[英]How do services like Okta and Auth0 implement their sign-on experience for Azure AD users?
With Azure AD users, sign-in usually requires you to be redirected to Microsoft URLs to enter your credentials.对于 Azure AD 用户,登录通常需要将您重定向到 Microsoft URL 以输入您的凭据。 Okta and Auth0 allow these users to sign in from arbitrary URLs like https://orgname.okta.com/ . Okta 和 Auth0 允许这些用户从https://orgname.okta.com/等任意 URL 登录。 If you have an Azure AD B2C tenant, is it possible to implement this as well, where your signin is done from a page with your organization's URL and not a Microsoft URL?如果您有 Azure AD B2C 租户,是否也可以实现此功能,您的登录是从您组织的 URL 而不是 Microsoft ZE6B391A8D2C4D45907DZ23A 的页面完成的?
Not today, but coming soon.不是今天,但很快就会到来。 Today you must use contoso.b2clogin.com.今天你必须使用 contoso.b2clogin.com。
There are two options.有两种选择。
Okta does support a Vanity Login page (you can create a login page using a registered CNAME in DNS. For example login.company.com or sso.company.com . You can create one Vanity or Hosted login page per Okta instance today. Okta 确实支持虚荣登录页面(您可以使用 DNS 中的注册 CNAME 创建登录页面。例如login.company.com或sso.company.com或托管登录页面。您今天可以为每个 Okta 实例创建一个虚荣登录页面。
Or, you can host your login page yourself, and drop the Okta Login widget on the page, and perform the Authentication from your own page.或者,您可以自己托管您的登录页面,然后将 Okta 登录小部件放在页面上,然后从您自己的页面执行身份验证。
Here is an example of a self hosted custom login page:以下是自托管自定义登录页面的示例:
https://super-widget.oktaprise.com/ https://super-widget.oktaprise.com/
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.