K
Q

Does Azure AD integrate with GCP/GKE to allow SSO?

9/26/2018

I want to use Azure AD to authenticate users to GCP/GKE, is this natively possible (i.e. without using some external service to mimic the Azure AD structure in Google Cloud IAM)

-- dippynark
azure
google-cloud-platform
google-kubernetes-engine

Similar Questions

WebSocket handshake: Unexpected response code: 400 in kubernetes-ingress
Client error: `BAN http://varnish` resulted in a `405 Not allowed` response
Issue with Batch Prediction on Tensorflow Serving
Deploying a container from ACR to AKS

1 Answer

9/26/2018

You can combine three Google Cloud systems to do this:

  1. Cloud Identity which allows you to have Google accounts for @yourcompany.com, managed by you, without G Suite.
  2. Google Cloud Directory Sync which will sync your Active Directory to Cloud Identity.
  3. SSO allows the actual log-on to use Active Di

With these together, you can have managed accounts synced from Active Directory, that use your Active Directory to log in. There is a great write up of this set-up on the gcp blog that goes into some more detail.

-- David
Source: StackOverflow