Azure AD Connect – How to extend your Active Directory Domain to Azure AD ? Part 3 | Federation

What is exactly a federated solution ? It enables applications to redirect to Azure AD for user authentication instead of prompting for its own password. Federated single sign-on is supported for applications that support protocols such as SAML 2.0, WS-Federation, or OpenID Connect, and is the richest mode of single sign-on. It implements an authentication mechanism that can use federated identity. It separates user authentication from the application code, and delegate authentication to a trusted identity provider. This can simplify development and allow users to authenticate using a wider range […]

Read More →

Introduction to Azure AD Connect

Azure AD Connect Azure AD Connect is the tool you install on your on-premise server to integrate your on-premises directories with Azure AD. In addition to directory synchronization, Azure AD Connect provides a wizard-driven experience with two modes Express or Customized forĀ configuring your Azure AD authentication settings and other features.   Features FilteringĀ is used when you want to limit which objects are synchronized to Azure AD. By default all users, contacts, groups, and Windows 10 computers are synchronized. You can change the filtering based on domains, OUs, or attributes. Password […]

Read More →

Azure AD Connect – How to connect your Active Directory Domain to Azure AD ? – Part 2 | Pass-through Authentication

Azure Active Directory (Azure AD) Pass-through Authentication allows your users to sign in to both on-premises and cloud-based applications using the same passwords. This feature provides your users a better experience – one less password to remember, and reduces IT help desk costs because your users are less likely to forget how to sign in. When users sign in using Azure AD, this feature validates users passwords directly against your on-premises Active Directory. The user tries to access an application, for example, Outlook Web App. If the user is not […]

Read More →

Azure AD Connect – How to extend your Active Directory Domain to Azure AD ? Part 1 | Password Hash Synchronization

The simplest way to enable authentication for on-premises directory objects in Azure AD. Users can use the same username and password that they use on-premises without having to deploy any additional infrastructure. With PHS, hashes of user passwords are synchronized from on-premises Active Directory to Azure AD, allowing Azure AD to authenticate users with no interaction with the on-premises Active Directory. When passwords are changed or reset on-premises, the new password hashes are synchronized to Azure AD in near real-time so that your users can always use the same password […]

Read More →