Is it possible to extend Office 365™ identities to macOS®? As modern IT organizations often leverage both platforms in various capacities, having a single authoritative identity store for both would be useful.
Of course, the challenge is that Microsoft®, the creator of Office 365, and Apple®, the creator of macOS, are fierce competitors. Consequently, extending Office 365 identities to macOS has historically required a bit of black magic, so to speak.
The good news is that a new generation of cloud directory services is making it easier than ever to leverage a single user identity for both Office 365 and macOS.
Microsoft Identities Explained
Before we talk about how to connect Office 365 identities to macOS, it’s important to note that Office 365 identities are actually based in Azure® Active Directory® (AD)—Microsoft’s cloud IAM platform for the Azure cloud infrastructure, which includes Office 365. So, when we talk about extending Office 365 identities to macOS, we’re essentially extending Azure AD identities to macOS.
At any rate, connecting Microsoft identities to non-Microsoft platforms has notoriously been challenging. Remember on-prem Active Directory? Traditional AD implementations have always required heavy investment into on-prem identity management infrastructure and directory add-ons to extend Microsoft identities to macOS.
Unfortunately, it would seem this trait has been passed on to Microsoft’s next generation of IT management solutions (i.e., Azure AD). This is why IT admins are searching for a solution that can extend Office 365 or Azure AD identities to macOS—to make their lives easier.
Directory Extension Strategies
Of course, you could take the roundabout approach by implementing legacy Active Directory on-prem in order to extend Office 365 identities to macOS. With this approach, IT admins first integrate Azure AD with AD on-prem via Azure AD Connect (Microsoft’s cloud identity bridge). Next, they integrate their Mac fleet with AD via traditional directory extension or identity bridge technology for an additional third-party expense. The end result is that users can leverage their on-prem AD identity to gain access to both.
As you can imagine, this approach (Read more...)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Vince Lujan. Read the original post at: https://jumpcloud.com/blog/extend-office-365-identities-macos/