Connect to Azure AD from Apache web server on windows
Question
I am trying to use Azure AD to authenticate a website in Apache web server deployed on a windows server. A possible solution we were looking for is mod_auth_openidc, however, it is not available for windows.
Are there any other options that can be used to authenticate a website in apache on a windows server?
1 answers
solution1
2 ACCPTED 2021-07-06 18:46:44
The design pattern should work in any technology since HTTP interfaces are used:
- Reverse proxy is the public URL
- Website uses an Internal URL
- Reverse proxy deals with OAuth and talks to Azure AD
Note that it is generally recommended in terms of secure hosting to put a reverse proxy in front of any of these components, so that an attacker has to breach 2 layers to get to data:
- APIs
- Web back ends that access data sources
- Authorization Servers
Here is an option that might work for you - and once you have a good reverse proxy setup it gives you some interesting architectural options:
Use an Azure NGINX managed service which will use Linux based servers, but you don't need to know anything much about Linux to use them
Use the NGINX openidc module - also provided by Zmartzone - and host that alongside Azure AD
If it helps, at Curity we have some related resources - here is one that shows how to run NGINX on a Windows PC using Docker and how to take control over behaviour via plugins.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.