Integrate Microsoft NPS with Azure Active Directoy

Similar Messages

• How to integrate  microsoft outlook with WebAS

  how to integrate  microsoft outlook with WebAS

  Nibu,
  I guess users enumerated enough options in your original thread on different forum: Integration of Web AS and Microsoft OutLook and there is no need for cross-posting
  VS

• How to integrate Microsoft Calendar with Spaces

  how to integrate Microsoft Calendar with Spaces

  Najeeb, the steps mentioned in the guide are related to integration of Microsoft Exchange Calendar not Outlook Calendar. I was assuming that you are interested in integration of Outlook Calendar using desktop connector similar to connector for MS. word, MS.excel and MS.powerpoint.
  How to integrate Group Space Events To Outlook Group Calendars [ID 1117746.1]

• Integrate Microsoft sharepoint with BW

  Dear experts:
     I'd like to integrate Microsoft sharepoint with BW directly, could you provide me some documents about it , thanks.
  Eric

  Hi Eric,
  additional check this links:
  [SQL Serveru2019s Business Intelligence (BI) capabilities|http://download.microsoft.com/download/E/D/F/EDF235B0-3FFD-468D-BD29-2F33ADB4BC0C/SQL_SAPBW_Datasheet.pdf]
  [SAP BI for SharePoint Portals|https://portal.erp-link.com/sites/erpl_solutions/Solutions/Solutions%20library/iNetBIViewer.aspx]
  WebPart: iNet.BI Viewer, an add-on component for ERP-Linku2019s iNet.BI, presents SAP information and actionable business intelligence to knowledge workers within interactive, graphical views in SharePoint portals.
  Search for "[WSRP|http://www.cmswire.com/cms/portal/microsoft-releases-sharepoint-web-parts-for-sap-and-web-services-integration-000403.php] Web Part Toolkit for Sharepoint Products and Technologies for SAP iViews" to integarte Netweaver-iViews.
  [Microsoft Business Intelligence on SAP NetWeaver data|http://download.microsoft.com/download/3/3/9/339550a1-c0f7-4299-adbf-67ca0e8a413e/SAP%20MS%20BI.pdf]
  Regards
  Andreas

• Integrate Microsoft Orchestrator with LANDesk

  Hi,
  Is there any integration pack to integrate Orchestrator 2012 with LANDesk or can we do something via Web Services..?
  Regards,
  Soundarajan.

  Hi Eric,
  additional check this links:
  [SQL Serveru2019s Business Intelligence (BI) capabilities|http://download.microsoft.com/download/E/D/F/EDF235B0-3FFD-468D-BD29-2F33ADB4BC0C/SQL_SAPBW_Datasheet.pdf]
  [SAP BI for SharePoint Portals|https://portal.erp-link.com/sites/erpl_solutions/Solutions/Solutions%20library/iNetBIViewer.aspx]
  WebPart: iNet.BI Viewer, an add-on component for ERP-Linku2019s iNet.BI, presents SAP information and actionable business intelligence to knowledge workers within interactive, graphical views in SharePoint portals.
  Search for "[WSRP|http://www.cmswire.com/cms/portal/microsoft-releases-sharepoint-web-parts-for-sap-and-web-services-integration-000403.php] Web Part Toolkit for Sharepoint Products and Technologies for SAP iViews" to integarte Netweaver-iViews.
  [Microsoft Business Intelligence on SAP NetWeaver data|http://download.microsoft.com/download/3/3/9/339550a1-c0f7-4299-adbf-67ca0e8a413e/SAP%20MS%20BI.pdf]
  Regards
  Andreas

• I need to Integrate microsoft outlook with java application

  I need to integrate outlook express with java application
  can anyone help how should i proceed with that
  Thanks in advance

  I'm not sure that there is a generically understood
  meaning for the word. Why do people enjoy being nasty
  on these threads? I was just trying to get some more
  info to help the guy out. Aren't these forums around
  to help solve problems? Why not be positve?the humorous remark was not directed at you, but merely a commentary on the sheer magnitude of obtuse questions received here. i think it is positive, because it may enlighted those who intend to ask questions to better formulate theirs before submitting.

