stackoom
  简体   繁体   中英

Azure AD Integrated Authentication

 原文  2017-12-12 10:05:10       asp.net/ azure/ azure-active-directory/ windows-authentication/ azure-authentication

Question

I want to implement something like the Windows Integrated Authentication, where the user data was read from your pc which was in the intranet of the organisation.

We have registered our organisation on Azure and set up the Azure AD and we have apps that use SSO to connect to the AD and retrieve user data from it. We are also able to login to our devices with "name.surename@organisation.onmicrosoft.com" account.

Questions:

  1. Is it possible to automatically authentificate the user to our web apps, just by using the pc login information?
  2. Is there a Authentification Scheme that allows us to use the Azure AD to authentificate the user in a way it is done with the Windows Integrated Authentication

The end goal would be to have something like Windows Integrated Authentication but with the device in the Azure Domain of the organisation.

1 answers

solution1
 1  2017-12-13 01:58:52

1.Is it possible to automatically authentificate the user to our web apps, just by using the pc login information?

Yes, It is possible. But you need a lot of work to do. You can configure your application for SSO with Azure AD. This need Azure AD premium first.

Then,you need to use Azure AD join to let your devices in your organization join Azure AD. But this requires all your devices are windows 10.

After joining Azure AD, you can use the Azure AD account to sign in your device and you will found that you can Single-Sign-On (SSO) to your Azure managed SaaS apps and services . Your users don't see additional authentication prompts when accessing work resources. The SSO functionality is even when they are not connected to the domain network available.

Is there a Authentification Scheme that allows us to use the Azure AD to authentificate the user in a way it is done with the Windows Integrated Authentication

I understand what you want. Actually,Azure AD doesn't work as local AD and may not have some features as local AD. It doesn't support kerberos neither. As the above I mentioned, you can use Azure AD join to achieve what you want. Join your devices to Azure AD, you can just manage them via Azure AD because they are under your organization.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Custom authorization with Azure AD authentication Azure AD authentication between applications WebForms authentication against Azure AD Alexa skill and Azure AD authentication Azure AD Authentication alongwith Passport Authentication Azure API APP authentication using Azure AD Azure AD Authentication: Redirect to originating page Include Azure AD authentication in legacy “aspx” project Use Azure AD only for Authentication and not Authorization Add Azure AD Authentication in the exiting applicaiton
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM