Base solution for your next web application
Open Closed

Multiple ADs authorization/authentication using openid #10194


User avatar
0
ASPNetZero.SERD created
  • What is your product version? v10.2.0
  • What is your product type (Angular or MVC)? Angular
  • What is product framework type (.net framework or .net core)? .net core

Hi, We had setup one openid with one Active Directory(AD) and authenticating/Authorizing all users through it.

  1. Is there a way to authenticate/authorize users through multiple ADs using openid (some users through one AD and some users through other AD) ? Please guide us.

  2. What are other types of Active Directories does ASP.NetZero supports using Openid?


4 Answer(s)
  • User Avatar
    0
    ismcagdas created
    Support Team

    Hi @ASPNetZero.SERD

    Is there a way to authenticate/authorize users through multiple ADs using openid (some users through one AD and some users through other AD) ? Please guide us.

    With current implementation, this is only possible for each tenant. For example, you can authenticate users of Tenant1 using AD Provider 1, and for Tenant2 you can use AD Provider 2. But, you can't use different AD providers for users of a Tenant or Host.

    Each tenant can configure its own OpenID Connect settings in the settings page.

    What are other types of Active Directories does ASP.NetZero supports using Openid?

    AspNet Zero doesn't have a limitation here. We have tested the current implementation with Azure AD and Office 365 AD. If you face any problem with a different provider, please let us know.

  • User Avatar
    0
    ASPNetZero.SERD created

    Hi, Thanks for your response. Can you please guide us for below concerns?

    1. We need to configure multiple tenants for our application. Can we maintain one or more Azure AD details(open id configurations) of tenants  in one settings page(AppSettings.Json)? So my application can take all tenant's AD providers credentials beased on the issuer at the time of login. Is such mechanism available?
    
    1. Does LDAP authentication work only in onpremises network? How can we enabale LDAP authentication if my application is deployed in Azure as azure web app?
  • User Avatar
    0
    ismcagdas created
    Support Team

    Hi,

    1. When you enable https://github.com/aspnetzero/aspnet-zero-core/blob/dev/aspnet-core/src/MyCompanyName.AbpZeroTemplate.Web.Host/appsettings.json#L21, each tenant can manage its own OpenID connect settings on settings page. You can change this behaviour and read settings from appsettings.json but current implementation provides a more flexible way by reading those settings from AbpSettings database table.
    2. If your app can access the LDAP server, you can use it on Azure, sure. You can enable it as explained in here https://docs.aspnetzero.com/en/aspnet-core-angular/latest/Features-Angular-Active-Directory
  • User Avatar
    0
    ASPNetZero.SERD created

    Hi, Thanks for your response.