stackoom
  简体   繁体   中英

Authenticating using Azure Directory for a Hosted Java Application

 原文  2015-12-16 14:04:21       java/ azure/ single-sign-on/ adal

Question

Our product is a hosted Web application which needs to be accessed by a client X using SSO. The client credentials are maintained on a Azure Cloud platform, and users are authenticated when they login to their Windows PC. What is the best way for us to integrate our application on the client's Windows environment, so that all users are authenticated without logging in to our application? The client has pointed out that we could use ADAL but i'm not sure if that works as we do not have our own AD based or LDAP based user management platform. We currently store all the user management data in the DB.

I'm a newbie to this topic so any guidance is really appreciated.

1 answers

solution1
 0 ACCPTED  2015-12-17 14:50:40

Based on my understanding, the issue is that the authenticated user from a portal access a url link of Java Web Application working with SSO when the Java webapp and the portal are not identical.

Per my experience, I think you can try to use Azure AD Application Proxy to solve the issue. You can refer to the document https://azure.microsoft.com/en-us/documentation/articles/active-directory-application-proxy-sso-using-kcd/#working-with-sso-when-on-premises-and-cloud-identities-are-not-identical to know the application scenario of Application Proxy.

You can try to follow the steps below to implement the needs. And as references, there are some documents explained how to do for each step.

  1. Enable the Azure AD Application Proxy on Azure Portal, and install & register the proxy connector for your application. Please refer to the doc https://azure.microsoft.com/en-us/documentation/articles/active-directory-application-proxy-enable/ for more details.
  2. Publish your application using Application Proxy, please follow the wizard steps of the doc https://azure.microsoft.com/en-us/documentation/articles/active-directory-application-proxy-publish/ .
  3. Enable SSO for your application and the portal, please review the section Working with SSO when on-premises and cloud identities are not identical of https://azure.microsoft.com/en-us/documentation/articles/active-directory-application-proxy-sso-using-kcd/#working-with-sso-when-on-premises-and-cloud-identities-are-not-identical .

If some issue encounted in implementing the plan, you can firstly refer to the doc https://azure.microsoft.com/en-us/documentation/articles/active-directory-application-proxy-troubleshoot/ to troubleshoot.

Any concern, please feel free to let me know.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Authenticating Azure Key Vault using Java Automatically authenticating a user in java or .net app using active directory Authenticating from Java (Linux) to Active Directory using LDAP WITHOUT servername Authenticating google drive with a java application using a local web server Authenticating users using an exsiting ldap server in a java web application Spring MVC application authenticating to Active Directory Authenticating against Active Directory with Java on Linux Authenticating with different Kerberos KDC in the same Java application Authenticating With Azure Directory and Fetch the Valid User Roles From Database Issue while Authenticating user with Active Directory (using AD domain) using Spring Security from Spring-boot Application
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM