Active Directory Integration with Identity Server #1189
Comments
|
The appropriate way to integrate with "Active Directory" depends on if you are referring to Azure AD or a traditional Active Directory (on prem)? To integrate Azure AD with IdentityServer, you add the microsoft authentication handler, configure it, and then invoke the external authentication process by challenging the handler's scheme. To integrate with on prem Active Directory, one option is to use Windows Authentication (appropriate on an intranet where everything is joined to a windows domain). Alternatively, your login page could take in the username and password, and check those credentials against active directory using LDAP. Fundamentally, however you authenticate the user, the ultimate job of the login page is to issue the IdentityServer session cookie and redirect back to the IdentityServer middleware. From the point of view of the IdentityServer engine, the storage of users and validation of their credentials is just an implementation detail of the login page. Microsoft has lots of resources on Active Directory. Here are some to get you started:
|
|
I'm assuming Joe's comment helped so closing for now. Feel free to re-open if you have something else around this issue. |
We are planning to use the latest version of duende identity server.
.Net 6.0
We would like to integrate with Active Directory and do the password management UI for the same.
Please suggest a better approach how we can access the Active Directory to validate the credentials and set the credentials if user reset their password.
The text was updated successfully, but these errors were encountered: