单点登录 [英] SSO

问题描述

为不支持SAML 2.0的非图库应用设置基于密码的SSO.它可以正常工作，但是一旦密码过期或被重置，则用户必须更新myapps.office.com中的凭据.有没有办法强迫用户更新凭证 密码过期后会弹出一个密码提示框?这样，我们可以拥有SSO并让密码每90天过期一次，而用户只需更新它即可，而不必进入myapps.感谢

Setting up password based SSO for non gallery app which doesn't support SAML 2.0. It works ok but once the password expires or is reset then the user must update credentials in myapps.office.com. Is there a way to force the user to update credentials with a popup for their password once the password expires? This way we could have SSO and have the password expire every 90 days and the user would just update it without having to go to myapps. Thanks

推荐答案

基于密码的单点登录使用应用程序提供的现有身份验证过程.当为应用程序启用密码单点登录时，Azure AD收集并安全地存储该应用程序的用户名和密码.用户凭证 以加密状态存储在目录中.
因此，一旦更改了应用程序的用户凭据密码，就需要将密码更新为Azure AD-您可以在其中转到MyApps门户并更新新密码.

Password-based single sign-on uses the existing authentication process provided by the application. When you enable password single sign-on for an application, Azure AD collects and securely stores user names and passwords for the application. User credentials are stored in an encrypted state in the directory.
Hence, once the user credential password is changed for the Application, the password would need to be updated to Azure AD - where you go to the MyApps Portal and update the new password.

一旦密码过期，是否有一种方法可以强制用户使用弹出式窗口更新凭据?
因此，这是不可能的.

Is there a way to force the user to update credentials with a popup for their password once the password expires?
Hence this is not possible.

这篇关于单点登录的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！