On Demand Migration Current - Security Guide

On Demand Migration Current - Security Guide - Self-Service

Introduction About On Demand Migration Self-Service (ODMSS) Architecture Overview Azure Datacenter Security Overview of Data Handled by ODMSS Admin Consent and Service Principals Location of Customer Data Privacy and Protection of Customer Data Separation of Customer Data Network Communications Authentication of Users Role Based Access Control FIPS 140-2 compliance SDLC and SDL Third party assessments and certifications Operational Security Customer Measures

Introduction

Managing information system security is a priority for every organization. In fact, the level of security provided by software vendors has become a differentiating factor for IT purchase decisions. Quest strives to meet standards designed to provide its customers with their desired level of security as it relates to privacy, confidentiality, integrity and availability.

This document describes the security features of Quest On Demand Migration Self-Service (ODMSS). It reviews access control, protection of customer data, secure network communication, cryptographic standards and more.

About On Demand Migration Self-Service (ODMSS)

Quest On Demand Migration Self-Service (ODMSS) enables end users to schedule their own device migrations between EntraID or local Active Directory as an add-on feature for On Demand Migration Active Directory (ODMAD). This feature is optional and requires the Migration Administrators to configure the service.

For details about security in ODMAD, see the document On Demand Migration for Active Directory Security Guide.

ODMAD provides the following features:

Full tenant discovery of users, groups, domains and more.
Move domains between tenants.
Synchronize Active Directory and Microsoft Entra ID directories with customizable workflows.
Migrate workstations, computers, servers, objects, users, groups and more.
No servers, trusts, or network connectivity required.
Data transformation and customizable mapping of directory attributes.
Near-real time password hash synchronization.
Password change propagation.
Trustless SID History migration.

Architecture Overview

Azure Datacenter Security

Microsoft Azure datacenters have the highest possible physical security and are considered among the most secure datacenters in the world. They are subject to regular audits and certifications including Service Organization Controls (SOC) 1, SOC 2 and ISO/IEC 27001:2005. Relevant references with additional information about the Windows Azure datacenter security can be found here:

Azure Trust Center: https://azure.microsoft.com/en-us/support/trust-center/
Microsoft Trust Center Compliance: https://www.microsoft.com/en-us/TrustCenter/Compliance?service=Azure#Icons
Microsoft’s submission to the Cloud Security Alliance STAR registry: https://cloudsecurityalliance.org/star/registry/
Whitepaper: Standard Response to Request for Information – Security and Privacy: http://www.microsoft.com/en-us/download/details.aspx?id=26647
Microsoft Global Datacenters: Security & Compliance: https://www.microsoft.com/en-us/cloud-platform/global-datacenters
Azure data-at-rest Encryption Best Practices: https://docs.microsoft.com/en-us/azure/security/azure-security-data-encryption-best-practices

Self Service Tools: Knowledge Base; Notifications & Alerts; Product Support; Software Downloads; Technical Documentation; User Forums; Video Tutorials; RSS Feed

Contact Us: Licensing Assistance; Technical Support; View All

Please select your product:

To serve you better, please complete the Purpose of your Chat:

Recommended Solutions for Your Problem

On Demand Migration Current - Security Guide - Self-Service

Introduction

About On Demand Migration Self-Service (ODMSS)

Architecture Overview

Azure Datacenter Security