Microsoft O365 with Shib IDP
Hong Ye
hy93 at cornell.edu
Tue Nov 3 17:55:20 UTC 2020
Thanks Rob! That’s very helpful.
Hong
From: users <users-bounces at shibboleth.net> on behalf of Rob Gorrell via users <users at shibboleth.net>
Reply-To: Shib Users <users at shibboleth.net>
Date: Tuesday, November 3, 2020 at 12:11 PM
To: Shib Users <users at shibboleth.net>
Cc: Rob Gorrell <rwgorrel at uncg.edu>
Subject: Re: Microsoft O365 with Shib IDP
UW captured a pretty good comparison:
2FA options analysis for O365/AAD - Microsoft Infrastructure - UW-IT Wiki (washington.edu)<https://wiki.cac.washington.edu/pages/viewpage.action?pageId=88119974>
but the short of it is, yes, there will be certain things you give up (especially in the endpoint device arena) available to local auth/ADFS that aren't possible with SAML federation. This is one of the reasons we moved from Shibboleth federation with Azure to password hash sync.
-Rob
On Tue, Nov 3, 2020 at 11:04 AM Hong Ye <hy93 at cornell.edu<mailto:hy93 at cornell.edu>> wrote:
Hello,
We are considering switching O365 login from ADFS to Shibboleth IDP. We don’t know if this change will break authentication to Microsoft Intune and Microsoft Mobile device management. Does anyone have experience with that?
Thanks,
Hong Ye
Identity Management
Cornell University
--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net<mailto:users-unsubscribe at shibboleth.net>
--
Robert W. Gorrell
IT Manager, Identity and Access Management
University of NC at Greensboro
336-334-5954
PGP Key ID B36DB0CA
https://orcid.org/0000-0003-0158-8187
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20201103/42441d0f/attachment.htm>
More information about the users
mailing list