Process Azure AD v2 Authentication Request

Q

How to the Azure AD v2.0 Sign-On Authentication Request is process by Azure AD service?

✍: FYIcenter.com

A

When Azure AD service receives a Sign-On Authentication Request from an end user's Web browser, it will:

  • Verify if the "client_id" value in the request is valid. If not, display an error message page to the end user.
  • Search a valid login session from Web browser's cookies that matches the AD (Active Directory) associated with your "client_id".
  • Generate the authentication response with the login session information, if a valid login session is found.
  • Display a login Web page to the end user, if no valid login session found.
  • Generate the authentication response with the login session information, when the end user finishes the login process to the AD (Active Directory) associated with your "client_id".
  • Verify if the "redirect_uri" value in the request is valid, after the authentication response is generated. If not, display an error message page to the end user.
  • Redirect the Web browser to "redirect_uri" with the authentication response.

Note that the authentication request includes "response_type", "response_mode", and other parameters to control how the authentication response should be generated.

If you provides incorrect parameters in the authentication request, Azure AD service will return "error" and "error_description" in the authentication response.

 

Authentication Response Received from Azure AD v2

Initiate Azure AD v2 Authentication Request

Azure AD Integration v2.0

⇑⇑ OpenID Tutorials

2019-05-03, 243👍, 0💬