Hi there, I'm trying AD integrated authentication between my .net app and azure SQL. The app is running on a Azure VM that is joined to an Azure AD domain (Domain Services) on IIS. I am getting Adal Error while trying to configure Azure AD user and Azure Sql Authentication to make connection my string password less Error : One or More errors, AdalException: Integrated Windows authentication supported only in federation flow. This is how my connection string looks : <add name="primary" connectionString="Server=tcp:XXXXX;Initial Catalog=XXXXX;Persist Security Info=False;MultipleActiveResultSets=False;Encrypt=True;TrustServerCertificate=False;Authentication='Active Directory Integrated';" />

@Raghava Sai Akula Thanks for posting your question in the Microsoft Q&A forum. Integrated authentication relies on an Active Directory (Windows) domain that is federated to AAD. It does not work on machines that are joined to Azure Active Directory tenants. This is an AAD requirement. If you want this to work, you will need to configure the VM on a Windows domain and federate to AAD. Regards Geetha

Adal Error while trying to configure Azure AD user and Azure Sql Authentication to make my connection string password less

Accepted answer

GeethaThatipatri-MSFT 27,337 Reputation points Microsoft Employee

2023-03-24T21:48:35.8766667+00:00

@Raghava Sai Akula Thanks for posting your question in the Microsoft Q&A forum.

Integrated authentication relies on an Active Directory (Windows) domain that is federated to AAD. It does not work on machines that are joined to Azure Active Directory tenants. This is an AAD requirement. If you want this to work, you will need to configure the VM on a Windows domain and federate to AAD.

Regards

Geetha
Please sign in to rate this answer.
Raghava Sai Akula 341 Reputation points

2023-03-27T18:21:26.62+00:00

Hi Geetha,

As a newbie to Azure , First of all , I sincerely appreciate your time in educating me.

I had my whole infrastructure setup on Azure , I mean I am using Azure SQL DB and my application hosted in IIS of Azure VM and also this VM is Azure AD domain joined. do I still need to install Azure Ad connect and Federate it.

Raghava Sai Akula 341 Reputation points

2023-03-27T18:29:27.32+00:00

I felt I'm bit off track & overwhelmed with the articles & videos that I referred over the weekend, I couldn't quite understanding the necessity of Azure AD connect & also the prerequisites of 'Federation with AD FS'.

GeethaThatipatri-MSFT 27,337 Reputation points Microsoft Employee

2023-03-27T18:36:13.95+00:00

@Raghava Sai Akula Integrated authentication is windows (AD) based. AAD authentication is not. To connect the two, you need to federate the AD domain and AAD tenant as discussed in the documentation above.

Regards

Geetha
Sign in to comment

Adal Error while trying to configure Azure AD user and Azure Sql Authentication to make my connection string password less

0 additional answers