Search the Community
Showing results for tags 'azure ad'.
Found 2 results
-
Hi Team, I'm aware you have SAML2 support, and we're currently making good use of that feature, however it'd be great if we could sync user information down from AD based on group membership. Even better if this includes the groups themselves, so we can manage users info and what Passwordstate security groups they get all from Azure AD. I see elsewhere you've suggested to just have your Azure AD sync with an on-prem AD, however that's not a great solution as it then requires that we manage our users from an on-prem AD, when we've moved to decommission such onsite servers. You can easily pull such information from something like Microsoft's own Graph API. List members - Microsoft Graph v1.0 | Microsoft Docs List group transitive members - Microsoft Graph v1.0 | Microsoft Docs This feature would provide huge value for us in allowing us to centrally manage users for Passwordstate.
-
In the event Azure AD is unavailable (Microsoft outage, ISP outage, etc), users should be able to authenticate to on prem Active Directory.
