Azure Active Directory (Azure AD) is Microsoft’s cloud-based identity and access management service, which helps your employees sign in and access resources. miniOrange provides a solution where existing identities in Azure AD can be leverage for Single Sign-On into different cloud and on-premise applications. Azure Active Directory supports standard authentication and authorization protocols such as LDAPS, SAML 2.0 and OAUTH 2.0.
SSO into different VPN application.
Employees of organization are able to log into a VPN that supports Radius (OpenVPN, Fortinet, Palo Alto, etc) using their Azure Active Directory Credentials
Two Factor Authentication.
Two factor authentication is used to log in into various application using your Active Directory Credentials as the first factor and and OTP as a second factor on the Application Side.
SSO into Office 365 Applications using Azure Active Directory Credentials
Here Azure Active directory acts as an Identity Provider to Single Sign on into different Office 365 Applications where miniOrange IdP acts as a broker.
Settings | Value |
---|---|
Source | Any |
Source port ranges | * |
Destination | Any |
Destination port ranges | 636 |
Protocol | TCP |
Action | Allow |
Priority | 401 |
Name | AllowLDAPS |
Settings | Value |
---|---|
Source | IP Addresses |
Source IP addresses / CIDR ranges | Valid IP address or range for your environment. |
Source port ranges | * |
Destination | Any |
Destination port ranges | 636 |
Protocol | TCP |
Action | Allow |
Priority | 401 |
Name | AllowLDAPS |
<Secure LDAP external IP address>ldaps.<domainname>
Replace <Secure LDAP external IP address> with the IP we get from azure portal and replace
<domainname> with the domain name for which the certificate was created.(Value used in $dnsName)
Eg: 99.129.99.939 ldaps.exampledomain.com
Field | Value |
---|---|
LDAP display name | Any string that displays on this entry |
LDAP Identifier | Unique identifier that identifies this specific entry |
Directory Type | Active Directory |
LDAP Server URL | Select ldaps:// as the pre filler followed by the domain entry added in the host file during configure DNS for external access. Eg: ldaps://ldaps.exampledomain.com |
Bind Account DN | UserPrincipalName of the account eligible for binding operation. |
Bind Account Password | Password for the account used for binding |
Search Base | Provide distinguished name of the Search Base object Eg:cn=User,dc=domain,dc=com |
Search Filter | Search filters enable you to define search criteria and provide a more efficient and effective searches. Eg: "(&(objectClass=*)(cn=?))" |
Domain Name | Semi-colon separated list of domain. Eg: miniorange.com |
LDAP Attribute List | Semi-colon separated list of attributes. Eg: cn;mail;givenName |
miniOrange provides 24/7 support for all the Secure Identity Solutions. We ensure high quality support to meet your satisfaction.
Try Nowminiorange provides most affordable Secure Identity Solutions for all type of use cases and offers different packages based on customer's requirement.
Request A QuoteWe offer Secure Identity Solutions for Single Sign-On, Two Factor Authentication, Adaptive MFA, Provisioning, and much more. Please contact us at -
+1 978 658 9387 (US) , +91 77966 99612 (India) | info@xecurify.com