混合身份验证方案-Azure AD B2C和Azure AD [英] Hybrid authentication scenario - Azure AD B2C and Azure AD

问题描述

在这种情况下，我们必须通过Azure AD对公司用户进行身份验证，而必须通过Azure AD B2C对外部用户进行身份验证-全部来自同一登录屏幕.

I have this scenario where we have to authenticate corporate users via Azure AD, but the external users via Azure AD B2C - all from the same login screen.

有一些Web应用程序将共享此功能.这些应用程序来自各种技术堆栈，从.Net到Java-Spring + Angular 2.

There are a few web applications which will share this capability. The applications come from various technology stacks, ranging from .Net to Java-Spring + Angular 2.

您为此建议的方法是什么? 抱歉，如果已经提出并回答了这个问题，但找不到太多指导. MSAL库会解决这个问题吗?此外，还没有Java的MSAL实现. Azure AD B2C Premium是否支持此功能?

What is your recommended approach for this? Apologies, if this question has already been asked and answered, but couldn't find much guidance on this. Will MSAL library solve this? Besides, there aren't any MSAL implementation for Java yet. Will Azure AD B2C Premium support this?

提前感谢您的帮助！

推荐答案

这时，您唯一的选择是实现对Azure AD&在您的应用程序中独立地使用Azure AD B2C.您必须要求用户在两个身份提供者之间进行选择，然后调用正确的身份提供者.

At this time your only option is to implement support for both Azure AD & Azure AD B2C independently in your applications. You must ask the user to select between the two identity providers, and then invoke the correct one.

计划在Azure AD B2C中添加对作为身份提供者的Azure AD组织用户的支持，此时将不需要进行两次集成.但是这种功能并不是在不久的将来.

There are plans to add support for Azure AD org users as an identity provider in Azure AD B2C, at which point two integrations will not be necessary. However that capability isn't in the near future.

我就如何在.NET应用程序中同时支持这两者提供了一些指导，也许会让您走上正确的路: https://github.com/dstrockis/AAD-B2C-Hybrid

I slapped together a bit of guidance on how to support both in a .NET application, perhaps that will get you on the right track: https://github.com/dstrockis/AAD-B2C-Hybrid

这篇关于混合身份验证方案-Azure AD B2C和Azure AD的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！