How to authenticate local application users against Office365/Azure AD using APM?
Hi,
I have a customer who wants to authenticate users before let them access to a local application. The problem here is that they want to authenticate these users against Office365/Azure AD (using Office365 account credentials), because local AD is not synchronized with Azure AD and they don't want to synchronize one with one another. Updated users are in Office365. I know that this can be accomplished with ADFS, but the customer wants to use some additional features from APM, like IP Geolocation, CAPTCHA, OTP...
The process is as follow: 1. User access to the application url owned by the APM (e.g. https://myAPP.com) 2. APM validates the user source IP with IP Geolocation 3. If the user comes from a allowed country, a logon page is presented with username and password fields. 4. APM authenticates user against Office365/Azure AD as AAA Server. 5. If authentication is succesfull, APM lets the user access the Web Application using rewriting profile.
How can I configure APM to authenticate users using Azure AD as AAA server? Is it possible? I looked for in DevCentral if there is any solution using SAML, but when APM is the IdP, all the solutions use a local AD for authentication and in my case, the AD is Office365/Azure AD. Can anybody help me?
Thank you in advanced, Sergio