AAD – Using Managed Service Identity (MSI) with Azure App Service and Azure SQL Database

Managed Identity Service is a useful feature to implement for the cloud applications you plan to develop in Azure. You can use this identity to authenticate to any service that supports Azure AD authentication without having any credentials in your code. The credentials never appear in the code or in the source control. It works by … Continue reading AAD – Using Managed Service Identity (MSI) with Azure App Service and Azure SQL Database

AAD – Smart Lockout (SL)

Azure AD Smart Lockout (SL) is a machine intelligence algorithm create to be able to distinguish between genuine users and attackers. It can recognize sign-in coming from valid users and threat them differently than ones of attackers and other unknown sources. The factors include past sign-in behaviour, user's devices and browsers. By default, smart lockout locks … Continue reading AAD – Smart Lockout (SL)

Introduction to Seamless SSO

Password Hash Synchronization or pass-through authentification allow users to use same user name and password to log in to cloud applications but this is not a “Seamless” access. Even they are using same user name and password, when log in to Azure workloads it will prompt for password. Azure AD Seamless SSO automatically signs users … Continue reading Introduction to Seamless SSO

Introduction to Azure AD Connect

Azure AD Connect Azure AD Connect is the tool you install on your on-premise server to integrate your on-premises directories with Azure AD. In addition to directory synchronization, Azure AD Connect provides a wizard-driven experience with two modes Express or Customized for configuring your Azure AD authentication settings and other features.   Features Filtering is used when … Continue reading Introduction to Azure AD Connect

Azure AD Connect – How to connect your Active Directory Domain to Azure AD ? – Part 2 | Pass-through Authentication

Azure Active Directory (Azure AD) Pass-through Authentication allows your users to sign in to both on-premises and cloud-based applications using the same passwords. This feature provides your users a better experience - one less password to remember, and reduces IT help desk costs because your users are less likely to forget how to sign in. … Continue reading Azure AD Connect – How to connect your Active Directory Domain to Azure AD ? – Part 2 | Pass-through Authentication

Azure AD Connect – How to extend your Active Directory Domain to Azure AD ? Part 1 | Password Hash Synchronization

The simplest way to enable authentication for on-premises directory objects in Azure AD. Users can use the same username and password that they use on-premises without having to deploy any additional infrastructure. With PHS, hashes of user passwords are synchronized from on-premises Active Directory to Azure AD, allowing Azure AD to authenticate users with no … Continue reading Azure AD Connect – How to extend your Active Directory Domain to Azure AD ? Part 1 | Password Hash Synchronization

AAD – Azure Cloud-based SSO Authentification

Cloud-based users Authentication or Azure AD Single Sign-on with Password Hash Sync   This means enable the user to signed in with an Azure Active Directory account to a 3rd party SaaS application in Azure only. Azure AD collects and securely stores the user account information and the related password. Azure AD can support any … Continue reading AAD – Azure Cloud-based SSO Authentification