Enabling IT to remain in control of corporate information
IT must still remain in control of corporate information. To manage a single identity for each user, across both on-premises and cloud-based (SaaS) applications, you can leverage Windows Server Active Directory, Microsoft Azure Active Directory (including Password Sync), and Active Directory Federation Services (AD FS).
Enforce conditional access policies by defining the resources and level of access each user has to information and applications based on who they are, what they are accessing, and from which device, using the Web Application Proxy and AD FS. Configure additional authentication to secure access to on-premises and cloud applications using Windows Azure Multi-Factor Authentication, and provision and manage user identities and groups based on business policies with Forefront Identity Manager.
And you can even remove corporate data and applications whenever a device is lost, stolen, or retired from use with selective wipe and Microsoft Intune.