Cloud Deployment using B2B only accounts to authenticate

%3CLINGO-SUB%20id%3D%22lingo-sub-1780733%22%20slang%3D%22en-US%22%3ECloud%20Deployment%20using%20B2B%20only%20accounts%20to%20authenticate%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1780733%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20been%20round%20the%20houses%20with%20this%20query%20and%20still%20none%20the%20wiser.%20I%20am%20hoping%20someone%20here%20may%20be%20able%20to%20help.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20have%20a%20central%20cloud%20which%20has%20been%20stood%20up%20specifically%20for%20a%20project.%20This%20cloud%20acts%20as%20a%20central%20source%20for%20all%20project%20information%20and%20systems.%20The%20high-level%20architecture%20shows%20all%20connecting%20to%20it%20do%20so%20by%20using%20a%20B2B%20account%2C%20which%20is%20great%20when%20accessing%20365%20SaaS.%20We%20have%20explored%20deploying%20services%20into%20Azure%20and%20have%20come%20up%20against%20authentication%20issues%20when%20trying%20to%20access%20PaaS%20or%20IaaS%20components%20(SQL%20managed%20instance%20or%20Azure%20files).%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20have%20no%20synchronisation%20with%20any%20on-prem%20AD%2C%20as%20this%20is%20a%20cloud%20only%20deployment%2C%20and%20the%20only%20people%20with%20cloud%20accounts%20are%20administrators.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDoes%20anyone%20know%20if%20it%20is%20possible%20to%20somehow%20authenticates%20to%20these%20PaaS%20and%20IaaS%20components%20using%20a%20B2B%20account%3F%20Are%20there%20any%20solutions%2C%20even%20if%20the%20solution%20is%20to%20deploy%20a%203rd%20party%20tool%20to%20manage%20the%20guest%20accounts%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAny%20help%20is%20appreciated.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1780733%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAccess%20Management%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EAzure%20AD%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EB2B%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EEMS%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIdentity%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1781308%22%20slang%3D%22en-US%22%3ERe%3A%20Cloud%20Deployment%20using%20B2B%20only%20accounts%20to%20authenticate%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1781308%22%20slang%3D%22en-US%22%3E%3CP%3EB2B%20can%20be%20used%20for%20PaaS%20and%20IaaS%2C%20below%20are%20some%20walkthroughs%2C%20these%20do%20match%20to%20your%20exact%20scenario%2C%20but%20should%20give%20you%20an%20idea.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.linkedin.com%2Fpulse%2Fazure-sql-active-directory-authentication-b2b-support-ankur-mittal%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fwww.linkedin.com%2Fpulse%2Fazure-sql-active-directory-authentication-b2b-support-ankur-mittal%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fblog.nillsf.com%2Findex.php%2F2019%2F12%2F20%2Fsharing-blob-storage-with-azure-ad-b2b-guests%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fblog.nillsf.com%2Findex.php%2F2019%2F12%2F20%2Fsharing-blob-storage-with-azure-ad-b2b-guests%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Contributor

Hi,

 

I have been round the houses with this query and still none the wiser. I am hoping someone here may be able to help.

 

We have a central cloud which has been stood up specifically for a project. This cloud acts as a central source for all project information and systems. The high-level architecture shows all connecting to it do so by using a B2B account, which is great when accessing 365 SaaS. We have explored deploying services into Azure and have come up against authentication issues when trying to access PaaS or IaaS components (SQL managed instance or Azure files).

 

We have no synchronisation with any on-prem AD, as this is a cloud only deployment, and the only people with cloud accounts are administrators.

 

Does anyone know if it is possible to somehow authenticates to these PaaS and IaaS components using a B2B account? Are there any solutions, even if the solution is to deploy a 3rd party tool to manage the guest accounts?

 

Any help is appreciated.

 

1 Reply
Highlighted