• Integrate Microsoft IE with Java!

  i have developed a speech synthesizer standalone application, and i want to integrate it with Microsoft IE,
  for example (i) A button that can be appeared at the tool bar of IE,
  It can pass the source of Html file to my program.
  (ii) and it should know which webpage to be processed if there are several webpages is running.
  Is that possible to implement it~~?
  thanks~~

  Write it as a plug-in, see msdn for details

• Integrate Microsoft FIM with Oracle HR System

  Hi everybody 
  I hope to find someone can help on the below scenario :
  actually I'm new on FIM and I'm Planning to install it and Configure it to be used with our Oracle HR System so what I need to know is the Limitation and Supported Scenario to be used with Oracle system for example is FIM system Support the integration with
  Oracle ? and if so what are the Limitation? what kind of information I have to know it from Oracle side before Start?.
  Thanks,
  Ahmed Ali

  Ahmed,
  FIM by-default provides a Oracle Connector. You can easily create MA by using it. Also, it is somewhat similar to SQL Connector in which while creating MA you have to enter the credentials along with the Table/View name which is having the Data. The columns
  present in the Table/View can be used by mapping them to attributes. I am sure if you have basic idea about provisioning in FIM from one source to another, then you will be able to achieve the same easily.
  You can refer to this link as help too :
  http://social.technet.microsoft.com/wiki/contents/articles/18548.fim-2010-r2-how-to-make-a-connection-to-oracle-database-11g.aspx
  Regards,
  Manuj Khurana

• Integrate your on-premises infrastructure with Azure

  Integrate your on-premises infrastructure with AzureIf you’ve experimented with Microsoft Azure, or are already using it for some of your IT functionality, you may be ready to take that next step and integrate your infrastructure with Azure so you can use it as an extension to your on-premises infrastructure. Finding all the information that helps you do this can be very time consuming. To help decrease the amount of time required to extend your datacenter to Azure, we’ve released the Datacenter extension reference architecture diagram, a static version is shown above.The diagram shows what a datacenter extension might look like, but it probably also leaves you wondering what everything in it is exactly, and why it’s in the diagram.What’s great about the diagram is that it’s interactive. You can click on every object in the diagram to...
  This topic first appeared in the Spiceworks Community

  Yes the current OneDrive for Business app for IOS supports logging in to on-premises SharePoint environments using NTLM or Forms based Authentication without requiring an office 365 account.  Check the FAQs here:
  http://blogs.office.com/2014/02/27/introducing-onedrive-for-business-for-ios-v1-2/
  Paul Stork SharePoint Server MVP
  Principal Architect: Blue Chip Consulting Group
  Blog: http://dontpapanic.com/blog
  Twitter: Follow @pstork
  Please remember to mark your question as "answered" if this solves your problem.

• How to authenticate Username and password in MVC using Azure Active Directory

  Need a sample application where in need to authenticate user entered logindetails using Azure Active directory.

  Hi,
  Kindly go through beneath article which helpful to understand the procedure.
  How to Authenticate Web Users with Azure Active Directory Access Control
  http://azure.microsoft.com/en-in/documentation/articles/active-directory-dotnet-how-to-use-access-control/
  Developing ASP.NET Apps with Windows Azure Active Directory
  http://www.asp.net/identity/overview/getting-started/developing-aspnet-apps-with-windows-azure-active-directory
  Adding Sign-On to Your Web Application Using Azure AD
  https://msdn.microsoft.com/en-us/library/azure/dn151790.aspx
  Hope it helps!
  Thanks.
  Dharmesh Solanki
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Help  - SPENGO - Microsoft SSO with WLS 9.2

