身份验证和授权 [英] Authentication and Authorization

问题描述

我正在构建一个需要身份验证的网站。我正在查看文档，我可以找到的唯一身份验证指南是指使用Azure Active Directory。我似乎有点矫枉过正，但我​​继续创造了一个新的租户。但是，
只允许我根据"已批准"的用户创建用户。电子邮件域（或访客）。此外，似乎这会让他们访问我的Azure帐户。

I'm building a site that needs authentication. I was looking through the documentation and the only authentication guides I can find refer to using the Azure Active Directory. I seemed like overkill, but I went ahead and created a new tenant. However, it would only let me create users based off of an "approved" email domain (or a guest). Additionally, it seemed like this would give them access to my Azure account.

我想要的只是身份管理功能，对电子邮件域没有任何限制。任何用户都应该可以注册一个帐户并获取访问权限，而无需提前了解他们的电子邮件域名。

All I want is identity management features without any restrictions on the email domain. Any user should be able to sign up for an account and get access without me having to know what their email domain is ahead of time.

是否有不同的方式来处理个人用户帐户？

Is there a different way to handle individual user accounts?

推荐答案

Hello Leeland，

Hello Leeland,

您必须为此创建Azure B2C租户。你可以阅读更多关于这个

这里。

You would have to create a Azure B2C tenant for this. You can read more about this here.

您将为最终用户创建消费者用户帐户，但他们无法访问azure门户。你可以找到更多关于这个

在这里。

You will be creating consumer user accounts for the end-users and they cannot access azure portal. You can find out more about this here.

如果您在浏览完文档后有任何问题，请告诉我。

Let me know if you have any questions after going through the docs.

这篇关于身份验证和授权的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！