During the installation, the appropriate identity management solution (also called connected mode or disconnected mode) needs to be selected:
As you can see in the preceding screenshot, Azure Stack is supported to run in:
- Azure China Cloud
- Azure Cloud
- ADFS (although called disconnected mode)
This means that if you run it in connected mode (using Azure Cloud or Azure China Cloud), the identity management is moved to Azure AD. To enable this, you will need to have proper permission (global administrator) in Azure AD. This is because the registration of applications needs to be done during the setup. The following table gives an overview of the tasks in detail:
After the specific registrations have been done, there is no need to have the global administrator permissions anymore. If Azure Stack is using disconnected mode, it relies on ADFS and creates the federation trust during the deployment. This means that ADFS has to be already in place before...