question

ChaitanyaYarrapragada-1537 avatar image
0 Votes"
ChaitanyaYarrapragada-1537 asked

Point all traffic coming to a tenantID to external IDP

As of current setup Azure is allowing external identity to be added explicitly to a domain and when user tries to access https://portal.azure.com/<tenant-id>; and enters mail id specific to this domain then its routing to external IDP else going with normal flow. If we are using external IDP like Keycloak user can register even with their gmail id or any other emailID in such case if user uses their mail id , in this case gmailId Azure login is routing to github or Azure AD but not external IDP. I can understand this behaviour if user hits https://portal.azure.com but if a tenant id is explicitly mentioned in the context then irrespective of the email domain can it be routed to external idp (like Keycloak) in this case. How can this be achieved.

azure-ad-identity-governance
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

0 Answers