question

Patrick-1405 avatar image
0 Votes"
Patrick-1405 asked alfredorevilla-msft commented

Using Azure-AD to authenticate against a third-party service provider

Hey Folks, :)

I would appreciate if you could give me a helpful hint for my question. I already searched google and other ressources to get some ideas, but I guess I would need a deeper technical understanding of SAML to search effective. I really appreciate each useful help. :)

I would like to use the Azure-AD Accounts authenticating against a thirdparty service provider.
The service provider offers a SAML2.0 authentication. I don't have an onpremise ADFS server and I was wondering if it is possible to use Azure-AD for authentication against a SAML Service from the service provider. Recently I learned about the opportunity that Azure-AD supports facebook authentication (using azure-ad accounts) therefore I got the idea that I maybe can use the Azure-AD.

My favorite goal would be to authenticate with cooperate mail address and password. :)

Thank for your help in advance! :)

azure-ad-saml-sso
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

alfredorevilla-msft avatar image
0 Votes"
alfredorevilla-msft answered JamesTran-MSFT commented

Hello @Patrick-1405, yes Azure AD as a SAML Idp for both Idp or SP initiated authentication is supported. Take a look to Understand SAML-based single sign-on.


Let us know if this answer was helpful to you. If so, please remember to accept it so that others in the community with similar questions can more easily find a solution.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@Patrick-1405
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?


Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

0 Votes 0 ·
Patrick-1405 avatar image
1 Vote"
Patrick-1405 answered alfredorevilla-msft commented

Hi anonymous user-msft.
Hi @JamesTran-MSFT,

thank you guys for your help and care. I studied the docs about SAML. After this knowledge I talked with the service provider about it and we figured it out. :)

Here is what I've done later:

In the AAD open the "Enterprise applications" and "create a new application", name it and done.
After adding a new app just I opened the app and moved the single-sign-on page (left in the navigation). Here is where you can add and configure the trust between the thirdpary SAML server and Azure-AD.

Great tool! :) Thanks guys!


43026-image.png



image.png (68.4 KiB)
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.