ownCloud with Azure AD Integration?
-
@coliver said:
Can Azure AD do federation? I think there is a saml addon available for ownCloud.
I believe it can base on what I have read
-
@wirestyle22 said:
@coliver said:
Can Azure AD do federation? I think there is a saml addon available for ownCloud.
I believe it can base on what I have read
have you seen a guide anywhere? I'm still new to Azure AD.
-
@scottalanmiller said:
@wirestyle22 said:
@coliver said:
Can Azure AD do federation? I think there is a saml addon available for ownCloud.
I believe it can base on what I have read
have you seen a guide anywhere? I'm still new to Azure AD.
No guides. I'm still going over your tutorials and reading as much as I can about...basically everything. I have a little bit of insight but that's about it. Sorry! It would be great for me to be able to help you for once
-
Azure AD does support SAML 2.0. Not sure if this helps or not.
https://azure.microsoft.com/en-us/documentation/articles/active-directory-sso-integrate-saas-apps/
-
Add it as a custom application - https://blogs.technet.microsoft.com/ad/2015/06/17/bring-your-own-app-with-azure-ad-self-service-saml-configuration-now-in-preview/
-
This is assuming that ownCloud supports SAML.
-
@coliver said:
This is assuming that ownCloud supports SAML.
Not since ownCloud 4.5
https://apps.owncloud.com/content/show.php/user_saml++?content=154410
-
@scottalanmiller said:
@coliver said:
This is assuming that ownCloud supports SAML.
Not since ownCloud 4.5
https://apps.owncloud.com/content/show.php/user_saml++?content=154410
Ah... there goes that idea. Can ownCloud use local system authentication? Then you may be able to set it up that way.
-
@coliver said:
Ah... there goes that idea. Can ownCloud use local system authentication? Then you may be able to set it up that way.
That's what is uses by default. I've never seen any application other than SW that lacks local authentication as an option.
-
@scottalanmiller said:
@coliver said:
Ah... there goes that idea. Can ownCloud use local system authentication? Then you may be able to set it up that way.
That's what is uses by default. I've never seen any application other than SW that lacks local authentication as an option.
Really? I thought it had a database table for users.
-
@coliver said:
Really? I thought it had a database table for users.
If it does, it's new. Which would be really odd as they've been moving even farther from that rather than towards. It traditionally was AD only and turned off authentication if you didn't have AD. Now it uses the website for authentication.
-
@scottalanmiller I'm not following. I've had it running for at least 3 major releases and have never had it attached to AD nor have I created users on the local system. I have always needed a username and password to get into the application.
-
@coliver said:
@scottalanmiller I'm not following. I've had it running for at least 3 major releases and have never had it attached to AD nor have I created users on the local system. I have always needed a username and password to get into the application.
Those logins are tied to the SW community. They are not purely local. that was removed 1-2 years ago.
-
@coliver said:
@scottalanmiller I'm not following. I've had it running for at least 3 major releases and have never had it attached to AD nor have I created users on the local system. I have always needed a username and password to get into the application.
So if you did not create the users... where did you think that they were coming from
-
@scottalanmiller said:
@coliver said:
@scottalanmiller I'm not following. I've had it running for at least 3 major releases and have never had it attached to AD nor have I created users on the local system. I have always needed a username and password to get into the application.
So if you did not create the users... where did you think that they were coming from
Are we talking about the same application? For ownCloud, in the past I had to remote into the database to change the admin password that I had forgotten. Hence why I said that the username and password were stored in the ownCloud database.
When I said local authentication I meant Linux users being authenticated to use the ownCloud application. Then you could use SAML on the local Linux system to authenticate against Azure AD. Probably too convoluted and sensitive to be used in production though.
-
@coliver said:
@scottalanmiller said:
@coliver said:
@scottalanmiller I'm not following. I've had it running for at least 3 major releases and have never had it attached to AD nor have I created users on the local system. I have always needed a username and password to get into the application.
So if you did not create the users... where did you think that they were coming from
Are we talking about the same application? For ownCloud, in the past I had to remote into the database to change the admin password that I had forgotten. Hence why I said that the username and password were stored in the ownCloud database.
We started talking about how SW was the sole application that lacked local users.
-
@scottalanmiller said:
@coliver said:
@scottalanmiller said:
@coliver said:
@scottalanmiller I'm not following. I've had it running for at least 3 major releases and have never had it attached to AD nor have I created users on the local system. I have always needed a username and password to get into the application.
So if you did not create the users... where did you think that they were coming from
Are we talking about the same application? For ownCloud, in the past I had to remote into the database to change the admin password that I had forgotten. Hence why I said that the username and password were stored in the ownCloud database.
We started talking about how SW was the sole application that lacked local users.
Odd. I was never talking about SW. Sorry I must have missed something.
-
@coliver said:
When I said local authentication I meant Linux users being authenticated to use the ownCloud application. Then you could use SAML on the local Linux system to authenticate against Azure AD. Probably too convoluted and sensitive to be used in production though.
I'm not aware of ownCloud using, nor would you want to, the local UNIX user store.
-
@scottalanmiller said:
@coliver said:
When I said local authentication I meant Linux users being authenticated to use the ownCloud application. Then you could use SAML on the local Linux system to authenticate against Azure AD. Probably too convoluted and sensitive to be used in production though.
I'm not aware of ownCloud using, nor would you want to, the local UNIX user store.
Ok... good. I wasn't advocating that just wondering if it was possible. That would be a workaround for SAML not being supported.
-
@coliver said:
@scottalanmiller said:
@coliver said:
@scottalanmiller said:
@coliver said:
@scottalanmiller I'm not following. I've had it running for at least 3 major releases and have never had it attached to AD nor have I created users on the local system. I have always needed a username and password to get into the application.
So if you did not create the users... where did you think that they were coming from
Are we talking about the same application? For ownCloud, in the past I had to remote into the database to change the admin password that I had forgotten. Hence why I said that the username and password were stored in the ownCloud database.
We started talking about how SW was the sole application that lacked local users.
Odd. I was never talking about SW. Sorry I must have missed something.
Ah, I was responding to you asking about local authentication saying that of course it does that. But you responding saying that it used a database. A local database is called local authentication in apps. Using the UNIX system is not considered local but system. That's where we disconnected. Your response only made sense to me in the context of responding to the SW comment.
