Manage Domains in Office 365 step-by-step

April 30, 2015 jaapwesselius 4 Comments

In a previous blog post I explained how to create a new organization (tenant) in Office 365. After the initial creation there’s one (administrative) account and you can start working with that account almost immediately. For example, when you logon to https://outlook.office365.com/owa and use the credentials you entered when creating the new tenant you logon to OWA and you can start sending email, there’s not much to see though at this point 🙂

When you send an email your email address will be admin@inframan.onmicrosoft.com, not nice but it works. Continue reading Manage Domains in Office 365 step-by-step →

Office365

Extend Office 365 trial

April 29, 2015 jaapwesselius Leave a comment

In my previous blog I explained how to create a new tenant in Office 365 which start with a 30 days trail period. It can happen that you haven’t finished testing within 30 days, so it’s good to know there’s the option to extend the Office 365 trial with another 30 days.

To achieve this logon to the Microsoft Online Portal via https://portal.microsoftonline.com and login with the global administrator account. In the main menu select Billing and Subscriptions and in the subscription details (on the right) click Extend trial.

To extend the trial subscription you need to enter your credit card details, but your card won’t be charged for extending the trial period. In the pop-up windows, click Next and in the following windows enter your credit card details. Once entered click Extend trial and you’re good for another 30 days.

Please note you can extend your Office 365 trial only once.

Office365

Create a new organization in Office 365

April 28, 2015 jaapwesselius 2 Comments

Creating a new organization in Office 365 is relatively easy. You need a valid domain, a unique tenant name and if you want to use it beyond the 30 days trial period a valid credit card.

Before creating (or provisioning) a new tenant you have to select the Business Plan that will match your business needs. You can find a nice overview of all Office 365 Business Plans on the Microsoft site via http://bit.ly/CompareAllO365BusinessPlans.

When you scroll down you’ll the Business Plans that have a free trial available. In this blog post I’ll focus on the Enterprise E3 plan.

When you click Free Trial at the bottom of the page you can configure a new tenant in Office 365 with a 30 days trial period. You need to enter you name, email address, telephone number and organization name as shown in the following figure.

The next step is to create your first user ID. This will automatically the Global Administrator of your Office 365. I always recommend not using a regular user for this, but create a dedicated administrator with an appropriate name like admin or administrator.

Continue reading Create a new organization in Office 365 →

Office365

Cloud identities, Linked Identities and Federated Identities

April 22, 2015 jaapwesselius 2 Comments

When you are using a cloud service, whether it be Office 365, Facebook, LinkedIn or Gmail you are using a user account, and these are also referred to as ‘identities’. Typically there are three types of identities in a cloud service: Cloud Identities, Synced Identities and Federated Identities.

Cloud Identity – a Cloud Identity is a user account that’s created and managed in the cloud service. In case of Office 365 this account is created and managed in the Microsoft Online Portal. Important to note is that when you access an Office 365 service, authentication takes place against the Windows Azure Active Directory Domain Controllers.
In the Microsoft Online Portal these accounts are easily identifiable as Cloud Identities as can be seen in the following figure:
Synced Identity – a Synced Identity is created and managed in your local Active Directory and synchronized with the Cloud service. In Office 365 you can opt to synchronize the passwords as well, although not the actual password is synchronized but a hash of the password. Like Cloud Identities authentication takes place against the Windows Azure Active Directory Domain Controllers. These accounts are identified in the Microsoft Online Portal as ‘Synced with Active Directory’ as shown in the following figure:

Although the username and password are identical in Office 365 and in the local Active Directory, this is not a Single Sign-On solution, but I always refer to this as a ‘Same Set of Credentials’ solution.
Federated Identity – a Federated Identity is a user account that’s created and managed in your local Active Directory and that’s synchronized with Office 365. When the account is synchronized an account in Office 365 (Windows Azure Active Directory) is created. When a service in Office 365 is accessed, the user is not authenticated against the Windows Azure Active Directory Domain Controllers, but the authentication request is redirected to your local Active Directory and Domain Controllers. To achieve this an Active Directory Federation Service (ADFS) needs to be in place. Since there’s only one set of credentials (all authentication takes place against your local Domain Controllers!) this is referred to as ‘Single Sign-On’.