How to synchronize multiple Office 365 tenant apps to a custom MVC application app using Azure AD sigle sign-on

0
votes

I have read through lots of articles on Office 365 and Azure AD, but I am confused. This is my issue: There are several schools with individual Office 365 subscriptions (multi-tenant) and their users (teachers and students) sign into an MVC application (standalone app) to access their mails, calendar and other school related features.

I have to create single sign on for all these users from their Office 365 accounts using Azure AD and synchronize Office 365 mailbox, calendar and other apps with this application.

What path do I need to take to establish single sign on (ADFS or password only or something else with AD Connect) and can this be done with single Azure AD tenant? And also how to synchronize Office apps?

2
office365azure-active-directorymulti-tenant
Is this a hypothetical situation, such as a homework?halfer
no, this is a real life problem, why? i currently need a solution asapPayal
A couple of reasons: firstly it sounds like you've not done anything yet to try to resolve it, and readers here tend to ask for prior effort first. Also, on Stack Overflow I sometimes see people given huge responsibility by their employers that they are not yet ready to handle. Looking after that number of users is a big responsibility - do you have colleagues who can set you in the right direction in the first instance?halfer
Note also that volunteers here do not respond well to "urgent" or "ASAP" requests - please refrain from adding that sort of thing, if only to avoid downvotes. We understand that you have deadlines, but it is not urgent for anyone else, and readers won't be hurried into action.halfer

2 Answers

1
votes

There are several different questions here. I don't know what is meant by "how to synchronize Office apps".

Creating an app that can be signed on to by users in different tenants can be done. Look for "asp.net mvc azure ad multitenant":

  1. Register the application in one Azure AD
  2. Make it multitenant by flipping the switch in the application configuration in the Azure management portal
  3. Publish the application and verify that you can sign in with a user located in the "home AAD" (where the application is published)
  4. Test sign-on with a user in a different AAD. That may involve first signing on as an admin user to grant the application access to that AAD tenant.
1
votes

You need to explain more about your questions . From your description , it seems you want to build a multi-tenant .Net MVC web application as @RasmusW suggested .And in addition , if you want to get O365 mails,calendars information in your web app , you could use Microsoft Graph API , also click here for code samples .