How do authenticate & authorize AD users to use a .NET web application hosted on an EC2 instance?

Question

I have a .NET Core web application running on an EC2 instance. My requirements include that AD users of a specific domain be able to access it. Other security measures will restrict access to the web app to this domain's users exclusively. Not logged into the domain? No access. No exceptions. What I need to do is to differentiate those users; two different groups and I need to be able to differentiate those users in the web app's code base as some pages will render slightly differently for some users.  Is this something I can do with Cognito or with Identity Center? I cannot implement Authentication in the app itself.

Answer

Hello.

Cognit can use Active Directory etc. as an external IdP, so I think it may be possible to implement what you want to do.  
The following documents may be helpful.  
https://aws.amazon.com/jp/blogs/security/how-to-set-up-amazon-cognito-for-federated-authentication-using-azure-ad/

How do authenticate & authorize AD users to use a .NET web application hosted on an EC2 instance?

相关内容