Azure SSO Client

Currently reading
Azure SSO Client

5
0
NAS
DS3617xs, DS918+, DS916+ and others
Hi All,

My first thread on your new forums ... I was a bit of a lurker at the old 'official' ones.

I've configured a DS3617xs to 'talk' to Azure AD DS - bit of a headache but got there eventually. I can see my directory is synchronised, users and groups are populating, however I can't get SSO working ...

When a client tries to login to the Syno it opens a new window, with a long URL reference (that appears to be the correct URL rewrite) but just the login button again. Any ideas?

MTIA

Irksome
 
Irksome did you ever get this working? I am interested to know if this works for you? I might have a few places this would be a good solution.
 
I did, there was an error with Synology's documentation ... however we're about to turn it off as its proved rather limited (doesn't work with many apps - Drive for example) and is very costly!
 
Hey @Irksome - just stumbled over this as I looked at various ways to sync my local Syno users with G-Suite in the last couple of month, but have yet to find a stable solution.
Would you mind sharing your findings from back in August until now? Did you indeed turn it off again, and how you are managing your local Syno users now?
 
Hey @Irksome - just stumbled over this as I looked at various ways to sync my local Syno users with G-Suite in the last couple of month, but have yet to find a stable solution.
Would you mind sharing your findings from back in August until now? Did you indeed turn it off again, and how you are managing your local Syno users now?
I have been playing with this recently. AAD SSO login to DSM can be made to work from outside and inside the network via a browser (with potentially some funky configs needed (due to bugs) if you want it all to work on 443).

This works with drive web server user app ok. If you want to sync locally one seems to need to be AD joined and use the domain\user variant; also if you need your local PCs to access via SMB with AAD DJ (not AAD DS DJ) then you will need to setup hybrid Azure AAD Windows Hello For business and, of course, only windows 10 supports that.

Fun to play with but not sure it is seamless enough to give to users. What was your sceanrio with AAD that you wanted to achieve?

To be clear i don't have AAD DS (thats way too expensive, i use virtual machine manager to run a windows 2019 domain controller - thats waaay cheaper; then i use AD / AAD sync.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Back
Top