Azure AD作为Okta的联合身份验证提供程序 [英] Azure AD as Federation Provider for Okta
问题描述
我们正在开发一个应用程序,其中计划使用Okta作为ID提供程序.但是,此应用程序将托管在Azure中,我们希望将Azure ACS用于联合身份验证.但是,最近我们才知道ACS将与Azure AD集成(
We are developing an application in which we plan to use Okta as the ID provider. However, this application will be hosted in Azure and we would like to use the Azure ACS for Federation. However, off late we came to know that ACS is going be integrated with Azure AD (http://blogs.technet.com/b/ad/archive/2015/02/12/the-future-of-azure-acs-is-azure-active-directory.aspx). I am bit confused here.
我知道AD提供目录服务,并将用于身份验证.在我们的情况下,这将是Okta.如何为此使用AD(因为ACS将与AD集成)?我尝试将用于测试应用程序的Ws联合身份验证元数据从Okta上传到Azure ACS(试图创建一个新的ID提供程序),但是我无法成功做到这一点.任何帮助将不胜感激.
I understand AD provides the directory services and will be used for authentication. In our case, this will be Okta. How can I use AD (as ACS is going to be integrated with AD) for this? I tried uploading a Ws-Federation metadata for a test application from Okta to Azure ACS (tried to create a new ID provider), however I couldn't succeed in doing that. Any help will be much appreciated.
我尝试使用Okta API,并且效果很好.但是,问题是要使用Azure与Okta进行通信.
I tried using Okta APIs, and it worked well. But, the ask is to use Azure to communicate with Okta.
推荐答案
由于计划使用Okta作为目录和IDP,因此可以将Okta设置为Azure的IDP.这样做的好处是您可以利用Okta中的其他策略和功能在登录期间(例如mfa)进行授权.
You can set up Okta as the IDP to Azure since you plan to leverage Okta as the directory and as the IDP. The benefit here is that you can leverage other policies and features within Okta for authorization during login time (eg. mfa).
https://msdn.microsoft.com/en-us/library/azure/dn641269.aspx -此页面提供了有关如何进行设置的非常详细的描述.如此有效,Azure不是直接"与Okta通信-而是与Okta集成,其中Azure(和您的应用程序)是SP,Okta是IDP.
https://msdn.microsoft.com/en-us/library/azure/dn641269.aspx - This page provides a pretty detailed description on how to set this up. So effective, Azure is not "directly" communicating with Okta - but rather - integrating with Okta where Azure (and your app) is the SP and Okta is the IDP.
这篇关于Azure AD作为Okta的联合身份验证提供程序的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
