access apps from portal.office.com using on prem credentials.
I have one question you said that we should be using different password for the same sign on when we are not syncing the identies from local ad to azure ad. My question is what happens if i keep the same password? Will i get any kind of error in that case ?
No it will not face any issues, it's just that both the user accounts password policy will be different. For example :- You on prem ad account will have certain password policies mapped. Similarly Azure ad password policies will get applied to Azure AD account.
hello concepts work thanks for the video I need a clarification on authentication process of managed identities. Based on my understanding with pta the authentication requests are routed to onprem AD rather using Azure AD, please clarify
I didnt get about the Pass through, when we are installing an agent on our On-Premises Server, then how can we say that the Authentication is done at Azure?
In pass through authentication happens on prem only, listen from 10:13 - to 10:38. To know more about pass through check this link - ruclips.net/video/kRPExiS4EwI/видео.html&ab_channel=ConceptsWork
@@ConceptsWork When i heard the above video(09:58 to 10:12) stating "If the Authentication is done by Azure Active Directory, it's managed domain or it is managed identity and this can be achieved in two ways "Password Synchronization and with Pass through Authentication", i was confused, though it is acheived by an On-premises machine. But i understood by the other video for Pass through authentication, that was really helpful.
I am deploying WVD in Azure. When I'm trying to verify custom domain it is now allowing me because domain name is more than 15 characters. Are there any limitations?
This is one of template from a subscriptions, where the domain which is added has more than 15 characters. "vmTemplate": { "value": "{\"domain\":\"microsoftworkstationdesktop.com\",\"galleryImageOffer\":\"Windows-10\",\"galleryImagePublisher\":\"MicrosoftWindowsDesktop\",\"galleryImageSKU\":\"19h2-evd\",\"imageType\":\"Gallery\",\"imageUri\":null,\"customImageId\":null,\"namePrefix\":\"dlkvjas\",\"osDiskType\":\"StandardSSD_LRS\",\"useManagedDisks\":true,\"vmSize\":{\"id\":\"Standard_D2s_v3\",\"cores\":2,\"ram\":8}}" }, Also, check the raw error section, for failing deployments.
Hi Sir,
All the videos in your channel are very simple, explanatory and easy to understand. The way you teach is really like spoon feeding that one can learn the concept in one go.
Thank you so much.
All the videos are so professional and explained with simplicity. If he is gonna sell it on udemy it will sell like hotcakes.
Thanks bro for putting so much effort and putting it out free.
Guys share his channel as much as you can and increase his subscribers.
Cheers!
Glad you like them!
Hey man your videos are awesome. Very clear and easy to understand. It will be great if you share the slides. Thanks once again for the videos 👍❤️
The explanation is very clear and able to understand the concepts. Thanks a lot for posting these videos..
Amazing explanation, many thanks for putting this out for free.
Fantastic video and easy to understand ! These are my favorites, thank you !
Glad it was helpful!
Amazing!!! Best explaination that i have come across!!
Crystal clear and precise, thanks for uploading your videos.
Glad you like them!
I really appreciate this content. Very easy to follow and makes things clear. Thank you!
Glad it was helpful!
Great video... Need more videos from you
Very nice work. Keep up ! Thanks.
I really appreciate your contents. Nice explanation !!
Glad you like them!
Awesome. You should get Microsoft MVP, you will get it soon for your amazing explanation.
brilliant video's and information. Thanks.
Glad it was helpful!
Your videos are helpful.. keep posting new videos
Thannks for your acknowledgement.. :-)
what a splendid video it is!!!! Thank you very much professor!!!
You are very welcome
Good work 👍.
Informative video... thanks for clearing few of my doubts...
Welcome Shamshad ... :-)
great video
One doubt, last 2 options you have shown one with ADFS and other without ADFS. If On premise to Azure authentication happens without ADFS, why would someone use complex ADFS?
The use of ADFS is not restricted only to Office 365. You can use ADFS for multiple Applications. Whereas the pass-through authentication is Azure AD capability.
Use case - If you ADFS only for Office 365 and you don't want the passwords to be synced, use pass through authentication.
Could please make video on Difference between Managed identity and federated identity ? that would lead us understand granular things. BTW I got to know how that types of identity Azure offers.
We have created a video that shows the issuance of claims from ADFS, please check the link mentioned below.
ruclips.net/video/--KiPF5_ZSo/видео.html
you are Awesome sirji !
