Microsoft AzureAuthentication & SSO
Many organizations use Microsoft Active Directory as their method of authenticating users and authorizing their access to network resources. When resources hosted on Microsoft Azure are introduced to the application infrastructure, there is a need to expand the corporate Active Directory to the Azure services and still provide secure authentication, authorization, and single sign-on across all applications and services. The free Azure Kemp LoadMaster can help with this in two ways.
If Azure Active Directory Domain Services are in use then LoadMaster for Azure can be used to authenticate users directly in the federated Active Directory and provides authorization and single sign-on to Azure resources via the users Active Directory accounts. From a user’s point of view they simply logon to the network and have seamless access to applications without having to care where they are hosted or logon to them separately.
If Azure Active Directory Domain Services are not in use then LoadMaster with the Edge Security Pack (ESP) can provide single sign-on, pre-authentication, and the ability to provide access to applications in Azure via resource groups. ESP delivers an integrated solution for web application security. In much the same way as Microsoft’s Threat Management Gateway (TMG) provided protection and authentication services, ESP can be deployed to protect any Internet facing application on Azure or elsewhere, and to support enhanced authentication schemes such as two factor authentication.