I'm wondering if it's possible to use Windows Azure Active Directory (WAAD) as a standard "user-database"? Let me explain..
We currently have a standard, "home-built" user registration system build on top of SQL server, MVC, etc. The users in this database are registered users of the site, and have used email address to register (from various domains, such as gmail.com, yahoo.com, live.com, etc.).
The idea would be to "lift and shift" these user accounts into a WAAD tenant and replace the home-grown system we have. Why you ask? Two primary reasons:
- Allows us to take advantage of the myriad of authentication methods provided by WAAD (two-factor, etc.)
- Safer than on-site storage of credentials, which is a business we don't want to be in.
The key difference here is we're not using any sync'd directory, and are talking about users with domains different than the WAAD root domain. I realize this is very different than the traditional use cases for a "directory", but it really enables some powerful scenarios (if possible).
So, to wrap up - is this possible? Are there alternatives?
Thanks!!!