Authentication using Azure AD for back-end users and EPiServer As

Authentication using Azure AD for back-end users and EPiServer AspNetIdentity for website users

Siddharth Gupta

Vote:

Hi,

We have a client who is currently using Azure AD OpenID Connect for their employees to access the back-end. They now want the customers browsing the site to be able to sign in as well, I thought it would as simple as configuring EPiServer AspNetIdentity, but that doesn't seem to be the case. As I was reading the documentation for Azure AD, it is mentioned that the nuget package EPiServer.CMS.UI.AspNetIdentity and EPiServer.CMS need to be uninstalled. Otherwise, the user interface may not look for synchronized users when setting access rights. Below is the link to it:

Integrate Azure AD using OpenID Connect

And for AspNetIdentity I will need the EPiServer.CMS.UI.AspNetIdentity nuget package installed which is going against the Azure AD authentication mechanism.

Any ideas or tips to get around this or an alternative approach is highly appreciated.

Regards

Siddharth

#254449

Edited, May 06, 2021 17:51

David Knipe

Vote:

This might be of help:

https://hacksbyme.net/2017/05/11/mixed-mode-owin-authentication-for-episerver-editors/

https://blogs.perficient.com/2021/01/22/episerver-authentication-with-multiple-azure-ad-instances/

#254491

May 07, 2021 14:48

Andrew Markham

Vote:

Hi,

Is your client looking to also use Azure AD (i.e. B2C) for the customers or the standard Episerver based AspNetIdentity provider?

Andy

#254504

May 07, 2021 21:32

Siddharth Gupta - May 07, 2021 21:39

Hey Andrew,

So they want to use Azure AD for their employees so that they can sign into the site and make CMS edits and manage the site. And they want to use the AspNetIdentity provider for the customers.