Merge pull request #49431 from MicrosoftDocs/master

8/20 AM Publish

Author: huypub

.openpublishing.redirection.json

@@ -26996,6 +26996,11 @@
             "redirect_url": "/azure/active-directory/user-help/active-directory-saas-access-panel-user-help",
             "redirect_document_id": true
         },
+        {
+            "source_path": "articles/active-directory/user-help/microsoft-authenticator-app-phone-signin-faq.md",
+            "redirect_url": "/azure/active-directory/user-help/microsoft-authenticator-app-how-to",
+            "redirect_document_id": false
+        },
         {
             "source_path": "articles/active-directory/user-help/device-management-azuread-registered-devices-windows10-setup.md",
             "redirect_url": "/azure/active-directory/user-help/user-help-register-device-on-network",

articles/active-directory-b2c/TOC.yml

@@ -261,6 +261,8 @@
     href: https://azure.microsoft.com/roadmap/?category=security-identity
   - name: Frequently asked questions
     href: active-directory-b2c-faqs.md
+  - name: Getting help
+    href: /azure/active-directory/develop/developer-support-help-options
   - name: Pricing
     href: https://azure.microsoft.com/pricing/details/active-directory-b2c/
   - name: Pricing calculator

articles/active-directory/connect/active-directory-aadconnect-prerequisites.md

@@ -28,7 +28,7 @@ Before you install Azure AD Connect, there are a few things that you need.
   * You can also use the [Azure portal](https://portal.azure.com). This portal does not require an Azure AD license.
 * [Add and verify the domain](../active-directory-domains-add-azure-portal.md) you plan to use in Azure AD. For example, if you plan to use contoso.com for your users then make sure this domain has been verified and you are not only using the contoso.onmicrosoft.com default domain.
 * An Azure AD tenant allows by default 50k objects. When you verify your domain, the limit is increased to 300k objects. If you need even more objects in Azure AD, then you need to open a support case to have the limit increased even further. If you need more than 500k objects, then you need a license, such as Office 365, Azure AD Basic, Azure AD Premium, or Enterprise Mobility and Security.
-* ADSyncPrep is a PowerShell script module that provides functions that are used to prepare your Active Directory environment for Azure AD Connect.  ADSyncPrep requires the [Azure AD Microsoft Online v1.1 PowerShell Module](https://docs.microsoft.com/powershell/azure/active-directory/install-msonlinev1?view=azureadps-1.0).  Version 2 will not work.  You will can install the module using the `Install-Module` cmdlet.  For more information see the link provided.
+* ADSyncPrep is a PowerShell script module that provides functions that are used to prepare your Active Directory environment for Azure AD Connect.  ADSyncPrep requires the [Azure AD Microsoft Online v1.1 PowerShell Module](https://docs.microsoft.com/powershell/azure/active-directory/install-msonlinev1?view=azureadps-1.0).  Version 2 will not work. You can install the module using the `Install-Module` cmdlet.  For more information see the link provided.
 
 ### Prepare your on-premises data
 * Use [IdFix](https://support.office.com/article/Install-and-run-the-Office-365-IdFix-tool-f4bd2439-3e41-4169-99f6-3fabdfa326ac) to identify errors such as duplicates and formatting problems in your directory before you synchronize to Azure AD and Office 365.

articles/active-directory/develop/quickstart-v1-openid-connect-code.md

@@ -406,7 +406,7 @@ Sign in with either a personal Microsoft account or a work or school account, an
 
 For reference, the completed sample (without your configuration values) [is provided as a .zip file](https://github.com/AzureADQuickStarts/WebApp-OpenIDConnect-NodeJS/archive/complete.zip). Alternatively, you can clone it from GitHub:
 
-```git clone --branch complete https://github.com/AzureADQuickStarts/WebApp-OpenIDConnect-NodeJS.git```
+```git clone --branch master https://github.com/AzureADQuickStarts/WebApp-OpenIDConnect-NodeJS.git```
 
 You can now move onto more advanced topics. You might want to try:
 

articles/active-directory/fundamentals/active-directory-faq.md

@@ -208,4 +208,4 @@ For more information, see [Automate user provisioning and deprovisioning to SaaS
 - - -
 **Q:  Can I set up a secure LDAP connection with Azure AD?**
 
-**A:**  No. Azure AD does not support the LDAP protocol.
+**A:**  No. Azure AD does not support the LDAP protocol. However, you can configure secure LDAP with Azure AD Domain Services.

