Copy link to clipboard
Copied
Hi,
We manage the IT for several municipalities. The users for these different municipalities are located in 1 Microsoft Entra ID (Azure AD), the difference being that the users have their own domain name per municipality.
Is it possible to link different Adobe admin consoles (one admin console per municipality) to one and the same Entra ID?
One OIDC app will connect to only one directory/admin console. I highly doubt Microsoft will allow the creation of the second OIDC app under the same Azure tenant for another admin console. You could use the "Adobe Identity Management (SAML)" app to configure SSO for another admin console in the same Azure tenant.
Copy link to clipboard
Copied
Thanks for reaching out to us.
Admin consoles are unique and so they can be linked to an azure tenant.
If azure supports multi tenants, Multiple Admin consoles should not have an issue since each admin console would have a unique connection with Azure
Copy link to clipboard
Copied
So Adobe knows which portal to use when a user logs in with user@domainA or user@domainB when they both exists in the same Azure AD?
Copy link to clipboard
Copied
Hi
I have the same question, if the 1 admin console is already configured for SSO via OIDC, if you connect a second admin console, would it create a new enterprise application in Azure, or just use the existing integration?
Copy link to clipboard
Copied
If you have a separate admin console, you can use a different Azure tenant with a different domain to configure SSO using the OIDC app. You can also use the "Adobe Identity Management (SAML) app to configure SSO in the same admin console, however, with a different domain.
Copy link to clipboard
Copied
Thanks for the feedback, but i need to confirm if i can connect a 2 seperate admin consoles to the same Azure tenant via OIDC, and also if it would create a seperate instance in Azure or would it use the same OIDC app.
Copy link to clipboard
Copied
One OIDC app will connect to only one directory/admin console. I highly doubt Microsoft will allow the creation of the second OIDC app under the same Azure tenant for another admin console. You could use the "Adobe Identity Management (SAML)" app to configure SSO for another admin console in the same Azure tenant.