How to synchronize multiple Office 365 tenant apps to a custom MVC application app using Azure AD sigle sign-on

Question

I have read through lots of articles on Office 365 and Azure AD, but I am confused. This is my issue: There are several schools with individual Office 365 subscriptions (multi-tenant) and their users (teachers and students) sign into an MVC application (standalone app) to access their mails, calendar and other school related features.

I have to create single sign on for all these users from their Office 365 accounts using Azure AD and synchronize Office 365 mailbox, calendar and other apps with this application.

What path do I need to take to establish single sign on (ADFS or password only or something else with AD Connect) and can this be done with single Azure AD tenant? And also how to synchronize Office apps?

Answer 1

You need to explain more about your questions . From your description , it seems you want to build a multi-tenant .Net MVC web application as @RasmusW suggested .And in addition , if you want to get O365 mails,calendars information in your web app , you could use Microsoft Graph API , also click here for code samples .

Answer 2

There are several different questions here. I don't know what is meant by "how to synchronize Office apps".

Creating an app that can be signed on to by users in different tenants can be done. Look for "asp.net mvc azure ad multitenant":

1. Register the application in one Azure AD
2. Make it multitenant by flipping the switch in the application configuration in the Azure management portal
3. Publish the application and verify that you can sign in with a user located in the "home AAD" (where the application is published)
4. Test sign-on with a user in a different AAD. That may involve first signing on as an admin user to grant the application access to that AAD tenant.