I’m currently testing the Microsoft Azure and SharePoint 2013 ability.
In our office, we have an Office 365 account, and I have created a Azure 30-days trial subscription. I have connected those two, so our Office 365 users are visible in Azure AD.
We need to install a virtual server with SharePoint installed on it, with access to a SQL server in Azure as well.
Is it possible to use the Azure AD as authentication for SharePoint users?
If possible, we would like to avoid installing an On-premises AD in Azure. We simply need the authentication for our SharePoint users, so we can keep everything in the cloud, without Site to site VPN to our in house AD.
I am aware, that the virtual machine in Azure with Sharepoint on it, will run in a Workgroup, but I have a hard time figuring out, how I can access the Azure AD to lookup users. I don’t know if this is possible.
Best regards
Christian
Related
I've encountered various information on the topic of Azure and SSO and am trying to find out what I'd need for my specific scenario:
I deploy SQL Server and SSRS 2016 on an Azure VM (native mode)
I also have O365 including SharePoint Online
I need users to be able to transition seamlessly between SharePoint Online and other O365 apps and the SSRS reports.
SSO with on-premise AD is a plus but not necessary. What is the bare minimum that I'd need for the scenario above?
Azure AD
Azure AD with Seamless Single Sign-On enabled (requires rolling out
Microsoft Workplace Join to client computers)
Azure AD + ADFS
I planning for Power BI Implementation for one of the customers (With 800 Users), they do not have azure subscription nor Azure AD! How shall I get it started? Do I need to ask the customer to Subscribe to Azure? Will the free-tier of Azure AD work? What all the pre-requisites, Please help me
Azure active directory subscription comes for free if you have a paid azure, office 365 , Dynamics CRM subscriptions. You can go register for it and use it.
If the company already uses office 365 then it is quite easy to integrate with powerbi apps.
If azure active directory is the option you can add users or sync local AD users and integrate with Powerbi. You can also setup ADFS for a single sign-on option.
https://powerbi.microsoft.com/en-us/blog/azure-active-directory-and-power-bi/
https://technet.microsoft.com/en-us/library/dn832618.aspx
I have a new Office 365 Small Business subscription and am wondering how best to synchronize contacts with a custom in-house database application.
I have found material explaining how to access the underlying technology, Azure Active Directory with the a library called the Azure Active Directory Graph Client Library.
However, to my knowledge I don't have an Azure Management Portal for the Azure technologies underlying Office 365, and that's where I would normally register my application for API access according to those tutorials.
So, if I want to access the Azure Active Directory in my Office365 account with the Azure Active Directory Graph Client Library, where do I register the application, get my key - and to which host do I connect to?
Office 365 uses Azure Active Directory as identity management, so it is already there. To access Windows Azure portal for your existing Office 365 subscriptions all you need is to activate a free Windows Azure subscription on your existing account .
This blog Using your Office 365 Azure AD tenant with application access enhancements for Windows Azure AD gives a very detailed steps on how to do it.
we have a vm in azure with AD + a SharePoint 2013 that joined that domain.
We have also an Office 365 account with a domain. This domain is added to the Active Directory in Azure.
Now we can see all of our 30 office 365 users in Azure.
Now we need to sync this office 365 users to the VM in azure that runs the AD.
We need a single sign on solution that our office 365 users can log on with there office 365 credentials to the SharePoint 2013 Server.
Is this possible? When Yes, how?
Regards!
You can accomplish this using the Directory Integration feature of Windows Azure AD. From the Azure Portal, enable Directory Integration for your directory and then download the Directory Sync tool. This will enable you to sync between your Azure AD Tenant and your Server AD running in your Virtual Machine.
It's recommended you configure a separate Directory Sync Server to install the tool on. But, it's also possible to just run it on your Server AD Virtual Machine. I've done it both ways successfully.
When you're installing the tool, select the option for Hybrid Deployment. This will enable Azure AD to write objects back to your Server AD.
I have a portal through which I resell different vendor's software licenses. I have a question on Office 365 provisioning and selling user licenses to my clients.
My requirement is as follows:
User should be able to log in through my portal and create their Office 365 user account and choose plans as per their need
Through Single sign on (SSO) activity, I need to get the SSO Url, so Office 365 users already logged in to my portal do not require to log in again to their Office 365 account again
Users can update, cancel their Office 365 user accounts through my portal
I have researched on internet regarding Office 365 provisioning and found following ways to integrate Office 365 client application in my portal
Using ‘https://provisioningapi.microsoftonline.com/ProvisioningWebService.svc?wsdl’ WebService, this WebService has got all required APIs to provision Office 365. could not find any documentation for this WebService on the web. It would be nice if I can get documentation of this webservice.
Using PowerShell Cmdlets. Most blog users suggest this as the best way for provisioning Office 365. I tried this but need a Partner account or Tenant Administrator account who can actually provision users
Am I moving towards the right direction? If I need to test how to provision Office 365 users within my environment can I get any test/dummy tenant administrator/partner user account? It would be nice if you can answer my questions little fast.
If you're interested in reselling Office 365 subscriptions, what you want is probably to become part of the Microsoft Partner Network. There is currently no method to programmatically provision Office 365 accounts (except for -maybe- Microsoft resellers/partners)
If the Office 365 account exists already, you can programmatically provision users, groups, subscriptions, etc., but as you've seen, you either need to be a partner (who provisioned that account in the first place), or a tenant administrator.
As far as programmatic access to Azure Active Diretory (the underlying identity system that Office 365 accounts use), I strongly recommend staying away from the web service you mention (it's simply the web service used by the AAD cmdlets). You can use the PowerShell cmdlets (from .NET code if needed), or even better, the Azure Active Directory Graph API for a web-friendly RESTful interface.