articles/active-directory/saas-apps/eluminate-tutorial.md

@@ -0,0 +1,216 @@
+---
+title: 'Tutorial: Azure Active Directory integration with eLuminate | Microsoft Docs'
+description: Learn how to configure single sign-on between Azure Active Directory and eLuminate.
+services: active-directory
+documentationCenter: na
+author: jeevansd
+manager: femila
+ms.reviewer: joflore
+
+ms.assetid: 94c28db4-dbca-446b-8eef-9b728f18ca9a
+ms.service: active-directory
+ms.workload: identity
+ms.tgt_pltfrm: na
+ms.devlang: na
+ms.topic: article
+ms.date: 08/16/2018
+ms.author: jeedes
+
+---
+# Tutorial: Azure Active Directory integration with eLuminate
+
+In this tutorial, you learn how to integrate eLuminate with Azure Active Directory (Azure AD).
+
+Integrating eLuminate with Azure AD provides you with the following benefits:
+
+- You can control in Azure AD who has access to eLuminate.
+- You can enable your users to automatically get signed-on to eLuminate (Single Sign-On) with their Azure AD accounts.
+- You can manage your accounts in one central location - the Azure portal.
+
+If you want to know more details about SaaS app integration with Azure AD, see [what is application access and single sign-on with Azure Active Directory](../manage-apps/what-is-single-sign-on.md)
+
+## Prerequisites
+
+To configure Azure AD integration with eLuminate, you need the following items:
+
+- An Azure AD subscription
+- A eLuminate single sign-on enabled subscription
+
+> [!NOTE]
+> To test the steps in this tutorial, we do not recommend using a production environment.
+
+To test the steps in this tutorial, you should follow these recommendations:
+
+- Do not use your production environment, unless it is necessary.
+- If you don't have an Azure AD trial environment, you can [get a one-month trial](https://azure.microsoft.com/pricing/free-trial/).
+
+## Scenario description
+
+In this tutorial, you test Azure AD single sign-on in a test environment. 
+The scenario outlined in this tutorial consists of two main building blocks:
+
+1. Adding eLuminate from the gallery
+2. Configuring and testing Azure AD single sign-on
+
+## Adding eLuminate from the gallery
+
+To configure the integration of eLuminate into Azure AD, you need to add eLuminate from the gallery to your list of managed SaaS apps.
+
+**To add eLuminate from the gallery, perform the following steps:**
+
+1. In the **[Azure portal](https://portal.azure.com)**, on the left navigation panel, click **Azure Active Directory** icon. 
+
+	![The Azure Active Directory button][1]
+
+2. Navigate to **Enterprise applications**. Then go to **All applications**.
+
+	![The Enterprise applications blade][2]
+
+3. To add new application, click **New application** button on the top of dialog.
+
+	![The New application button][3]
+
+4. In the search box, type **eLuminate**, select **eLuminate** from result panel then click **Add** button to add the application.
+
+	![eLuminate in the results list](./media/eluminate-tutorial/tutorial_eluminate_addfromgallery.png)
+
+## Configure and test Azure AD single sign-on
+
+In this section, you configure and test Azure AD single sign-on with eLuminate based on a test user called "Britta Simon".
+
+For single sign-on to work, Azure AD needs to know what the counterpart user in eLuminate is to a user in Azure AD. In other words, a link relationship between an Azure AD user and the related user in eLuminate needs to be established.
+
+To configure and test Azure AD single sign-on with eLuminate, you need to complete the following building blocks:
+
+1. **[Configure Azure AD Single Sign-On](#configure-azure-ad-single-sign-on)** - to enable your users to use this feature.
+2. **[Create an Azure AD test user](#create-an-azure-ad-test-user)** - to test Azure AD single sign-on with Britta Simon.
+3. **[Create a eLuminate test user](#create-a-eluminate-test-user)** - to have a counterpart of Britta Simon in eLuminate that is linked to the Azure AD representation of user.
+4. **[Assign the Azure AD test user](#assign-the-azure-ad-test-user)** - to enable Britta Simon to use Azure AD single sign-on.
+5. **[Test single sign-on](#test-single-sign-on)** - to verify whether the configuration works.
+
+### Configure Azure AD single sign-on
+
+In this section, you enable Azure AD single sign-on in the Azure portal and configure single sign-on in your eLuminate application.
+
+**To configure Azure AD single sign-on with eLuminate, perform the following steps:**
+
+1. In the Azure portal, on the **eLuminate** application integration page, click **Single sign-on**.
+
+	![Configure single sign-on link][4]
+
+2. On the **Single sign-on** dialog, select **Mode** as	**SAML-based Sign-on** to enable single sign-on.
+
+	![Single sign-on dialog box](./media/eluminate-tutorial/tutorial_eluminate_samlbase.png)
+
+3. On the **eLuminate Domain and URLs** section, perform the following steps:
+
+	![eLuminate Domain and URLs single sign-on information](./media/eluminate-tutorial/tutorial_eluminate_url.png)
+
+    a. In the **Sign-on URL** textbox, type a URL using the following pattern: `https://ClientShortName.eluminate.ca/azuresso/account/SignIn`
+
+	b. In the **Identifier** textbox, type a URL using the following pattern: `Eluminate/ClientShortName`
+
+	> [!NOTE]
+	> These values are not real. Update these values with the actual Sign-On URL and Identifier. Contact [eLuminate Client support team](mailto:[email protected]) to get these values.
+
+4. On the **SAML Signing Certificate** section, click the copy button to copy **App Federation Metadata Url** and paste it into notepad.
+
+	![The Certificate download link](./media/eluminate-tutorial/tutorial_eluminate_certificate.png) 
+
+5. Click **Save** button.
+
+	![Configure Single Sign-On Save button](./media/eluminate-tutorial/tutorial_general_400.png)
+
+6. To configure single sign-on on **eLuminate** side, you need to send the **App Federation Metadata Url** to [eLuminate support team](mailto:[email protected]). They set this setting to have the SAML SSO connection set properly on both sides.
+
+### Create an Azure AD test user
+
+The objective of this section is to create a test user in the Azure portal called Britta Simon.
+
+   ![Create an Azure AD test user][100]
+
+**To create a test user in Azure AD, perform the following steps:**
+
+1. In the Azure portal, in the left pane, click the **Azure Active Directory** button.
+
+    ![The Azure Active Directory button](./media/eluminate-tutorial/create_aaduser_01.png)
+
+2. To display the list of users, go to **Users and groups**, and then click **All users**.
+
+    ![The "Users and groups" and "All users" links](./media/eluminate-tutorial/create_aaduser_02.png)
+
+3. To open the **User** dialog box, click **Add** at the top of the **All Users** dialog box.
+
+    ![The Add button](./media/eluminate-tutorial/create_aaduser_03.png)
+
+4. In the **User** dialog box, perform the following steps:
+
+    ![The User dialog box](./media/eluminate-tutorial/create_aaduser_04.png)
+
+    a. In the **Name** box, type **BrittaSimon**.
+
+    b. In the **User name** box, type the email address of user Britta Simon.
+
+    c. Select the **Show Password** check box, and then write down the value that's displayed in the **Password** box.
+
+    d. Click **Create**.
+
+### Create a eLuminate test user
+
+In this section, you create a user called Britta Simon in eLuminate. Work with [eLuminate support team](mailto:[email protected]) to add the users in the eLuminate platform. Users must be created and activated before you use single sign-on.
+
+### Assign the Azure AD test user
+
+In this section, you enable Britta Simon to use Azure single sign-on by granting access to eLuminate.
+
+![Assign the user role][200]
+
+**To assign Britta Simon to eLuminate, perform the following steps:**
+
+1. In the Azure portal, open the applications view, and then navigate to the directory view and go to **Enterprise applications** then click **All applications**.
+
+	![Assign User][201] 
+
+2. In the applications list, select **eLuminate**.
+
+	![The eLuminate link in the Applications list](./media/eluminate-tutorial/tutorial_eluminate_app.png)  
+
+3. In the menu on the left, click **Users and groups**.
+
+	![The "Users and groups" link][202]
+
+4. Click **Add** button. Then select **Users and groups** on **Add Assignment** dialog.
+
+	![The Add Assignment pane][203]
+
+5. On **Users and groups** dialog, select **Britta Simon** in the Users list.
+
+6. Click **Select** button on **Users and groups** dialog.
+
+7. Click **Assign** button on **Add Assignment** dialog.
+
+### Test single sign-on
+
+In this section, you test your Azure AD single sign-on configuration using the Access Panel.
+
+When you click the eLuminate tile in the Access Panel, you should get automatically signed-on to your eLuminate application.
+For more information about the Access Panel, see [Introduction to the Access Panel](../user-help/active-directory-saas-access-panel-introduction.md).
+
+## Additional resources
+
+* [List of Tutorials on How to Integrate SaaS Apps with Azure Active Directory](tutorial-list.md)
+* [What is application access and single sign-on with Azure Active Directory?](../manage-apps/what-is-single-sign-on.md)
+
+<!--Image references-->
+
+[1]: ./media/eluminate-tutorial/tutorial_general_01.png
+[2]: ./media/eluminate-tutorial/tutorial_general_02.png
+[3]: ./media/eluminate-tutorial/tutorial_general_03.png
+[4]: ./media/eluminate-tutorial/tutorial_general_04.png
+
+[100]: ./media/eluminate-tutorial/tutorial_general_100.png
+
+[200]: ./media/eluminate-tutorial/tutorial_general_200.png
+[201]: ./media/eluminate-tutorial/tutorial_general_201.png
+[202]: ./media/eluminate-tutorial/tutorial_general_202.png
+[203]: ./media/eluminate-tutorial/tutorial_general_203.png