Help with Active Directory Terminology
-
I am a little out of the loop with Active Directory terminology. I would like to update an internal application to have it authenticate a user to Active Directory as lightweight as possible. I just need to be able to send a user name and password, and return a true or false if the password is correct. What is type of authentication this called, and does the new Active Directory in Azure support it, or is it to internal Domain Controllers only?
-
The short answers are "authentication" is the term and Azure AD does support it: https://docs.microsoft.com/en-us/azure/active-directory/develop/authentication-scenarios. There are longer answers, but it is dependent on the application and your level of control over it.
-
@Kelly said in Help with Active Directory Terminology:
The short answers are "authentication" is the term and Azure AD does support it: https://docs.microsoft.com/en-us/azure/active-directory/develop/authentication-scenarios. There are longer answers, but it is dependent on the application and your level of control over it.
The application is mine, so I have complete control. I just see most modern applications are wanting to use single sign on. I don't need it to be that heavy, I am just wanting to use current AD password as a quick confirmation that a person on a shared device is who they say they are in that moment.
-
There are some libraries created by MS for Azure AD authentication using OAuth: https://docs.microsoft.com/en-us/azure/active-directory/develop/reference-v2-libraries. I am not a developer, nor do I play one on TV, so I can't give more than generalities however.
-
I'm pretty sure that Azure AD and local AD use different tech to get the job done. So if you want both, you'll have to program it twice.
-
@s-hackleman said in Help with Active Directory Terminology:
What is type of authentication this called, and does the new Active Directory in Azure support it....
AD on Azure is just AD, plain and simple. But Azure AD is not AD at all, it's Azure AD, a competitor for AD. Your question implies you meant the one that you didn't say.
-
@Dashrender said in Help with Active Directory Terminology:
I'm pretty sure that Azure AD and local AD use different tech to get the job done. So if you want both, you'll have to program it twice.
Correct, similar names, nothing else really in common.
-
@s-hackleman said in Help with Active Directory Terminology:
I am a little out of the loop with Active Directory terminology. I would like to update an internal application to have it authenticate a user to Active Directory as lightweight as possible. I just need to be able to send a user name and password, and return a true or false if the password is correct. What is type of authentication this called, and does the new Active Directory in Azure support it, or is it to internal Domain Controllers only?
For AD and other LDAP it would be LDAP authentication while for Azure AD you would use something like this
https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/developer-guidance-for-integrating-applications -
@scottalanmiller said in Help with Active Directory Terminology:
@Dashrender said in Help with Active Directory Terminology:
I'm pretty sure that Azure AD and local AD use different tech to get the job done. So if you want both, you'll have to program it twice.
Correct, similar names, nothing else really in common.
Learning! Ok I have been out of the loop for a few years. So I just wrongly assumed that Azure AD was just moving a local AD server to the Azure cloud.
-
@s-hackleman said in Help with Active Directory Terminology:
@scottalanmiller said in Help with Active Directory Terminology:
@Dashrender said in Help with Active Directory Terminology:
I'm pretty sure that Azure AD and local AD use different tech to get the job done. So if you want both, you'll have to program it twice.
Correct, similar names, nothing else really in common.
Learning! Ok I have been out of the loop for a few years. So I just wrongly assumed that Azure AD was just moving a local AD server to the Azure cloud.
That would be correct. You can setup a Windows Server in a VM in the Azure cloud, and use VPN to have it be part of your local AD, but I have no idea how many people actually do that.
-
@s-hackleman said in Help with Active Directory Terminology:
@scottalanmiller said in Help with Active Directory Terminology:
@Dashrender said in Help with Active Directory Terminology:
I'm pretty sure that Azure AD and local AD use different tech to get the job done. So if you want both, you'll have to program it twice.
Correct, similar names, nothing else really in common.
Learning! Ok I have been out of the loop for a few years. So I just wrongly assumed that Azure AD was just moving a local AD server to the Azure cloud.
That only would be possible on a Hybrid environment with Azure AD connect (and it is partial sync)
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-hybrid-identity -
@s-hackleman said in Help with Active Directory Terminology:
@scottalanmiller said in Help with Active Directory Terminology:
@Dashrender said in Help with Active Directory Terminology:
I'm pretty sure that Azure AD and local AD use different tech to get the job done. So if you want both, you'll have to program it twice.
Correct, similar names, nothing else really in common.
Learning! Ok I have been out of the loop for a few years. So I just wrongly assumed that Azure AD was just moving a local AD server to the Azure cloud.
That's "AD on Azure" which many of us have done as well.
-
I think it is LDAP autherntication
You can use PHP LDAP like in Drupal project and bind to AD and can authenticate against it and login AD users
-
@Emad-R said in Help with Active Directory Terminology:
I think it is LDAP autherntication
You can use PHP LDAP like in Drupal project and bind to AD and can authenticate against it and login AD users
AD uses LDAP, Azure AD does not.
-
Tags added.
-