Security & Identity Management "From the Consulting Trenches" There are a number of security, identity management and authentication considerations when developing custom applications and related features in SharePoint 2013, Office 365, SharePoint Online and Microsoft Azure
At the same time, one of the real issues associated with identity management in the Web 2.0 world today is the limited naming spaces available
HBI/MBI/LBI) Automated site placement based on user input & verification Mission Critical Classification Governance Document IT manually creates site in “special” environment Automated site placement bin redundant data-center based on user input & verification Enforcement Scope – How to Enforce (EPC Group Example) Governance Provisioning Tools (EPC Group Example) Object in SharePoint 2013 and/or Office 365 Automatable Create Site Collections Create Sub Webs Create Hierarchy Available on Office 365 People | My Sites | Social ✓ ✓ ✓ ✓ Web Parts | Apps ✓ ✓ List Templates (STP and XML) ✓ ✓ Web Templates (WSP and XML) ✓ ✓ ✓ Site Quotas ✓ ✓ Web Event Receivers ✓ ✓ ✓ SPD Workflows and Actions ✓ ✓ ✓ * ✓ Feature Stapling ✓ ✓ ✓ ✓ * Workflows ✓ ✓ ✓ ✓ Site Definitions ✓ ✓ ✓ ✓ Timer Jobs ✓ ✓ ✓ ✓ Custom Site Provisioning Handlers ✓ ✓ ✓ ✓ Matching the Policy to the Office 365 and/or SharePoint 2013 Scope (EPC Group Example) Policy Type Scope Possible Options Security\ Identity Management Farm Web Application Provisioning workflows Timer Jobs Web application polices DNS/Infrastructure Reactive reporting Farm Web Application Sites/Webs Timer Jobs External Database Event Receivers Proactive Sites/Webs Custom Forms Event Receivers Feature Receivers Custom Field Controls Auditing Farm Web Application Timer Jobs External Database Changes Sites/Web Features Control Delegates Considerations in Complex Environments • Multi-tenancy ( Office 365 Issues when a user goes outside of I.T. to create a new “environment”) • Multiple farms • Hybrid on-premise and off-premise • Security (FBA, SAML claims, Extranets) • Global Clients with PHI, PII, Safe Harbor, Intellectual Property , EU Pushback, NSA Concerns in recent news Frequently Asked Questions of EPC Group • Terms of Service • Common user interface and navigation • Site directory and Office 365 and/or SharePoint 2013 ’s new Layout • Common header and footer content (standardize and creation of governed branding guide) • Structured provisioning with workflow • Site Mapping | Mapping the Owner to Content • BYOD \ "Bring Your Own Device" Strategies (Mobility) • Custom Branding | Responsive Design in Office 365 \ SharePoint 2013 • Site Backup and Restore (DR) and Archival EPC Group’s Nationally Recognized Practice Areas EPC Group leading SharePoint , Office 365 , Infrastructure Design and Business Intelligence Practice areas continue to lead the way in providing our clients with the most up-to-date and relevant information that is tailored to their individual business and functional needs
Key components include Identity Management, Preference Configuration, Rules Administration, and Reporting
There are so many moving parts, so many big bets being made -- from cloud-based software distribution, identity management and storage, to the federation and portability of conversations and data across enterprise applications, whether the infrastructure is on premises in the cloud, or something in between
Windows Azure AD) and will provide for the more seamless identity management that is so critical to brining more compliance and governance around these environments
The availability of Active Directory and OAuth for user identity authentication and permission and group membership management is enabling integrated identity management with other solutions, such as SAP. 2
A high-level overview of the SharePoint App Model Overview of Hosting Architecture for Apps The overall options to a developer have widened and the use of HTML has become prevalent in achieving development requests of end users and the business In this post, EPC Group will discuss the new SharePoint app and related APIs in the following sections including security and identity management elements such as OData (e.g
• Best practices around developing internal Power Users and ensuring SharePoint’s continued growth and progression within your organization • Social strategies that will ensure proper and governed enterprise buy-in • Multilingual implementations and architecting a SharePoint solutions for 1 or even 1,000,000 (million) users • Performance considerations across multiple data centers or locations • Disaster recovery, business continuity, data replication, and archiving • SharePoint content publishing best practices and implementing the “one version of the truth” concept • Mobility, BYOD, and external security considerations • SharePoint and/or Office 365 governance best practices and how to develop a SharePoint steering committee • Implementing true records management (ECM \ RM) with SharePoint 2013 including working with your organization’s retention schedule and strategies around disposition, eDiscovery, and compliance • Ensuring you put emphasizes on metadata and core content type discovery exercises • Defining SLAs and strategies for long-term support of SharePoint 2013 and/or Office 365 as well as strategies around Microsoft SQL Server 2012 \ SQL Server 2014 and Windows Server 2012 • Understanding Microsoft Azure as well as other offerings such as Amazon Web Services (AWS) as they will come up in conversations with the business as well as other IT leaders • Understanding developing custom apps, web parts, workflows, Apps, and solutions • Content database sizing, SQL Server best practices, and shredded storage • Identity management and authentication Note: This is just a short subset of the methodologies EPC Group initially covers with our clients in our “from the consulting trenches” strategies to ensure your SharePoint 2013 and/or Office 365 platform is implemented right, the first time