[英]Visual team services: Unable to authenticate against company AD
This used to work, but it no longer does. 这曾经起作用,但现在不再起作用。 Not sure what changed and the guys on my side aren't either. 不知道发生了什么变化,站在我这边的人也不是。
We have Visual Team Services and are hosting our code in there. 我们拥有Visual Team Services,并在其中托管我们的代码。 Currently, I can still check-in/check-out, but if I try to access the Web Portal, I'm unable to authenticate. 目前,我仍然可以签入/签出,但是如果尝试访问Web Portal,则无法进行身份验证。 Here is my flow: 这是我的流程:
The interesting part here is that the username it's looking at is my UPN (username@fullDomain). 这里有趣的部分是它正在查看的用户名是我的UPN(username @ fullDomain)。 That is the issue. 这就是问题所在。 I'm registered with my email address, so I understand why it's saying my UPN isn't valid. 我已经用我的电子邮件地址注册了,所以我明白为什么我的UPN无效。 But why is it looking at my UPN when it used to look at my company email address? 但是,当它过去查看我公司的电子邮件地址时,为什么还要查看我的UPN? What could have changed? 可能发生了什么变化?
When you are using Azure Active Directory, then your on-premises account if you are syncing accounts should have the UPN set to your external domain, meaning in most cases it matches your email address. 当您使用Azure Active Directory时,本地帐户(如果要同步帐户)应将UPN设置为您的外部域,这意味着在大多数情况下它与您的电子邮件地址匹配。
Whoever is your Azure AD admin will then need to grant you access to the application. 然后,无论谁是Azure AD管理员,都需要向您授予对应用程序的访问权限。 Microsoft have a really good guide for setting this up. Microsoft有一个非常好的设置指南 。
The example in the guide doesn't cover synchronised accounts from your local Active Directory I don't think, just cloud only accounts setup in Azure AD. 指南中的示例不涵盖本地Active Directory中的同步帐户,我认为,仅涉及Azure AD中的仅云帐户设置。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.