Security

last person joined: yesterday 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

Office 365 social login to Guest SSID

  • 1.  Office 365 social login to Guest SSID

    Posted Jan 12, 2021 10:14 AM
    Hello,

    We are implementing a guest SSID on AOS8.6.0.6 (MMs & cluster) & ClearPass 6.9.2.

    Is it possible to allow access to anyone with an Office365 account (anyone from any organisation)?

    I see there are two Microsoft options - standard 'Microsoft' I guess for anyone with a Microsoft account
    And Azure.

    I can't really see how this would be possible (unless perhaps the organisations were hosted in Azure? I don't know much about how the MS stuff fits together) but thought I'd ask!

    Thank you,

    Guy

    ------------------------------
    Guy Goodrick
    ------------------------------


  • 2.  RE: Office 365 social login to Guest SSID

    Posted Jan 12, 2021 11:10 AM
    "Microsoft" is Microsoft consumer accounts
    "Microsoft Azure AD" is Azure AD which is enterprise accounts

    ------------------------------
    Tim C
    ------------------------------



  • 3.  RE: Office 365 social login to Guest SSID

    Posted Jan 12, 2021 12:55 PM
    Hello Tim,

    Thanks - so if I worked for a different organisation that used Azure AD for my user account then I would be able to login to this SSID?

    But I assume we (my organisation) need an Azure account as well in order to be able to set this up?

    Guy

    ------------------------------
    Guy Goodrick
    ------------------------------



  • 4.  RE: Office 365 social login to Guest SSID

    Posted Jan 12, 2021 12:59 PM
    Yes, you can configure the app registration to accept users from other tenants.

    RE: need an account. Yes, all providers require you to have an account to create a client ID.

    ------------------------------
    Tim C
    ------------------------------



  • 5.  RE: Office 365 social login to Guest SSID

    Posted Jan 13, 2021 10:52 AM
    Thanks again,

    I'm not sure of the distinctions here - but when you say we need an account does that mean we have to  be running our AD on Azure, or just that we have to have an Azure account (even if we're not really doing much with it)?

    ------------------------------
    Guy Goodrick
    ------------------------------



  • 6.  RE: Office 365 social login to Guest SSID

    Posted Jan 13, 2021 11:08 AM
    Azure AD is not legacy AD running on Azure. AAD is a IDaaS solution.

    From what I can tell, your organization uses M365 so you already have Azure AD and an Azure tenant.

    ------------------------------
    Tim C
    ------------------------------



  • 7.  RE: Office 365 social login to Guest SSID

    Posted Jan 13, 2021 11:25 AM
    That's great - ok I know who to chat to at this end about that, I'll chase them up for details of the tenancy

    ------------------------------
    Guy Goodrick
    ------------------------------