MS365 plugin - Open ID Connect - Switching existing Moodle users to use Microsoft 365 to log in

MS365 plugin - Open ID Connect - Switching existing Moodle users to use Microsoft 365 to log in

de Jerry Lau -
Número de respuestas: 2

I did have any response in another forum and will try my luck here instead.

Here is our current specs:

Moodle 4.1.7 (2022112807)

PHP 7.4.33

MySQL 5.7.33

Our users are current using SAML authentication to login and working great. Now we want to get rid of ldap and use the MS365 login SO we can use Azure to login instead. not knowing much, I read the docs and was able to have login via ms365 accounts.

My question is what else do i need to change:

1. majority of our users have their authentication method set to "SAML". Should I write a script to change them "Open ID connect"? Or leave it as is.

2. What I do not understand is does the user who already has logged in via SAML, do they still have to link their account via Microsoft Block at least once?  https://docs.moodle.org/404/en/Microsoft_365#Switching_existing_Moodle_users_to_use_Microsoft_365_to_log_in

This is the part I do not understand.

Is there something else I need to do elsewhere to modify this?

Can I just turn off/hide/deactivate "ldap" and have it work since it is SAML already and soon "open id connect"? 

I don't know how and where "ldap" fits in all of this, if any.

Thanks

Jerry

Promedio de valoraciones: -
En respuesta a Jerry Lau

Re: MS365 plugin - Open ID Connect - Switching existing Moodle users to use Microsoft 365 to log in

de Gregor McNish -
I experimented with the microsoft block a couple of years ago and was surprised to find that it switched the users authentication method (which wasn't what we wanted!).
With this sort of change, I'd be trying out different options on a test instance. If your usernames will stay the same with MS365 authentication, you can see if changing the auth field in the user table is enough. The auth field for each user indicates the type of authentication that account uses (the value is based on the authentication plugin name).
Promedio de valoraciones: -
En respuesta a Jerry Lau

Re: MS365 plugin - Open ID Connect - Switching existing Moodle users to use Microsoft 365 to log in

de Mark Sharp -
Imagen de Core developers Imagen de Particularly helpful Moodlers Imagen de Plugin developers

You might find this conversation interesting - it's mostly about the difficulties institutions are having, so will give you a heads up on the issues with implementation.

Promedio de valoraciones:Useful (1)