Is it possible to use Azure Active Directory authentication with an intranet website?
I have a website that is only going to be available on my local network. I do not want this to be public. However, when I perform a test login using AAD and OAuth2 it wants to perform a redirect to a specific URL. Is it possible to do what I want or does this only work for public facing websites?
Related
I have a "public" website deployed on azure. I want to get access only from a limited number of authorized tester persons.
I cannot use ip restriction because all of us have dynamic ip and we are dislocated all over the world.
Here the solution I have adopted, but I am not confindet is the correct.
I have enabled authentication.
I have also created users in active directory and added to my application:
Everything works. Now, before access to the website, people must login.
But... what I do not like is that people can access to portal azure with the email I have authorized on active directory. They do not see anything, but they can access into that directory. is there a way to avoid this?
Does exists a better solution to restrict access to my website?
Thank you
You can restrict access to Azure Portal with Azure AD conditional access
https://learn.microsoft.com/en-us/azure/role-based-access-control/conditional-access-azure-management
https://learn.microsoft.com/en-us/answers/questions/112173/can-we-restrict-azure-portal-httpsportalazurecom-a.html#:~:text=Yes%2C%20we%20can%20restrict%20access,Azure%20AD%20Premium%20P1%20License.&text=as%20shown%20below%3A-,Navigate%20to%20Azure%20Portal%20%3E%20Azure%20Active%20Directory%20%3E%20Security%20%3E%20Conditional,and%20Groups%20%3A%20Select%20required%20users.
Our websites in the west us region are not available. We're trying to access them using our custom domain but we can't access.
When we are using azure website default domain(.azurewebsites.net), we can access our websites. All websites domain configuration and dns redirection are correct. Is there a problem caused by Azure?
I understand that you are able to access Azure Website using but you are unable to access the same using Custom Domain
<WebsiteName>.azurewebsites.net
You might want to re-check the steps followed in creating Custom Domain by following the below link
http://azure.microsoft.com/en-us/documentation/articles/web-sites-custom-domain-name/
I created few web applications for the one app service plan. For all these apps I am seeing one FTP url. Issue is that when I go to the URL, I can see one "Site/wwwroot" folder which only shows one application.
Isn't is possible to access FTP of other web applications?
All applications works fine. I don't understand how this FTP is being created. If it's showing just one application in FTP, what criteria is based on that? I am seeing the 1st application based on the alphabetical order.
The FTP Url is same for all the sites in a stamp and will be same even if you create multiple app hosting plans as long as the hosting plans are in the same stamp. A stamp is a collection of servers and roles in a particular datacenter.
So how azure connects to the right site - the distinction here happens when you provide the user name for the site that you are trying to connect. The user name has the form sitename\$sitename when using publish credentials and has the form sitename\username when using deployment credentials and this name is used by app service to identify which site you are connecting to.
http://weblogs.asp.net/bleroy/azure-web-sites-ftp-credentials has more details.
Also read https://github.com/projectkudu/kudu/wiki/Deployment-credentials to understand difference between the two kind of credentials.
So just specify credentials in this way and you can connect to your sites using ftp.
Hope this helps
I have a website that is set up and running fine on Azure. However I can only seem to access it if I log in to my own Microsoft account. Is there any way to just allow all http traffic without requiring authentication?
Your site should be public accessible as long as you do not have any authentication setup.
e.g if your site is http://foo.azurewebsites.net, everyone should be able to visit your site.
if your question is to allow other people who do not have azure subscription to manage your site. you can assign Role permission to them see Azure Role-based Access Control for details
I have 2 web sites in my Azure account and I would like to access the second one via FTP, however, when I load up the FTP site I am getting the FTP area for the first site and I cannot see any data for my second site.
My first site is a straightforward web site, but the second is an Orchard template. I was expecting to see the Orchard folder structure when I accessed the FTP area but seems only the first site is accessible via FTP.
I have looked at other threads about setting up your own FTP but I would like to avoid doing that until it is absolutely necessary.
So my question: Does anyone know if the Orchard website, generated by Azure, is accessible via FTP, or to get access can I safely reset the credentials from the dashboard on the second website so it has its own FTP area via an individual set of credentials?
I believe the username you use for FTP should be <web site name>\<username>, so you should already have different credentials for the two sites. Can you confirm you're using the right credentials to try to access the Orchard site? Check the "deployment user" on the right-hand side in the portal and make sure you're using that.