Azure AD without ADFS
Admin IFMSA-Sweden
admin at ifmsa.se
Tue May 2 11:29:06 EDT 2017
> 2 maj 2017 kl. 17:18 skrev Peter Schober <peter.schober at univie.ac.at>:
>
> * Admin IFMSA-Sweden <admin at ifmsa.se> [2017-05-02 17:12]:
>> Is it possible to use Azure AD to ”federate” multiple Shibboleth
>> IdPs? We don’t have our own and we do not plant to use an
>> ADFS-server.
>
> Could you explain what it is you're trying to do/achieve?
> -peter
We have a portal for Dynamics 365 using multiple external identities for sign-in, e.g. Shibboleth IdP and ADFS. More info regarding the SP can be found here: https://www.microsoft.com/en-us/dynamics/crm-setup-and-administration/set-authentication-identity-for-a-portal.aspx <https://www.microsoft.com/en-us/dynamics/crm-setup-and-administration/set-authentication-identity-for-a-portal.aspx>
We have not found this portal to be capable to consume Shibboleth IdP Federation with IdP Discovery Service which requires signing of keys and certificates. Even though we are still trying to find ways to connect through Shibboleth IdP Discovery Service (i.e. Proxy IdP), we look at same time other ways to achieve almost the same result (can this be done with Azure AD). (For ADFS IdPs this can theoretically be achieved with Microsoft ACS/AccessControlService for WS-compatible STSs, however, ACS is to be replaced with Azure AD, I assume).
Anyways, a little bit confusing situation. We are trying to find guidance and direction as well as solutions for his problem.
Many thanks and regards
Mats
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20170502/95d5d4ac/attachment.html>
More information about the users
mailing list