有关Azure AD Connect和用户密码的问题 [英] Question regarding Azure AD Connect and user passwords
问题描述
所以我希望部署Azure AD Connect和无缝单点登录。我想我会去密码哈希同步路由。在我开始这个过程之前,我想确定的一件事是让用户说当前有一个密码用于登录
到他们的Windows域帐户,另一个用于Office 365应用程序。当他们的域密码同步时,他们是否仍然可以使用之前使用的Office 365密码以及域密码登录Office 365?我只想
想要确保避免与不知道使用什么密码的人混淆等等。我希望这个角色不会干扰现有的登录方法,只需添加一个新的。
So I'm looking to deploy Azure AD Connect and seamless single sign-on. I'm thinking I will go the Password Hash Sync route. One thing that I want to make sure about before I start the process is let's say a user currently has one password for logging in to their Windows domain account, and a different one for Office 365 apps. When their domain password is synced, will they still be able to log in to Office 365 with the Office 365 password they were using previously, as well as their domain password? I just want to make sure to avoid any confusion with people not knowing what password to use, etc. My hope is that this role out will not interfere with existing sign on methods, just add a new one basically.
推荐答案
使用密码哈希同步(PHS),您可以将本地Active Directory用户帐户对象与Office 365同步,并在本地管理
用户。用户密码的哈希值从本地Active Directory同步到Azure AD,以便用户在本地和云中具有相同的密码。因此,用户必须使用域凭据在Azure AD Connect和无缝SSO实施后访问Office365
。
此处有更多信息
https://docs.microsoft.com/ en-us / office365 / enterprise / about-office-365-identity
这篇关于有关Azure AD Connect和用户密码的问题的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
