Azure活动目录TenantID [英] Azure active Directory TenantID
问题描述
生成令牌时,我们在令牌en点URL中传递租户ID
是必要的加?请找到以下网址" https://login.microsoftonline.com/ " +
tenantId;我们可以在为客户端生成令牌时共享tenantId吗?
不会造成任何安全问题
有没有其他选择
我找到了"common"但当我给出那个时它会引发错误
任何人都可以通过使用"common"来提供示例示例而不是tenantid?
感谢任何帮助
但是当我指定时常见的而不是租户它会引发错误
我指定的常见如下所示
login.microsoftonline.com/common
请找到以下错误发生了一个或多个错误。 (AADSTS50059:在任一方请求未找到租户识别信息或暗示通过任何提供的证书ID跟踪:24cd7f6c-69e6-452e-BF11-ae6f1fa12d00相关ID:9d5be18c-4970-4a9c-8af7-c0dda18b2e23
时间戳: 2019-03-07 13:02:24Z)   ;
$
我可能知道contoso.microsoft.com是什么?
租户ID只是用于标识Azure AD实例的唯一GUID。
在您发送客户端ID和密码进行身份验证的情况下,检查所有azure实例中的所有应用程序的应用程序ID是不可行的,并且必须提供租户ID。这将确保Azure AD仅在提到的租户中验证客户端
ID和密码。
请检查此
文档了解更多详情和这个
页面对于使用公共端点的示例。
Azure AD中的每个租户都将拥有租户ID和租户名称。它的格式为< customname> .onmicrosoft.com。这两个值在整个Azure中都是唯一的,可以在任何地方使用。
示例:manoj.onmicrosoft.com - > 1234242i33282作为租户ID
&NBSP; &NBSP; &NBSP; &NBSP; &NBSP; &NBSP; contoso.onmicrosoft.com只是微软使用的一个租户名称。
希望这能澄清一些事情。
&NBSP; &NBSP; &NBSP; &NBSP; &NBSP; &NBSP; &NBSP;
While generating a token we are passing tenant id in the token en point URL
is it necessary to add? please find the below URL "https://login.microsoftonline.com/"+ tenantId; Can we share tenantId while generating token to client?
will it not create any security problems
Is there any alternative
I have found "common" but when i am giving that one it is raising an error
Could any one provide sample example by using "common" instead of tenantid ?
Any help is appreciated
but when i am specifying common instead of tenant it is raising an error
I am specifying common like below
login.microsoftonline.com/common
please find the below error One or more errors occurred. (AADSTS50059: No tenant-identifying information found in either the request or implied by any provided credentials. Trace ID: 24cd7f6c-69e6-452e-bf11-ae6f1fa12d00 Correlation ID: 9d5be18c-4970-4a9c-8af7-c0dda18b2e23
Timestamp: 2019-03-07 13:02:24Z)
may i know what is the contoso.microsoft.com?
Tenant ID is just a unique GUID used to identify your Azure AD instance.
In a scenario where you are sending client ID and secret for authentication, checking the app ID against all the applications in all azure instances is not feasible and it is mandatory to provide tenant ID. This will ensure, Azure AD validates the client ID and secret only in the mentioned tenant.
Please check this doc for more details and this page for samples using common endpoint.
Every tenant in Azure AD will have a tenant ID and a tenant name. It will be in the format <customname>.onmicrosoft.com. These two values will be unique in entire Azure and can be used anywhere alternatively
Example: manoj.onmicrosoft.com -> 1234242i33282 as the tenant ID
contoso.onmicrosoft.com is just an example tenant name used by Microsoft.
Hope this clarifies things a bit.
这篇关于Azure活动目录TenantID的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!