Azure Active Directory integrations with authentication and synchronization protocols
Microsoft Azure Active Directory (Azure AD) enables integration with many authentication and synchronization protocols. The authentication integrations enable you to use Azure AD and its security and management features with little or no changes to your applications that use legacy authentication methods. The synchronization integrations enable you to sync user and group data to Azure AD, and then user Azure AD management capabilities. Some sync patterns also enable automated provisioning.
Legacy authentication protocols
The following table presents authentication Azure AD integration with legacy authentication protocols and their capabilities. Select the name of an authentication protocol to see
A detailed description
When to use it
Architectural diagram
Explanation of system components
Links for how to implement the integration
| Authentication protocol | Authentication | Authorization | Multi-factor Authentication | Conditional Access |
|---|---|---|---|---|
| Header-based authentication | ![]() |
![]() |
![]() |
![]() |
| LDAP authentication | ![]() |
|||
| OAuth 2.0 authentication | ![]() |
![]() |
![]() |
![]() |
| OIDC authentication | ![]() |
![]() |
![]() |
![]() |
| Password based SSO authentication | ![]() |
![]() |
![]() |
![]() |
| RADIUS authentication | ![]() |
![]() |
![]() |
|
| Remote Desktop Gateway services | ![]() |
![]() |
![]() |
![]() |
| Secure Shell (SSH) | ![]() |
![]() |
![]() |
|
| SAML authentication | ![]() |
![]() |
![]() |
![]() |
| Windows Authentication - Kerberos Constrained Delegation | ![]() |
![]() |
![]() |
![]() |
Synchronization patterns
The following table presents Azure AD integration with synchronization patterns and their capabilities. Select the name of a pattern to see
A detailed description
When to use it
Architectural diagram
Explanation of system components
Links for how to implement the integration
| Synchronization pattern | Directory synchronization | User provisioning |
|---|---|---|
| Directory synchronization | ![]() |
|
| LDAP Synchronization | ![]() |
|
| SCIM synchronization | ![]() |
![]() |
