Azure Onpremise Active Directory SSO
[英]Azure Onpremise Active Directory SSO
问题描述
Trying to verify a custom domain for single sign in Azure . 
尝试验证Azure单一登录的自定义域。
We have an onpremise domain controller, its using a non-routable domain (contoso.prod). 我们有一个本地域控制器,它使用一个不可路由的域(contoso.prod)。
Active directory in Azure and on-premise are syncing. Azure和本地中的Active Directory正在同步。
But if I add a custom routable domain contoso.com or contoso.net and check the box "I plan to configure this domain for single sign-on with my local Active Directory ", the domains won't verify for single sign on. 但是,如果我添加一个自定义的可路由域contoso.com或contoso.net并选中“我计划使用本地Active Directory为单点登录配置此域”框,则该域将无法验证单点登录。 Status = "Unverified"
If I don't check that box, I'm able to verify the domain. 如果未选中该框,则可以验证域。
Is it because we have a non-routable domain on premise? 是因为我们拥有一个不可路由的域名吗? Do we need to add a UPN suffix? 我们是否需要添加UPN后缀?
Please advise. 请指教。
1 个解决方案
解决方案1
0 2016-01-13 01:28:13
Checking the box isn't necessary. 无需选中此框。 You can either use AAD Connect to configure SSO, or you can install the Azure AD PowerShell module and run Convert-MsolDomainToFederated on your AD FS server. 您可以使用AAD Connect配置SSO,也可以安装Azure AD PowerShell模块并在AD FS服务器上运行Convert-MsolDomainToFederated 。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.