For example, if I want to restrict login to only be possible during working hours, to prevent overtime payments or to prevent lawsuits, I can't do this using only Azure AD." "Azure Active Directory could benefit by adding the capability for identity life cycle for the on-premise solution.
I have to use an on-premises instance of Active Directory if I want to specify the hours during which a user can log in. The integration was not very seamless." "One thing that bothers me about Azure AD is that I can't specify login hours. It was not as easy as we thought it would be. We thought of going for Okta, but later on we were able to achieve it, but not the way we wanted. "Some systems do not integrate very well with Azure AD. It becomes a natural step for people, who wouldn't normally do infrastructure as a service, because they're already exposed to this, and they have already set up their email and SharePoint there. So, platform as a service and infrastructure as a service kind of dovetail off the Active Directory synchronization piece and the email and SharePoint. The use case of maturing into the cloud helps from a SaaS adoption standpoint, and it also tends to be the jumping-off point for larger organizations to start doing PaaS and infrastructure as a service. Companies have different tolerances for synchronizing those credentials versus redirecting to on-prem. In addition, when it comes to user journeys we now can hook in custom flows for different credential checking and authorizations for specific conditional access." "It certainly centralizes usernames, and it certainly centralizes credentials.
Now, with the Azure AD B2C offering integrated as well, we've got a full IAM-type solution for our customer-facing identity management.
It is widely used with Windows versions." "The solution has come a long way.
Any professional system can be easily integrated with Azure Active Directory.
I can manage systems with policies and automate our systems. This solution brings it all together, using a single sign-on experience." "Azure AD has features that have helped improve our security posture." "It is easy to manage. Previously, a lot of times, they had to remember multiple usernames and passwords for different systems. This has certainly made it a better experience accessing their applications. Instead of the days of having to contact the service desk with challenges for choosing their password, users can go in and do it themselves locally, regardless of where they are in the world. This is the most advantageous point, that you can do anything on Azure without taking too much time." "It enhanced our end user experience quite a bit. That makes our management model much easier." "The most valuable feature is that it is very easy to implement, you don't need a lot of effort to set up the solution. Now, with Azure Active Directory, we can do that from a single point. From the management perspective, it's much better to have this because in the past we constantly needed to go into the console of the different solutions and create or delete users or modify their roles and permissions. "The most valuable features of this solution are security, the conditional access feature, and multifactor authentication." "For some applications, it's not only working for authentication but it's also being used to apply roles for users.