- This topic has 5 replies, 3 voices, and was last updated 3 years, 2 months ago by
.
-
Posts
-
Hi guys,
Infosec in the company I work for approved Wyse Management Suite for use under the condition that there is some kind of SAML SSO authentication used so when users are disabled in Active Directory, their access is immediately terminated.
WMS does support ADFS for user authentication. This, however, seems to require to have an ADFS (on-prem) farm. Far from the ideal solution since we can now use Azure AD (or another cloud-based solution) for authentication which can be set up in 5min without building any servers for it.
I tried to point WMS to Azure AD for authentication but seems like there is an incompatibility in Claims it requires from Azure, i.e. looks like WMS only supports ADFS specific SAML Claims which cannot be created in Azure.
Has anyone managed to find a workaround for the above issue, e.g. by using some funky Claims Transformation or similar?
It is really surprising and disappointing to see that WMS 3.0, a cloud product, in nowadays cloud world does not easily support (Azure) cloud authentication!
Thanks for your help
You a right in every point.
Azure authentication is not supported in WMS currently.CG
Hi Thomas,
I am pushing this feature through the UK Wyse sales team.
Regards,
Thought I’d check back on this.
Just tried the same thing in WMS Public Cloud, went from our implemented on-prem ADFS to try doing an Azure AD implementation not realizing exactly what @david.drum pointed out with the SAML claim. In WMS public cloud 3.2.1 44, everything we copied in seemed to pass the test when you test the SSO, but the sign on would fail after saving the configuration. We’re going to be retiring the on-prem ADFS solution for Azure AD so I’m looking for something other than the WMS built in two-factor email.
- You must be logged in to reply to this topic.