具有Windows Live ID身份验证的Azure多租户应用程序 [英] Azure Multi-Tenant Application with Windows Live ID Authentication
问题描述
我们正在使用Azure AD多租户应用程序成功验证来自不同订阅的Azure AD用户,但无法验证Windows Live ID帐户.
We are successfully authenticating the Azure AD users from different subscription using Azure AD Multi-tenant application but unable to authenticate the Windows Live ID accounts.
要对实时ID帐户进行身份验证,我们将Windows Live ID身份提供程序与Azure访问控制服务(ACS)结合使用,它可以与Azure AD单一租户应用程序正常工作,但是我们正在努力对只能通过以下方式进行订阅的Azure AD用户进行身份验证:使用Azure AD多租户应用程序完成.
To authenticate the live ID accounts we use the Windows Live ID identity provider with Azure Access Control Service (ACS), its working fine with Azure AD single tenant application but we are struggling to authenticate Azure AD users across subscriptions which can only be done by using the Azure AD multi-tenant application.
我们关注此博客 https://msdn.microsoft.com/zh-cn/library/azure/dn486924.aspx ,它适用于单租户应用程序,但是当我们尝试将Azure AD应用程序配置为多租户并使用ACS配置它时,出现以下错误. 在此处输入图片描述 我们有什么方法可以验证Windows Live ID并使用Azure多租户应用程序?
We follow this blog https://msdn.microsoft.com/en-us/library/azure/dn486924.aspx and it works for Single tenant application but when we try to configure the Azure AD app to multi-tenant and configure it with ACS getting the below error. enter image description here Is there any approach we authenticate the Windows Live ID and use the Azure Multi-Tenant Application?
推荐答案
您可以通过完全跳过ACS并在目录租户中预配Microsoft帐户来对多租户应用程序中的Microsoft帐户(实时ID)用户进行身份验证.一个陷阱是,使用Microsoft帐户进行身份验证需要您通过实例化URL中的租户来完全指定身份验证终结点.您不能使用/common端点,因为该端点依赖于用户的家庭租户,而MSA用户没有该端点.
You can authenticate Microsoft Account (live id) users in a multi tenant application by skipping ACS altogether and provisioning the Microsoft Account in directory tenants. One gotcha is that authenticating with a Microsoft Account requires you to fully specify the authentication endpoints by instantiating the tenant in the URL. You cannot use the /common endpoint because that relies on the user's home tenant, and an MSA user does not have one.
这篇关于具有Windows Live ID身份验证的Azure多租户应用程序的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
