Azure Active Directory
Microsoft's cloud-based identity and access management service that helps employees sign in and access resources. Azure AD provides OAuth, OpenID Connect, SAML, and other identity protocols for securing applications and managing user identities.
APIs
Microsoft Graph API
The primary API for accessing Azure AD and other Microsoft 365 services.
Azure AD B2C API
Business-to-consumer identity management solution.
Features
Enable users to sign in once and access all connected apps without re-authenticating.
Enforce MFA to add an extra layer of security beyond passwords.
Define access policies based on user, device, location, and risk signals.
Industry-standard protocols for authorization and authentication.
Federate with thousands of SAML-based SaaS applications.
Detect and respond to identity-based risks with AI-powered signals.
Just-in-time privileged access with approval workflows and audit.
Invite external users from partner organizations to access your resources.
Enable customer and partner identity management with Azure AD B2C and B2B.
Use Cases
Provide single sign-on for employees across thousands of SaaS applications.
Implement zero trust architecture with identity as the control plane.
Build customer-facing login with Azure AD B2C supporting social identities.
Secure APIs with OAuth 2.0 tokens issued by Azure AD.
Extend on-premises Active Directory to the cloud with Azure AD Connect.
Integrations
Provides identity and access management for all Microsoft 365 applications.
SAML-based SSO integration with Salesforce CRM and Platform.
Federated SSO and user provisioning for ServiceNow via SAML and SCIM.
SAML SSO and SCIM provisioning for GitHub Enterprise organizations.
Federate Azure AD with AWS IAM Identity Center for cross-cloud SSO.