Microsoft Office 365 supports Sign-in federation with WSFED and SAML 2.0, which means that customers who have a directory on-premises can federate directly with Office 365 for passive authentication scenarios. Passive authentication scenarios are those where the user signs in through a web form shown by the SAML identity provider.
Deepnet DualShield is a two-factor or multi-factor authentication platform. The Single-Sign-On (SSO) server in the DualShield platform is a fully compliant WSFED and SAML 2.0 Identity Provider. Therefore, Office 365 customers can secure their Office 365 applications with two-factor or multi-factor authentication by integrating DualShield SSO with Office 365.
| Children Display |
|---|
Related Articles
...
Entra ID and Office 365 support external MFA providers, such as Deepnet DualShield MFA, in 2 different ways:
- Federated Authentication
- External Authentication Method (EAM)
Federated Authentication is a legacy solution that Microsoft provided in the past. It can only be implemented at the domain level, and it does not fully support Entra ID Conditional Access Policies. In contrast, the External Authentication Method is a modern authentication method that Microsoft provided recently. It can be implemented at any level, including user, group, and domain, and it fully supports Conditional Access Policies in Entra ID.
Therefore, we recommend the External Authentication Method (EAM) over Federated Authentication.
| Children Display |
|---|