Microsoft Azure Active Directory Authentication

Azure Active Directory (Azure AD) is Microsoft’s cloud-based identity and access management service. The functionality described here allows one to authenticate credentials using Azure Active Directory as the account store and optionally fetch user attributes using Microsoft Graph.

Configuration

Support is enabled by including the following dependency in the WAR overlay:

1
2
3
4
5
<dependency>
  <groupId>org.apereo.cas</groupId>
  <artifactId>cas-server-support-azuread-authentication</artifactId>
  <version>${cas.version}</version>
</dependency>

To see the relevant list of CAS properties, please review this guide.

Principal Attributes

The above dependency may also be used, in the event that principal attributes need to be fetched from Azure Active Directory without necessarily authenticating credentials . To see the relevant list of CAS properties, please [review this guide](..configuration/Configuration-Properties.html#microsoft-azure-active-directory.