Updated: July 15, 2020 (November 7, 2016)
Charts & IllustrationsMicrosoft On-Device Identity Components
A range of technologies can provide identity-related services from devices. Microsoft has built Azure Active Directory (AAD) integration deeply into Windows 10, but personally owned devices, even those not running Windows, are increasingly able to offer single sign-on (SSO) to AAD-integrated applications.
Features listed as requiring Windows 10 Enterprise edition are also available in Windows 10 Education edition.
| Feature | Description | Motivating Driver for Organization | Requirements |
| AAD Domain Join | Windows 10 feature to connect a Windows 10 device to AAD to enable SSO. Can also integrate into Intune. | SSO, and optionally device management, without requiring a device to join an on-premises Windows domain.
Devices increasingly likely to be personally enabled and used off-premises. |
Windows 10 Pro or Enterprise.
Domain join does not require the user to have a paid AAD tier. User Subscription License (User SL) for Azure MFA or AAD Premium tier required if identity, |
Atlas Members have full access
Get access to this and thousands of other unbiased analyses, roadmaps, decision kits, infographics, reference guides, and more, all included with membership. Comprehensive access to the most in-depth and unbiased expertise for Microsoft enterprise decision-making is waiting.
Membership OptionsAlready have an account? Login Now