Access and information protection

Help your users be productive and maintain control of information

Manage your user's identities across the datacenter and into the cloud to deliver secure access to corporate resources.

Learn about the access and information protection technical scenarios in Windows Server 2012 R2Learn about Microsoft Azure identity and access managementSecure access to company resources from any location on any deviceSecure remote access in small and midsize businesses
Access and information protection

Everyone in the enterprise now has at least one mobile device—more likely, several with increasing corporate BYOD trends and policies. We've gotten used to using cell and Wi-Fi networks just about everywhere. We want access to our work information everywhere, too.

With Microsoft’s access and information protection solutions you can deploy and configure access to corporate resources across your on-premises environment and cloud applications. And you can do it while protecting corporate information.

Enable users to be productive

You can make it simple for users to have a single identity to access all their corporate resources. They can register their devices for single sign-on and get access to corporate data using Workplace Join. With a single identity, it doesn't matter which device they use or where they are. Users can get secure remote access using the Windows Server Remote Access (RRAS) capabilities of DirectAccess and VPN (including automatic VPN connections) and sync their work documents with Work Folders. Users can manage their own security and email groups and perform a password reset if they are ever locked out or forget their password.

Enabling IT to remain in control of corporate information

IT must still remain in control of corporate information. To manage a single identity for each user, across both on-premises and cloud-based (SaaS) applications, you can leverage Windows Server Active Directory, Microsoft Azure Active Directory (including Password Sync), and Active Directory Federation Services (AD FS).

Enforce conditional access policies by defining the resources and level of access each user has to information and applications based on who they are, what they are accessing, and from which device, using the Web Application Proxy and AD FS. Configure additional authentication to secure access to on-premises and cloud applications using Windows Azure Multi-Factor Authentication, and provision and manage user identities and groups based on business policies with Forefront Identity Manager.

And you can even remove corporate data and applications whenever a device is lost, stolen, or retired from use with selective wipe and Microsoft Intune.

Benefits

  • Support BYOD initiatives by empowering people to work from the devices they choose
  • Access company resources such as applications and documents consistently across devices
  • Work productively from any location with secure remote access
  • Protect corporate information and mitigate risk by managing a single identity for each user and enabling multi-factor authentication
  • Manage mobile devices by removing corporate data and applications when a device is lost, stolen, or retired
  • Deliver policy-based access control to corporate applications and data