May 03 2021
12:08 PM
- last edited on
Jan 14 2022
03:27 PM
by
TechCommunityAP
May 03 2021
12:08 PM
- last edited on
Jan 14 2022
03:27 PM
by
TechCommunityAP
My company has 2 different application on different tenants and they want to use single sign-on with company login to these 2 applications. All application has their own AD app registrations and they can work well seperatly. How can we build a signle sign-on system?
So when they login www.company.com, they don't need to login www.app1.com and www.app2.com.
May 03 2021 12:43 PM - edited May 03 2021 12:47 PM
Hi
You can configure your application to accept sign-ins from any Azure Active Directory (Azure AD) tenant. Making your application multi-tenant will allow users in any Azure AD tenant to be able to sign in to your application after consenting to use their account with your application.
You will need to do that by updating your app and the link below can provide guidance :
https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-convert-app-to-be-multi-tenant
Another way would be to consider users from the other tenant as guests and leverage Azure AD B2B
https://docs.microsoft.com/en-us/azure/active-directory/external-identities/what-is-b2b