Azure AD Joined SSO Access to AD Joined Resources!

Показать описание

Only a little magic involved but SSO to AD-joined resources from an Azure AD-joined machine! Very useful.

🔎 Looking for content on a particular topic? Search the channel. If I have something it will be there!

▬▬▬▬▬▬ C H A P T E R S ⏰ ▬▬▬▬▬▬
0:00 - Introduction
0:40 - Modern management for PCs
2:06 - AAD authentication
3:34 - Accessing ADDS trusting resources
4:38 - AAD Connect extra information
7:05 - LSA and KRBTGT
7:56 - DNS and DC communication
9:30 - Using the KRBTGT
12:22 - Demo and exploration of tokens
18:13 - Extra considerations and summary

▬▬▬▬▬▬ K E Y L I N K S 🔗 ▬▬▬▬▬▬
► MS documentation:

▬▬▬▬▬▬ Want to learn more? 🚀 ▬▬▬▬▬▬
📖 Recommended Learning Path for Azure
🥇 Certification Content Repository
📅 Weekly Azure Update
☁ Azure Master Class
⚙ DevOps Master Class
💻 PowerShell Master Class
🎓 Certification Cram Videos
🧠 Mentoring Content
❔ Question about my setup?
👕 Cure Childhood Cancer Charity T-Shirt Channel Store

#microsoft #azure #johnsavillstechnicaltraining #doyouevenazure #onboardtoazure #cloud

Рекомендации по теме

Комментарии

Hey everyone, welcome to another video! Please make sure to read the description for the chapters and key information about this video and others.

⚠️ P L E A S E N O T E ⚠️

🤔 I am no longer able to answer questions due to the sheer amount of comments on this channel. Sorry.
🔎 If you are looking for content on a particular topic search the channel. If I have something it will be there!
🕰️ I don't discuss future content nor take requests for future content so please don't ask 😇

Thanks for watching!
🤙

NTFAQGuy

You're like my little pocket career buddy, constantly putting out content directly related to my work. In a world where it's a real challenge to keep up with the trends and tech, you're delivering value like a boss. Thank you so much mate!

RetrogueStreams

This came at the right time! Thank you! Just before a customer deployment. We removed hybrid join and used this instead. The AAD joined machines are able to access the SMB share required for the last non SaaS application. 👌🏻

bauke-jandavids

Thanks John. This is exactly what I'm looking at in my organisation. This is definitely the way to go for us

davidgorman

That is absolutely mind-blowing, I can't wait to implement this at my office.

marcuslarsson

Once again you have explained a topic in the most simplest way. Thanks John Savill 👏👏👏🙏

ashisharya

brilliantly described.
funnily enough this is the exact config we use in prod, i will refer my colleagues to this vid :)

Semtx

Great Video John, this may help some of us smooth out our transition to the cloud 🙂

crltech

Your explanation was very useful and understandable. Thanks.

amirabbasi

Awesome John, thanks for the video and detailed explanation....

praneshhn

Very well explained! Now the concept is clear to me. :]

lltagged

Fantastic video. Given me a lot to think about.

comahon

This is absolutely brilliant! MS docos are good when you can find the right one to explain it (thanks for providing the link) and your video is a godsend in explaining it! I tried this out today and yep, I was blown away with how it works 😀

nathansen

This is the greatest video I've yet seen on your channel. This sort of situation is exactly where I want to be. Stuck with the hybrid join method right now. This could be my "ticket" to ditching that! 😆🤦

thedivinehairband

Loved it, as always, but while the MSFT doco likely explains it, I'd love you to have included a few words on how the user actually authenticates to AD (it has everything but the password in the ID token from AAD) to get the TGT initially, just to put a bow on the whole circle 😉

expat

Great explanation of global SSO with Azure AD PRT and how you can get enterprise SSO when you have line of sight to onprem DCs

CloudIdentity

Amazing video John and a real game changer seeing as nearly all the use cases i come across for HAADJ is to continue accessing files/printers on prem. This eliminates all of that!

tony

I hope you keep making content until I retire 🤓

oliverradcliffe

i am guessing thar older version of AD Connect on our DC needs to be updated to latest for EntraID...

TheKGB

Azure AD Joined SSO Access to AD Joined Resources!

Azure AD Joined SSO Access to AD Joined Resources!

S02E29 - Beginners Guide to Accessing On-Premises Resources with Azure AD Joined Devices - (I.T)

Understanding Azure AD Hybrid Join

Authentication fundamentals: Web single sign-on | Microsoft Entra ID

Azure Virtual Desktop & Windows 365 (SSO using Entra ID)

Hybrid cloud Kerberos trust deployment - Say NO to Hybrid Azure AD Join!!

Configure Azure AD Conditional Access in Under 10 minutes? Let's try it

SSO Portal in Azure Active Directory (Myapps)

DEMO Azure AD Join Windows 10 Device Enabling Single Sign-On

Integrate your (SaaS) Applications with Azure AD in less than 5 minutes.

Microsoft Entra ID Beginner's Tutorial (Azure Active Directory)

Azure AD Authentication for AWS

How to Configure Hybrid Azure Active Directory Step by Step With DEMO | Hybrid ad join step by step

Understanding Microsoft Azure AD SSO with non-persistent VDI (Instant Clones)

Thinking about Intune Autopilot ? Do NOT Domain Join!

Azure Active Directory SSO with OAuth for Grafana

Federating Amazon Redshift Access with Microsoft Azure AD

How to Set-Up SAML 2.0 Single Sign-On (SSO) with Azure AD

Platform Single Sign-On (SSO) for macOS with Microsoft Entra ID

Jump into modern managed devices with Azure AD Join

Configuring SSO with Microsoft Azure Active Directory

The Feature EVERY AVD Admin Has Been Waiting For...

Know your Azure AD Device Identities! Azure AD Registered, AAD Joined, and Hybrid Azure AD Joined

Azure AD SSO integration with AWS