設定 Skycure 使用 Azure Active Directory 單一登入 (SSO)Configure Skycure to use Azure Active Directory Single Sign On (SSO)

當您整合 Intune 與 Skycure 時,會使用 Azure AD SSO。Azure AD SSO is used when you integrate Intune with Skycure. 以下是主要優點:Here are the main benefits:

  • 管理員可以使用相同的認證,而不必在每次登入和登出 Microsoft 入口網站 (Intune、Azure) 及 Skycure 管理主控台時重新輸入認證。Admins can use the same credentials without having to type it again every time they log in and out from the Microsoft portals (Intune, Azure) and Skycure Management console.

  • 使用者可以使用相同的 Azure AD 認證,而不必在每次登入和登出 Skycure 應用程式時重新輸入認證。End-users can use the same Azure AD credentials without having to type it again every time they log in and out from the Skycure apps.

以下是整合 Skycure 與 Azure Active Directory 單一登入 (SSO) 的步驟。Below are the steps to integrate Skycure with Azure Active Directory Single Sign On (SSO).

擷取 Azure Active Directory 租用戶識別碼To retrieve the Azure Active Directory Tenant ID

您需要擷取 Azure AD 租用戶識別碼。You need to retrieve the Azure AD Tenant ID.

  1. 移至 Azure 入口網站,並使用您的認證登入。Go to the Azure portal and sign in with your credentials.

  2. 您可以看見 [儀表板],請選擇 [Azure Active Directory]。You can see the Dashboard, choose Azure Active Directory.

    Azure AD 儀表板

  3. [Azure Active Directory] 刀鋒視窗隨即開啟,選擇 [屬性]。The Azure Active Directory blade opens, choose Properties.

    Azure AD [屬性] 刀鋒視窗

  4. 在 [Azure Active Directory 屬性] 刀鋒視窗中,按一下 [租用戶目錄識別碼] 下方的 [複製] 圖示。Click on the Copy icon under the Tenant Directory ID at Azure Active Directory Properties blade.

  5. 在文字檔中貼上複製的目錄識別碼值,讓您可在稍後使用。Paste the copied Directory ID value in a text file so you can use it later. 稍後在 Skycure 與 Intune 整合過程中將需用到此目錄識別碼值。The Directory ID value will be required later in the Skycure and Intune integration process.

    Azure AD 儀表板

允許 Skycure 與 Azure Active Directory 通訊Allow Skycure to communicate with Azure Active Directory

  1. 在瀏覽器中輸入下列 URL。Enter the below URL in your browser. 輸入您先前複製到文字檔的 Azure Active Directory 租用戶識別碼,而不是 DIRECTORY_IDInstead of DIRECTORY_ID, enter your Azure Active Directory Tenant ID previously copied to the text file.

    https://login.microsoftonline.com/<DIRECTORY_ID>/oauth2/authorize?client_id=28fd67fdb1794629a8b0dad420b697c7&prompt=admin_consent&redirect_uri=https%3A%2F%2Fmc.skycure.com%2Fapi%2Fexternal%2Fmdm%2Faad_app_consent%2Fmanagement_callback&response_type=code
    
  2. 您需要使用 Azure Active Directory 認證登入。You need to login using your Azure Active Directory credentials. 按一下 [接受] 繼續。Click Accept to continue.

Azure AD 登入頁面

建立適用於 Skycure 的 Azure AD 安全性群組 (選擇性)Create an Azure AD Security group for Skycure (optional)

您可能想要建立專用的使用者群組,其中包含執行 Skycure 的使用者 (例如 Skycure 使用者)。You might want to create a dedicated user group which contain users running Skycure (e.g Skycure users). 透過報告分析 Skycure 活動時,這非常有用。This can be helpful when analyzing Skycure activity through the reports.

注意

您也可以使用現有的 Azure AD 安全性群組。You can also use an existing Azure AD security group.

設定 Azure AD 帳戶以整合 Intune 與 SkycureConfigure the Azure AD account to integrate Intune with Skycure

  1. Skycure 管理主控台,輸入先前儲存於文字檔中的 Azure Active Directory 租用戶識別碼。From the Skycure Management Console, enter the Azure Active Directory Tenant ID previously saved in the text file.

Skycure 管理主控台的 Azure AD 租用戶識別碼欄位

重要

Skycure 會藉由查詢 Azure AD 來驗證 Azure AD 租用戶識別碼是否存在,如果 Skycure 找到該識別碼,管理員就可以繼續下一個步驟,此為基本安裝程式。Skycure validates if the Azure AD Tenant ID exists by querying Azure AD, once Skycure finds it, the admin can proceed to next step, which is the Basic setup.

後續步驟Next steps

下載 Skycure iOS 應用程式設定原則 (英文)Download Skycure iOS app configuration policy

若要提交意見反應,請前往 Intune Feedback