IT teams exploring the native capabilities of Azure® Active Directory® (Azure AD or AAD) may wonder if they can use Microsoft’s cloud-based identity management platform to authenticate users to their systems.
Below, we’ll outline Azure AD’s effectiveness in authenticating to the three major operating systems: Windows®, macOS®, and Linux®. We’ll also cover options for admins looking for a cloud identity provider that authenticates user credentials to the on- and off-premises resources they commonly employ.
Azure AD Methods for Authentication
Authentication is the process of making sure users are who they say they are, and it’s vital for protecting sensitive information.
Microsoft further developed this idea of authN through their on-prem directory service, Active Directory (AD), which is still widely used today. It provides administrators with a tool that protects their Windows-based systems, configures security settings, connects to file servers and printers, and more. AD works well for on-prem, Windows-centric environments since Microsoft’s system management capabilities (which include command scripts called group policy objects) effectively govern the entirety of an organization’s systems.
However, following the rise of macOS and Linux machines in the modern workplace, system management now needs to address cross-platform authentication, with group policies for those disparate machines. As a result, IT teams have been considering Azure AD to authenticate AD credentials to systems outside the Windows domain.
Unfortunately, Azure AD’s system authentication properties only apply to Windows 10 Pro. When paired with legacy directory service Active Directory, AAD can authenticate to a wider range of Windows systems, but it still doesn’t effectively manage macOS and Linux machines.
So, for organizations operating with a strictly Windows-based infrastructure, this type of Microsoft hybrid environment may be an ideal choice, but just keep in mind that this option can ultimately prove to be quite costly and difficult to maintain. Azure AD and AD require additional components to fully service an organization’s needs, and the maintenance of Microsoft’s identity providers may prove too costly for organizations with tight budgets.
Ultimately, the allure of cloud infrastructure is that it removes the need for IT (Read more…)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Kayla Coco-Stotts. Read the original post at: https://jumpcloud.com/blog/aad-to-auth-systems
Reference:https://securityboulevard.com/2020/06/using-azure-ad-to-authenticate-to-systems/
