Mark Minasi's Tech Forum
Register Calendar Latest Topics Chat
 
 
 


Reply
  Author   Comment  
narigarg28

Still Checking the Forum Out
Registered:
Posts: 2
Reply with quote  #1 
I just completed my O365 setup with OKTA. OKTA is my IDP and O365 is SP. Application is working good. OKTA used some PowerShell commands to complete this setup with O365. I need to know how we can check that setup under O365 admin. I don't have PowerShell knowledge. 
OKTA used below commands for this setup. 

# Enable the SSO for your domain by following command

Set-MsolDomainAuthentication -FederationBrandName $domain -DomainName $domain -Authentication federated -PreferredAuthenticationProtocol SAMLP -IssuerUri $issuer -SigningCertificate $certificate -PassiveLogOnUri $ssoUrl -ActiveLogOnUri $ecpUrl -LogOffUri $logoffUrl –Verbose

--------------------------------------------

# Add user
New-MsolUser -UserPrincipalName <NewUser> -ImmutableId <NewUserId> -FirstName <FirstName> -LastName <LastName> -DisplayName <DisplayName> -LicenseAssignment <LicenseAssignment> -usageLocation <Country name i.e US>

0
Wobble_Wibble

Avatar / Picture

New Friend (or an Old Friend who Built a New Account)
Registered:
Posts: 45
Reply with quote  #2 
I have not used OKTA so cannot speak specifically about it.

Have you dir sync or azure ad connecto in place or just OKTA.

But once you enable some forms of federated login your O365 user will change from cloud managed to managed elsewhere, in your case OKTA.
So you can't reset an O365 password.
Thenot the next step is to login as a test user and make sure you can connect.
Log out
Change your password and sync to OKTA then log back into O365. The old password should notake work only the new one.
That's as good a test as we use.

__________________
Press any key....
Yes, any key....
OK, try the space bar.
0
narigarg28

Still Checking the Forum Out
Registered:
Posts: 2
Reply with quote  #3 
Edit: Name correction

Thanks for reply "Joe". I tried with few other Federation applications. I am looking for a GUI interface in O365 to check Federation setup. So that I will not depend on PowerShell commands.
0
jsclmedave

Administrator
Registered:
Posts: 413
Reply with quote  #4 
Quote:
Originally Posted by narigarg28
Edit: Name correction

Thanks for reply "Joe". I tried with few other Federation applications. I am looking for a GUI interface in O365 to check Federation setup. So that I will not depend on PowerShell commands.


Naresh,

  1. Why cannot OKTA do the check?
  2. Is there something preventing you from passing credentials via PowerShell from your network to the O365 account?
  3. Is this an "in house" project or something that you are doing on your own for training etc..?
  4. IF "in house" have you tried other means to check access?


Joe,

I work with Naresh but have been in training and working on a,,, project,,, so have not had a lot of time to look into this.

I can assist him with anything you can suggest...

Thanks in Advance!!

__________________
Tim Bolton @jsclmedave
Email: [string](0..20|%{[char][int](32+('527377347976847978324785847679797514357977').substring(($_*2),2))}) -replace ' '  

New to the forum? Please Read this
0
wobble_wobble

Avatar / Picture

Associate Troublemaker Apprentice
Registered:
Posts: 740
Reply with quote  #5 
Quote:
Originally Posted by narigarg28
Edit: Name correction

Thanks for reply "Joe". I tried with few other Federation applications. I am looking for a GUI interface in O365 to check Federation setup. So that I will not depend on PowerShell commands.


Naresh

I'm afraid the elephant that is powershell needs to be looked at, especially if your wandering towards Azure/ Office 365. Its the only way that MS can manage something that big and therefore until all GUI tools are written, the only way we can do something.

With regard to a GUI interface, then Azure AD Connect will both give you a resource onpremise to query, manage and  kick, but it also ties in nicely to Office 365 and gives feedback in the management portal.

I'll throw a few images at Tim about what you see.



__________________
Have you tried turning it off and walking away? The next person can fix it!

New to the forum? Read this
0
Previous Topic | Next Topic
Print
Reply

Quick Navigation: