Share via

How to make a application to azure for external company user to login using their AD account

Danny Huang 21 Reputation points
2020-06-23T08:11:23.62+00:00

Hi Team,
our comany developed a application which are used by our external customer, the current login approach is customer register the account and then login the application by inputting username and password.

But we need to change this approach, we want our customer can automatically login the application based on their AD account. Base on my limited knowledge, I think to accomplish this requirment,

  1. We need to frislty on board the application to Azure,
  2. And then our customer need to do some configuration (assuming all our customer has Azure cloud) in their Azure cloud to enable the SSO for this applicaiton.

My question here is the step 1, how to on board the application to Azure? can you point me the right direction how to implment it? I appreciate if there are any docs I can refer to.

(to be simply, my requirment is to make the applicaiton like a SaaS that the same as others SaaS like Ariba, HR4U, SNow, SFDC, etc. which can provide the capability to let company user login these application using their AD account automatically)

Thanks very much !

zg H

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,913 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,116 questions
0 comments
Accepted answer
  1. AmanpreetSingh-MSFT 56,646 Reputation points
    2020-06-23T09:36:42.197+00:00

    Hello @DannyHuang-4387 Please find below the answers to your questions below. Hope this information would help you.

    1. We need to frislty on board the application to Azure,

    First you need to choose one of the below scenarios that the application (you want to on-board to Azure) is using. More details about these scenarios and code samples for each scenario can be found here: https://learn.microsoft.com/en-us/azure/active-directory/develop/authentication-flows-app-scenarios.

    • Build a single-page app
    • Build a web app that signs in users
    • Build a web app that calls web APIs
    • Build a protected web API
    • Build a web API that calls web APIs
    • Build a desktop app
    • Build a daemon app
    • Build a mobile app

    2. And then our customer need to do some configuration (assuming all our customer has Azure cloud) in their Azure cloud to enable the SSO for this applicaiton.

    For this purpose, you would need to configure the application as a Multi-tenant application, so that the application can be accessed by users in other Azure AD tenants. Based on the permissions required by the app in other tenants, a consent might be required to provide by global administrators of other tenants at the first time access to the application and after that all users in those tenants can access the application. For more details, please refer to below documents:

    Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.