  Friends,
  I am trying to integrate Microsoft SSO with WLS with SPENGO. I followed the steps given in http://edocs.bea.com/wls/docs92/secmanage/sso.html and even in 8.x documentation where I had to create a LDAP authenticator etc.
  However, instead of SPENGO token, I get the NTLM token. It looks like when Kerberos fails, WLS tries to invoke NTLM. But I am not sure where I am doing wrong. It would be great if someone could look at the following logs and suggest some workaround.
  <<WLS Kernel>> <> <> <1183957002830> <000000> <NegotiateIdentityAsserterServletAuthenticationFilter.doFilter() called>
  <<WLS Kernel>> <> <> <1183957002830> <000000> <CERT auth type found for webapp>
  <<WLS Kernel>> <> <> <1183957002830> <000000> <All request headers:>
  <<WLS Kernel>> <> <> <1183957002830> <000000> < Header: Accept : image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*>
  <<WLS Kernel>> <> <> <1183957002830> <000000> < Header: Accept-Language : en-us>
  <<WLS Kernel>> <> <> <1183957002830> <000000> < Header: UA-CPU : x86>
  <<WLS Kernel>> <> <> <1183957002830> <000000> < Header: Accept-Encoding : gzip, deflate>
  <<WLS Kernel>> <> <> <1183957002830> <000000> < Header: User-Agent : Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322)>
  <<WLS Kernel>> <> <> <1183957002830> <000000> < Header: Host : 10.31.252.182:7001>
  <<WLS Kernel>> <> <> <1183957002830> <000000> < Header: Connection : Keep-Alive>
  <<WLS Kernel>> <> <> <1183957002862> <000000> <Negotiate filter: new session, no negotiation has started>
  <<WLS Kernel>> <> <> <1183957002862> <000000> <PrincipalAuthenticator.getChallengeToken will use common security service>
  <<WLS Kernel>> <> <> <1183957002862> <000000> <com.bea.common.security.internal.service.ChallengeIdentityAssertionServiceImpl.getChallengeToken(WWW-Authenticate.Negotiate)>
  <<WLS Kernel>> <> <> <1183957002862> <000000> <com.bea.common.security.internal.service.ChallengeIdentityAssertionTokenServiceImpl.getChallengeToken(WWW-Authenticate.Negotiate)>
  <<WLS Kernel>> <> <> <1183957002862> <000000> <com.bea.common.security.internal.legacy.service.ChallengeIdentityAssertionProviderImpl$ChallengeIdentityAsserterV2Adapter.getChallengeToken(WWW-Authenticate.Negotiate)>
  <<WLS Kernel>> <> <> <1183957002862> <000000> <Unauthorized, sending WWW-Authenticate: Negotiate>
  <<WLS Kernel>> <> <> <1183957003268> <000000> <NegotiateIdentityAsserterServletAuthenticationFilter.doFilter() called>
  <<WLS Kernel>> <> <> <1183957003268> <000000> <CERT auth type found for webapp>
  <<WLS Kernel>> <> <> <1183957003268> <000000> <All request headers:>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: Accept : image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: Accept-Language : en-us>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: UA-CPU : x86>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: Accept-Encoding : gzip, deflate>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: User-Agent : Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322)>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: Host : 10.31.252.182:7001>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: Connection : Keep-Alive>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: Cookie : JSESSIONID=0nRcGRQKvcpzV8wQPVX584Pxwly4GrpTdQGGGYGGb4Z62Rs1GLVv!542382297>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < Header: Authorization : Negotiate TlRMTVNTUAABAAAAB7IIogoACgAvAAAABwAHACgAAAAFAs4OAAAAD0RFU0tUT1BGRURFUkFUSU9O>
  <<WLS Kernel>> <> <> <1183957003268> <000000> < processing header: Negotiate TlRMTVNTUAABAAAAB7IIogoACgAvAAAABwAHACgAAAAFAs4OAAAAD0RFU0tUT1BGRURFUkFUSU9O>
  <<WLS Kernel>> <> <> <1183957003283> <000000> <SPNEGONegotiateToken.discriminate: not Application Constructed Object, not SPNEGO NegTokenInit token>
  <<WLS Kernel>> <> <> <1183957003283> <000000> <Token not supported by Negotiate Filter, ignoring: NTLM>

  Another question.
  When you configure Spnego and sso, do you also need to configure an active directory authenticator ??
  I think I have the SSO part working - it does kerberos authentication and gets the username, howerver after taht it fails because it tries to do an LDAP authentication with that username.
  <LDAP Atn Login username: kerbuser01>
  <[Security:090300]Identity Assertion Failed: User kerbuser01 does not exist
  Any pointers ?

• Integrating Microsoft Lync with Web Applications

  Hi,
  Can you please tell, is it possible to integrate Microsoft Lync with the  web applications. If so, can you please tell how to proceed with it ?
  Thanks.

  Hi BarryBenson,
  I suggest that you post this on MSDN forum so
  that you can get More relevant information and help with the process. Sorry for any inconvenience this caused. Thanks for your understanding.
  https://social.msdn.microsoft.com/Forums/office/en-US/home?forum=ucmanagedsdk
  Best regards,
  Eric

• Getting AADSTS50020 error on microsoft login page when using Azure Active Directory Authentication

  We have implemented Azure Ad single sign on using auto generated code from Visual studio 2013 with organization account authentication and its working fine.
  The problem is when user is logged in in azure management portal with his live account and in other tab he try to open our app, then he directly gets below error on Microsoft login page.
  Additional technical information:
  Correlation ID: 78e13474-6f92-40ec-b463-91e36a6dae84
  Timestamp: 2015-04-14 12:27:20Z
  AADSTS50020:
  User account '[email protected]' from external
  identity provider 'live.com' is not supported for application
  'https://xxxxx.onmicrosoft.com/xxxx'. The account needs to
  be added as an external user in the tenant. Please sign out and sign in
  again with an Azure Active Directory user account.
  It works fine if I log out from management portal. Is there any way to resolve this issue without forcing user to log out from live account(management portal)?

