Did you managed to solve this?
We are currently working on adding support for Claims based authentication so you could expect this to be avilable in some weeks. As described in the linked blog you can however get most things work already.
Regarding Azure AD you will need populate the roles claims your self using the graph API (they are not included in the security token). This can be done e.g. in an own ClaimsAuthenticationManager.
Thanks for your reply. I have a scenario there I must use SSO to be logged in on different sites (www.store1.com, www.store2.com etc). When I login to store1 I should be able to go to store2 without logging in again. I guess claims based auth is the way to go then or are there any other way to handle this? I saw this post: http://world.episerver.com/Modules/Forum/Pages/Thread.aspx?id=85990& but no one has replied on this post yet.
I'm investigating to see if it's possible to convert EPiSrver 7.5 using claimed- based authetication with Azure active directory identity programming model.
I have find this article:
which I could get some idea about how to do it but I would like to see if there is someone that have already treid or have any ideas about that.