Thank you so much.... Muchas Gracias, I'm your #1 fan...Excellent video as always.
Very well explained. Thanks
Glad it was helpful!
@@ConceptsWork yes its very helpful
Very nice👍
Very nice, thank you🙏
Cloud Identities can also be Managed Identity or Federated Identity?? Because while creating a cloud user in Azure AD we can either choose Managed Domain or Federated Domain for their UPN suffix.
good expanation
Brilliant! 👍
Sir, do you have the procedure or video to add domain name to Public DNS?. Also, how do we register it. I am planning to test in my lab domain. Thanks.
When you said to add the TXT record at public DNS of your custom domain, did you mean adding TXT record to public DNS like GoDaddy ? I had similar situation few days back where I had to verify the custom domain and my technical customer told me that should be added to our Enterprise DNS environment !
Yes, the DNS record should be added to public domain.
How it works?
When you add your domain and click on verify, Microsoft tries to verifiy the TXT record, now if you will add that if your enterprise DNS which is not publically routable, the verification will fail.
Thanks for the video, can you explain bit more why we need ADFS identities, while we have synced AD and user can access apps from portal.office.com using on prem credentials.
Federated Environments are preferred, when enterprises don't want to sync passwords to Azure AD.
Concepts Work so rather then that they are same with synced model?
No, if your domain is federated the authentication will happen onprem, even if you have passwords synced to the cloud.
Thanks a lot..to the point
Can we add other LDAP server like Tivoli, Linux based, etc as source of authentication.
I have one question you said that we should be using different password for the same sign on when we are not syncing the identies from local ad to azure ad. My question is what happens if i keep the same password? Will i get any kind of error in that case ?
No it will not face any issues, it's just that both the user accounts password policy will be different.
For example :- You on prem ad account will have certain password policies mapped. Similarly Azure ad password policies will get applied to Azure AD account.
Thank you for the quick response.@@ConceptsWork
Hi sir...may I know which course is it is ...means az-900,az-300.etc........
hello concepts work thanks for the video I need a clarification on authentication process of managed identities. Based on my understanding with pta the authentication requests are routed to onprem AD rather using Azure AD, please clarify
Yes for pass through authentication, the credentials are verified on prem. Check out this - ruclips.net/video/kRPExiS4EwI/видео.html
I didnt get about the Pass through, when we are installing an agent on our On-Premises Server, then how can we say that the Authentication is done at Azure?
In pass through authentication happens on prem only, listen from 10:13 - to 10:38.
To know more about pass through check this link - ruclips.net/video/kRPExiS4EwI/видео.html&ab_channel=ConceptsWork
@@ConceptsWork When i heard the above video(09:58 to 10:12) stating "If the Authentication is done by Azure Active Directory, it's managed domain or it is managed identity and this can be achieved in two ways "Password Synchronization and with Pass through Authentication", i was confused, though it is acheived by an On-premises machine.
But i understood by the other video for Pass through authentication, that was really helpful.
I am deploying WVD in Azure. When I'm trying to verify custom domain it is now allowing me because domain name is more than 15 characters. Are there any limitations?
The default limit is 48 characters.
@@ConceptsWork I don't think so its 48 it's 15 characters
You are adding domain details in host pool settings right ?
@@ConceptsWork when I'm create azure active directory domain services it's not taking characters more than 15
This is one of template from a subscriptions, where the domain which is added has more than 15 characters.
"vmTemplate": {
"value": "{\"domain\":\"microsoftworkstationdesktop.com\",\"galleryImageOffer\":\"Windows-10\",\"galleryImagePublisher\":\"MicrosoftWindowsDesktop\",\"galleryImageSKU\":\"19h2-evd\",\"imageType\":\"Gallery\",\"imageUri\":null,\"customImageId\":null,\"namePrefix\":\"dlkvjas\",\"osDiskType\":\"StandardSSD_LRS\",\"useManagedDisks\":true,\"vmSize\":{\"id\":\"Standard_D2s_v3\",\"cores\":2,\"ram\":8}}"
},
Also, check the raw error section, for failing deployments.
your 3rd link not working BTW.
Updated.
V. good, cuts through all the bullshit marketing mumbo jumbo on the web which easily confuses you
@Anil , Thank you!!