Hello,
we have an AD structure with not so many object (we have about 30 pcs, 40 servers joined and 30 users in one parent domain and 2 subdomains).
We are evaluating to use some software on Azure (for now, SharePoint 2013 and SQL Server 2012); we'd like to access SharePoint 2013 like we do with our old on premise installation: we have wss 3 and we access it with our domain user accounts; for example, we enter our username like [Domain]\[User] and password.
What do you think is better for our organization? I read on TechNet documentation both description of Directory Sync with Password and with Single Sign On but not understand what is well for us.
For example, for Directory Sync with Password I read "Used when you want to enable your users to sign in to Windows Azure AD and other services using the same user name and password as they use to log onto your corporate network and resources" so it seems ideal for my organization but I don't know if I can use this to resemble, for example, [Domain]\[User] that we use with SharePoint on premise on our server on SharePoint 2013 on vm in the cloud.
Another example of not so clear documentation is:
- Directory Sync with Password: "When password sync is enabled on your directory sync computer, your users will be able to sign into Microsoft cloud services, such as Office 365, Dynamics CRM, and Windows InTune,using the same password as they use when logging into your premises network"
- Directory Sync with Password Scenario: "Single sign-on, also called identity federation, is a hybrid-based directory integration scenario of Windows Azure Active Directory that you can implement when you want to simplify your user’s ability to seamlessly access cloud services, such as Office 365 or Windows Intune, with their existing Active Directory corporate credentials"
Hope someone can clarify me the differencies and to setup the best method for my scenario.
--
Regards,
Marco Mangiante