  I assume you created a web application using VS2013 which uses the WS-Federation protocol.
  The behavior that you are seeing is expected Single-sign-on because you are logged in using the live account in the management portal.
  For WS-Federation, there is no current way for a caller to specify they want to force a fresh login, so the behavior is always the equivalent of LoginBehavior.Normal.
  The user will need to either sign-out or use an in-private session in the browse.
  If you switch to openID connect(sample at
  https://github.com/AzureADSamples/WebApp-OpenIDConnect-DotNet) and use the “prompt=login” query paramerter in the sign in request, this will force a fresh login.

• Tutorial: Azure Active Directory integration with Igloo Software

  Click reply and tell us what you think:
  Tutorial: Azure Active Directory integration with Igloo Software
  Markus Vilcinskas, Knowledge Engineer, Microsoft Corporation

  Hello
  Can you be little clear, what you have tested with Airwatch MDM cloud?.. which scenarios?.. 
  1) Device Enrollment ?
  2) Access to Airwatch console?
  3) Access to Airwatch self service portal?
  By following the steps We do not get it working at all. by the way some of the steps in this tutorial are unclear and outdated;  
  I finally personally figured out how things should look like, and  make it work but only with Device Enrollment scenarios from the mobile devices itself. not from the pc and browsers or from the Access panel.

• 802.1x MAB with Microsoft NPS ieee802Device object group

  Hi,
  according to http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6638/config_guide_c17-663759.pdf (MAC Authentication Bypass Deployment Guide as of May 2011), when you use Microsoft NPS, you cannot simply add MAC-Adresses as Active Directory user objects if your domain has strict password enforcement policies (because passwords are not allowed to match usernames under that circumstances). The guide mentions the use of the 'ieee802Device' class that is build into Windows Server 2003R2 and above. I have tried to get this working (with no success...), unfortunately I did not find any guidelines on the web how to accomplish this. What I did so far was:
  - Created a new structural class"myieee802Device", based on the abstract class "ieee802Device"
  - Created a new OU "ethers" in AD
  - Created a simple objekt by means of an ldifde.exe import
  dn: CN=001b21******,OU=ethers,DC=dot1x,DC=com
  changetype: add
  objectClass: myieee802Device
  cn: 001b21******
  macAddress: 00:1b:21:**:**:**
  When I trigger 802.1x authentication at a supplicant, NPS does not find the device (MAC-Address) in AD.
  Has anybody got this running so far?
  Stefan

  Stefan,
  Many thanks for your reply. in my test environment, what I have encountered is:
  1. I created the user account and used the mac address as account and password, which can access into the AD.
  2. I enabled the function of  MD5-Challenge  in Windows 2008 R2 NPS server. pls refer the link:
  http://social.technet.microsoft.com/Forums/en/winserverNAP/thread/e801bdac-9347-4efb-9d7c-bcf4d64aa927
  3. Created the network policy, which use the  MD5 as the EAP type, and select PAP as the authentication method.
  4. Enable the 802.1x and MAB function in the port of cisco 3750.
  by test, 802.1x works fine, but when  I try to let it authenticate with MAB, got the below error in NPS event log:
  Network Policy Server denied access to a user.
  Contact the Network Policy Server administrator for more information.
  User:
      Security ID:            QBBB\002622c997ff
      Account Name:            002622c997ff
      Account Domain:            QBBB
      Fully Qualified Account Name:    qbbb.net/Sales/002622c997ff
  Client Machine:
      Security ID:            NULL SID
      Account Name:            -
      Fully Qualified Account Name:    -
      OS-Version:            -
      Called Station Identifier:        3C-DF-1E-C6-48-13
      Calling Station Identifier:        00-26-22-C9-97-FF
  NAS:
      NAS IPv4 Address:        10.197.40.2
      NAS IPv6 Address:        -
      NAS Identifier:            -
      NAS Port-Type:            Ethernet
      NAS Port:            50219
  RADIUS Client:
      Client Friendly Name:        Wired
      Client IP Address:            10.197.40.2
  Authentication Details:
      Connection Request Policy Name:    Secure Wired (Ethernet) Connections
      Network Policy Name:        Connections to other access servers
      Authentication Provider:        Windows
      Authentication Server:        QINGXXX1.QBBB.net
      Authentication Type:        PAP
      EAP Type:            -
      Account Session Identifier:        -
      Logging Results:            Accounting information was written to the local log file.
      Reason Code:            65
      Reason:                The Network Access Permission setting in the dial-in properties of the user account in Active Directory is set to Deny access to the user. To change the Network Access Permission setting to either Allow access or Control access through NPS Network Policy, obtain the properties of the user account in Active Directory Users and Computers, click the Dial-in tab, and change Network Access Permission.
  Just for you reference and hope can get you help, thanks a lot!
  --Scott