The goal of this post is to help clarify some confusion about setting up Pass-Through Authentication in Azure AD Connect and outline the steps for completing the Azure AD Connect Wizard. Stepping through the AAD Connect Wizard and setting up PTA may seem simple at first, but the tool has some tricky idiosyncrasies that are worth noting. The below steps will help you work through them.
When you have added a custom domain in the Azure Portal and are ready to configure the connect wizard, follow these steps to sync your on-premises directory with Azure Active Directory.
1. Browse to the Microsoft store from your Sync virtual machine to download Microsoft Azure Active Directory Connect. You will need to disable all security settings in the virtual machine’s browser in order to use the Internet and install the wizard. You can do this through the security settings in the browser itself, or you can go to Server Manager > Local Server > IE Enhanced Security Settings and turn the security settings off. …
Over 300 people have asked questions on Stack Overflow about how to configure Reply URLs for .NET web apps in the Azure Portal. Reply URLs are a very simple concept, but their setup in the Azure Portal is not necessarily intuitive.
When you register an Azure AD application you are required to configure a reply URL, which by default takes its value from the sign-on URL entered during the app registration.
In Azure AD, the difference between the Reply URL and the PostLogoutRedirectURI is subtle. The official Microsoft documentation defines the Reply URL as follows:
“In the case of a web API or web application, the Reply URL is the location to which Azure AD will send the authentication response, including a token if the authentication was successful.” …