Author Archives: Jairo

Windows Hello for Business: Registration and Authentication with #AzureAD

Posted on April 2, 2018 by Jairo

Something that has come up recently in my conversations with you has been how Windows Hello for Business works behind the scenes. I am very excited as more organizations are looking into deploying Windows Hello for Business and some even … Continue reading

Posted in Uncategorized | 9 Comments

#AzureAD device-based conditional access and #Windows 7/8.1

Posted on October 4, 2017 by Jairo

In this post I will cover how you can enable your Windows 7/8.1 and Server 2008 R2/2012/2012 R2 computers to participate in Azure AD conditional access. Domain joined computers must register with Azure AD for meeting device-based conditional access policies … Continue reading

Posted in #AzureAD Seamless SSO, AD FS, Device Conditional Access, Device Registration, Domain Join | 13 Comments

How SSO works in Windows 10 devices

Posted on November 8, 2016 by Jairo

In a previous post I talked about the three ways to setup Windows 10 devices for work with Azure AD. I later covered in detail how Azure AD Join and auto-registration to Azure AD of Windows 10 domain joined devices work, and in … Continue reading

Posted in Uncategorized | 79 Comments

Azure AD and Microsoft Passport for Work in Windows 10

Posted on March 9, 2016 by Jairo

One of the benefits of Windows 10 devices that are registered with Azure AD is the convenience and security that comes with Windows Hello and Microsoft Passport for Work. In this post I’ll delve into the technology of Microsoft Passport for … Continue reading

Posted in Uncategorized | 37 Comments

Azure AD Join: What happens behind the scenes?

Posted on February 1, 2016 by Jairo

In a previous post we discussed about the three ways to setup Windows 10 devices for work with Azure AD. I later covered in detail how Windows 10 domain joined devices are registered in Azure AD. In this post I want … Continue reading

Posted in Uncategorized | 71 Comments

How Domain Join is different in Windows 10 with Azure AD

Posted on January 18, 2016 by Jairo

In the previous post I talked about the three ways to set up devices for work with Azure AD. In this post I will talk about Domain Join and how additional capabilities are enabled in Windows 10 when Azure AD is present. … Continue reading

Posted in AD FS, Azure AD Connect, Azure AD Join, Device Conditional Access, Device Registration, Domain Join, Microsoft Passport for Work, On-premises Active Directory | 186 Comments

Setting up Windows 10 devices for work: Domain Join, Azure AD Join and Add Work or School Account

Posted on January 18, 2016 by Jairo

To enable secure access to apps and services, an organization may constrain access to only devices that are properly configured for work. When a device is setup for work, users can access securely and under compliance, apps, services and data using their work accounts (i.e. … Continue reading

Posted in Azure AD Join, Device Conditional Access, Device Registration, Domain Join, Microsoft Passport for Work, On-premises Active Directory | 24 Comments

Hello Identity world!

Posted on January 18, 2016 by Jairo

Welcome to this space where I will be sharing scenarios and features related to Active Directory (AD) and Azure Active Directory (Azure AD). I will touch on areas I own or contribute as part of my Program Management role in the Identity Services … Continue reading

Posted in AD FS, Azure AD Connect, Azure AD Join, Device Conditional Access, Device Registration, Domain Join, Microsoft Passport for Work, On-premises Active Directory | 4 Comments