Supporting Azure Active Directory on legacy products

Not at all Steve Ballmer 6 Reputation points
2019-10-31T21:02:47.207+00:00

How do I integrate my fancy new Azure Active Directory in older products that only support classic Active Directory? Is there some local service I can install to translate between the two?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,456 questions
0 comments No comments
{count} vote

3 answers

Sort by: Most helpful
  1. KAREDD-MSFT 406 Reputation points Microsoft Employee
    2019-11-01T06:24:34.253+00:00

    @Not at all Steve Ballmer I would recommend using Azure AD Application proxy to provide SSO for on-premise applications with Azure AD.

    Application Proxy works with:

    • Web applications that use Integrated Windows Authentication for authentication
    • Web applications that use form-based or header-based access
    • Web APIs that you want to expose to rich applications on different devices
    • Applications hosted behind a Remote Desktop Gateway
    • Rich client apps that are integrated with the Active Directory Authentication Library (ADAL)

    For more details about how it works and implementation
    Ref: https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/application-proxy

    3 people found this answer helpful.
    0 comments No comments

  2. Trevor Seward 11,696 Reputation points
    2019-10-31T21:49:25+00:00

    Azure Active Directory Domain Services (not Azure AD) would be the service to take a look at. This supports services like SharePoint, as one example, where domain user accounts are required.

    1 person found this answer helpful.

  3. Daniel Stefaniak 6 Reputation points
    2019-10-31T21:21:08.987+00:00
    0 comments No comments