Menu
We have a WCF service which requires a token supplied by azure's acs service and acs is configured to use the in built service identities for authentication.
Can we also only allow access to this service via client certificate authentication (so only clients that have the certificate installed can call the service) but also provide the user name and password to provide to the acs service to get the tokens provided by the acs service to establish claims for the services (and eventually for others users)
Or is it one or the other?
We will also be using https for the service eventually in case this makes a difference.
295
Microsoft Authenticator app. FIDO2 security key. Certificate-based authentication. OATH hardware tokens (preview)
Azure AD Multi-Factor Authentication works by requiring two or more of the following authentication methods: Something you know, typically a password. Something you have, such as a trusted device that's not easily duplicated, like a phone or hardware key. Something you are - biometrics like a fingerprint or face scan.
Azure has built-in authentication and authorization services that provide secure access to Azure resources.
You should be able to do this by setting up multiple service identities in ACS one for username&password and one for certificate.
References:
http://msdn.microsoft.com/en-us/library/windowsazure/gg185924.aspx
http://msdn.microsoft.com/en-us/library/windowsazure/hh289316.aspx
http://msdn.microsoft.com/en-us/library/windowsazure/gg185954.aspx
190
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
