Mac OS and Azure AD LDAP Authentication

Question

Another forum that moved from very useful social.microsoft.com to this unfriendly Q&A site, pity!

But whatever.

There was a thread years ago about this:

https://social.msdn.microsoft.com/Forums/en-US/a06c8321-8aab-49c5-b0bc-59d9e84807bd/how-to-configure-ldap-authentication-for-mac-os-and-azure-ad?forum=WindowsAzureAD

Anybody has any info on current situation? (before I waste time to find myself that ie it does not work)

I could join my machines to local AD (which might be the case in the end), but while moving with all Windows machines to AAD/Intune, I would like to do the same with Macs (I am not yet in position to do Intune, as I do not have enough time for testing)
But at least authentication could be from AAD

Thanks

Seb

Answer 1

This should be working with MacOS Ventura pre-requities looks to be:
• A local account on the Mac;
• MS Endpoint Manager MDM Configuration profile with Microsoft SSO extension payload;

It's likely that in order any AAD users to login on a Mac using their AAD / Company account credentials you still have to setup either an Active Directory or a LDAP connection within the Mac's Directory Utility.

[https://techcommunity.microsoft.com/t5/microsoft-intune-blog/microsoft-simplifies-endpoint-manager-enrollment-for-apple/ba-p/3570319