Thanks for answer.
MS claims that adcli + sssd allows you to join an Azure AD domain
Like I say, I'm not an AD expert. Certainly not AzureAD.
On Fri, Jan 6, 2023 at 12:42 AM Sumit Bose <sbose(a)redhat.com> wrote:
Am Thu, Jan 05, 2023 at 11:03:55AM -0600 schrieb Spike White:
> Our org uses sssd for direct integration to our corp AD forest, which has
> the std MS schema extension (RFC 2307bis IIRC).
> Currently, we have some Windows builds running in the Azure cloud,
> integrated via AzureAD. I'm not a Windows engineer, so I don't know the
> details of this Windows-based user authentication. Other than it works.
> Does sssd support direct integration to AzureAD?
> I read this with great interest:
> So if sssd supports this, any sssd config changes required for AzureAD?
currently this is only possilbe with the help of FreeIPA. See
for an example with keycloak as IdP, but you can use AzureAD as well.
There is a chapter in the official RHEL IdM documentation at
> sssd-users mailing list -- sssd-users(a)lists.fedorahosted.org
> To unsubscribe send an email to sssd-users-leave(a)lists.fedorahosted.org
> Fedora Code of Conduct:
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives:
> Do not reply to spam, report it:
sssd-users mailing list -- sssd-users(a)lists.fedorahosted.org
To unsubscribe send an email to sssd-users-leave(a)lists.fedorahosted.org
Fedora Code of Conduct:
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
Do not reply to spam, report it: