Azure AD Joined SSO Access to AD Joined Resources!
Вставка
- Опубліковано 10 лип 2024
- Only a little magic involved but SSO to AD-joined resources from an Azure AD-joined machine! Very useful.
🔎 Looking for content on a particular topic? Search the channel. If I have something it will be there!
▬▬▬▬▬▬ C H A P T E R S ⏰ ▬▬▬▬▬▬
0:00 - Introduction
0:40 - Modern management for PCs
2:06 - AAD authentication
3:34 - Accessing ADDS trusting resources
4:38 - AAD Connect extra information
7:05 - LSA and KRBTGT
7:56 - DNS and DC communication
9:30 - Using the KRBTGT
12:22 - Demo and exploration of tokens
18:13 - Extra considerations and summary
▬▬▬▬▬▬ K E Y L I N K S 🔗 ▬▬▬▬▬▬
► MS documentation:
🔗 docs.microsoft.com/azure/acti...
▬▬▬▬▬▬ Want to learn more? 🚀 ▬▬▬▬▬▬
📖 Recommended Learning Path for Azure
🔗 learn.onboardtoazure.com
🥇 Certification Content Repository
🔗 github.com/johnthebrit/Certif...
📅 Weekly Azure Update
🔗 • Azure Infrastructure U...
☁ Azure Master Class
🔗 • Microsoft Azure Master...
⚙ DevOps Master Class
🔗 • DevOps Master Class
💻 PowerShell Master Class
🔗 • PowerShell Master Class
🎓 Certification Cram Videos
🔗 • Microsoft Certificatio...
🧠 Mentoring Content
🔗 • Virtual Mentoring
❔ Question about my setup?
🔗 • My Setup
👕 Cure Childhood Cancer Charity T-Shirt Channel Store
🔗 johns-t-shirts-store.creator-...
SUBSCRIBE ✅ / @ntfaqguy
#microsoft #azure #johnsavillstechnicaltraining #doyouevenazure #onboardtoazure #cloud - Наука та технологія
Hey everyone, welcome to another video! Please make sure to read the description for the chapters and key information about this video and others.
⚠️ P L E A S E N O T E ⚠️
🤔 I am no longer able to answer questions due to the sheer amount of comments on this channel. Sorry.
🔎 If you are looking for content on a particular topic search the channel. If I have something it will be there!
🕰️ I don't discuss future content nor take requests for future content so please don't ask 😇
Thanks for watching!
🤙
You're like my little pocket career buddy, constantly putting out content directly related to my work. In a world where it's a real challenge to keep up with the trends and tech, you're delivering value like a boss. Thank you so much mate!
Well stated.
This came at the right time! Thank you! Just before a customer deployment. We removed hybrid join and used this instead. The AAD joined machines are able to access the SMB share required for the last non SaaS application. 👌🏻
That is absolutely mind-blowing, I can't wait to implement this at my office.
Thanks John. This is exactly what I'm looking at in my organisation. This is definitely the way to go for us
Once again you have explained a topic in the most simplest way. Thanks John Savill 👏👏👏🙏
brilliantly described.
funnily enough this is the exact config we use in prod, i will refer my colleagues to this vid :)
Very well explained! Now the concept is clear to me. :]
Awesome John , thanks for the video and detailed explanation....
Great Video John, this may help some of us smooth out our transition to the cloud 🙂
This is absolutely brilliant! MS docos are good when you can find the right one to explain it (thanks for providing the link) and your video is a godsend in explaining it! I tried this out today and yep, I was blown away with how it works 😀
Glad it was helpful!
Your explanation was very useful and understandable. Thanks.
Fantastic video. Given me a lot to think about.
Great content, and great shirt! 🔥
This is the greatest video I've yet seen on your channel. This sort of situation is exactly where I want to be. Stuck with the hybrid join method right now. This could be my "ticket" to ditching that! 😆🤦
Glad it was helpful!
Great explanation of global SSO with Azure AD PRT and how you can get enterprise SSO when you have line of sight to onprem DCs
Glad it was helpful!
Amazing video John and a real game changer seeing as nearly all the use cases i come across for HAADJ is to continue accessing files/printers on prem. This eliminates all of that!
Glad it was helpful!
Thank you very much!!!
Loved it, as always, but while the MSFT doco likely explains it, I'd love you to have included a few words on how the user actually authenticates to AD (it has everything but the password in the ID token from AAD) to get the TGT initially, just to put a bow on the whole circle 😉
always good video
Thanks!
Good video buddy
I hope you keep making content until I retire 🤓
i am guessing thar older version of AD Connect on our DC needs to be updated to latest for EntraID...