Routing all application traffic through a proxy
Posted by: Sahil Malik - blah.winsmarts.com,
on 12 May 2016 |
View original | Bookmarked: 0 time(s)
SharePoint Training: more information
I ran into an interesting challenge recently. When using ADAL or MSAL, if you have web apis on prem that you need to protect with AzureAD, your web server will need to make an outbound call to AzureAD to verify authentication. Frequently these outbound calls are blocked (firewalls). And Microsoft has put up (laugable) guidance on this matter. Basically they ask you to create 50+ wildcard exceptions or 500ish whitelisted IP addresses. Enough to give any IT security admin the heejeebiees. One decent workaround however is for this server to route all its traffic through a proxy. That...