Using Azure AD Authentication

Hello, our Authentication Systems Admin has suggested that we consider moving from Shibboleth authentication to EntraAD/Azure, since there may be authorization options available that could be managed by AzureAD group membership.

What are your recommendations about using EntraAD for authentication?  What might some advantage be?  How about disadvantages?  Would the switch over be risky?

Thanks, Tevis

Asked by Tevis Boulware on Wed 11/20/24 5:54 PM
Sign In to leave feedback or contribute an answer

Answer (1)

This answer has been marked as the accepted answer
Mark Sayers Thu 11/21/24 9:48 AM

Hello Tevis,

I'm not aware of any real risks to changing over to using Entra. You can see our configuration instructions for achieving this here: https://solutions.teamdynamix.com/TDClient/1965/Portal/KB/ArticleDet?ID=77353

As far as group-based access management, that would really only benefit you in terms of allowing users to use the SSO app you set up for TDX in Entra, it wouldn't affect their user permissions within TeamDynamix. I'm not sure if that is what their intent was or not, but I wanted to make sure to point that out.

The setup itself is fairly simple though, and we have many clients using Entra.

You *will* need to submit a support ticket to us with your metadata URL for your Entra app so we can get that registered. When you submit that, please include any and all username domains you expect to be used for accounts that will sign in through Entra so we can be sure they all get allowed alongside your metadata registration.

Sincerely,
Mark Sayers
Sr Support Consultant, CS

No feedback