Welcome to Azure AD Easy Button integration lab guide

Publish and protect on-prems apps with Azure AD as identity provider

Warning

For any remark or mistake in this lab, please send a Teams chat to Matthieu DIERICK.

In this lab, you will learn how to connect APM to Azure AD as IDaaS. Since v15.1, you can enable APM as SAML SP and Azure AD as SAML IDP. In this lab, we will use the new Easy Button Guided Configuration template. This template:

1. Publish on-prems apps

2. Enable Single Sign on

3. Interconnect (SAML binding) APM with Azure AD tenant

Note

You will notice we will never connect to Azure AD interface. APM will use Microsoft Graph API to configure AAD tenant accordingly.

In the video below, you can see the use case. This is not the lab video, it is the public facing use case demo.

Contents:

• Class 1 - Check the Lab Architecture
  • Architecture of Internal Apps
  • Architecture of Cloud App
• Class 2 - Deploy APM to protect on-prems apps
  • Publish and protect Bluesky app
  • Publish and protect Vanilla app
• Class 3 - Leverage Azure AD to protect Cloud Apps
  • The current config
  • Test your deployment
• Class 4 - Enable MFA
  • Procedure for SA/SME
  • Test your deployment with MFA enabled
• Class 5 - Clean up the lab