Share via

Azure IPSec Tunnel to AD

BmoreOs 141 Reputation points
2023-01-25T16:44:14.0633333+00:00

Hi. Hybrid AD to on prem. A vendor we are trying to setup SSO with requires an IPSec tunnel to our on prem DC. After some back and forth, they cannot setup a compatible connection because they are behind a NAT and our vendor suggested using OpenVPN but they won't allow that.

Is it possible to setup an IPSec tunnel to our Azure AD? Does it require a VM? Hoping someone has a guide I can follow.

Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,458 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments
Accepted answer
  1. Luke Murray 11,436 Reputation points MVP Volunteer Moderator
    2023-01-25T23:50:40.7333333+00:00

    If your on-premises network, has access to Azure - you can configure a IPSec tunnel to Azure.

    It doesn't need a VM but it does need a Gateway, Virtual Network etc and of course line of site to a domain controller.

    [https://learn.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal

    Can the vendor, not leverage AAD directly, without relying on AD - [https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/what-is-single-sign-on?

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.