Login to Active Directory via google
I am trying to figure-out an option for authenticating a user, via ADFS, in AD using a google account. Essentially, what I would like to do is to allow a user to sign into my service using their google apps or gmail account and get access to some resources which currently require AD user accounts. Ultimately, I am trying to prevent having to create AD users for each and every client of my service.
I have seen lots of examples of how to authenticate the other direction. Allowing an AD authenticated user to login to google apps. But, I am coming-up short trying to find an example that goes the other direction. I feel like I have seen this in the past. But, maybe I was confused. Is tis possible? If so, does anybody know of any good resources describing how to set-up google, adfs, ad?
You can do this by providing another SAML2 IDP which, in turn, could make use of Google OAuth2WebServer.
This means that you can set up, e.g., SimpleSAMLphp and adding an auth module which uses the Google API Client Library por PHP
- PowerShell - Return an array of all possible properties for an ADObject
- Enable/Disable AD user with LDAP
- Remove-AdObject with Import-CSV error
- Error 0x80005000 and DirectoryServices
- Windows PowerShell error when attempting to bulk edit the Cost Center (costCenter) attribute
- Powershell - Exporting MemberOf to csv file from active directory
- powerShell Set-acl strange error : there is not enough space on the disk
- How can I get all groups a user belongs to using Okta's API?
- How do you use Active Directory in a "hosted solution"?
- What does systemFlags:1.2.840.113556.1.4.803:=2 mean in ldap?
- PowerShell LDAPFilter multiple conditions
- How to get ALL AD user groups (recursively) with Powershell or other tools?
- Using powershell, how can I extract the OU path for a computer currently in AD?
- Ldap simple user search return LDAP: error code 53 - Unwilling to process the unindexed search operation
- Authenticating with Active Directory using user log-on name instead of display name
- Does usn increases if a bind happens in Active Directory?
- samba-tool GPO scripts
- How to create a ldap BIND_DN for samba active directory
- .NET 5 Blazor Server AD Group Authorization issue
- Logon Batch Script Running for Standard Users but not Admins
- What are CN, OU, DC in an LDAP search?
- PHP LDAP query to get members of specific security Group
- How to authenticate User Credentials against AD from Android Java
- Is there any way to get VBA to get the current user's Full Name from a Windows user account without using CMD?
- LDAP Query via Windows CMD
- powershell foreach-object parallel - Not all properties of piped in object are available
- VBScript: Using WScript.Shell to Execute a Command Line Program That Accesses Active Directory
- Getting Active Directory "SecurityDescriptor" attribute in .net core on linux machine
- Set default server in powershell for AD related commands
- Batch Scripting - Wait until network Established