Skip to main content

Integrate Azure AD into Essentials/Identity Server?



  • Martin Simonsen Bjørkenes

    Have you considered using ArcGIS Enterprise or ArcGIS Online as Sign In method for Essentials? Provided you have either Portal or ArcGIS Online integrated with Azure AD already, this is by far the easiest way to establish Azure AD security in your Essentials sites.

  • Gareth Finney

    Hi Martin, 

    Thanks for the reply. 

    At present we do not have Portal up and running. That's a story for another day! So in the meantime, we are looking at AAD as our SSO option across all of our applications in the department, so it's not just the spatial apps such as ours.

    Eventually we will be going down the Portal path, but there's some water to flow under that bridge before then. Once we do that, then yeah, I guess we hook that into AAD as you suggest. 

    thanks again for the suggestion - much appreciated


  • Gareth Evans

    Hi Gareth! Great name. ;)

    I'd agree with Martin here, that using Portal (e.g. ArcGIS Enterprise) as an intermediary is the least painful route. Esri have some excellent documentation on setting this up here: Configure Azure Active Directory—Portal for ArcGIS | Documentation for ArcGIS Enterprise

    From there you would follow our Essentials documentation on configuring GE to sign in (federate) with your Portal: Essentials Install - Choose a Method to Sign In to Manager (

    If Portal is not an option due to licensing costs or technical restrictions, we do have this KBA on Using ADFS as an Identity Provider for Essentials – VertiGIS that you could follow and use in an Azure AD context.  

    I would highly encourage you to consider whether Portal is an option here, as having that in place would set you up for the future.

  • Gareth Finney

    Thanks for the reply Gareth.

    At present, Portal is not an option. We are presently working through the implications of heading down the v5 series path with our local GCX supplier.  It's a lot to take in, even before looking at the Esri licencing model around Named Users and what that entails (think 500+ registered editors, and multiple external emergency agencies, and you start to understand our reluctance to join the Portal Party right now). 

    For now though, we need to look at the ADFS approach me thinks. I mucked around with this some time back, but lost that doco, so a big thanks for the heads up there.



    The Other Gareth


  • Gareth Evans

    Hi Other Gareth

    That's understandable.

    If you're still stuck getting through that, I'd suggest submitting a support case to AAM. We've worked with them in the past on troublesome identity provider setup cases so I think they'd be able to help here.


    The Other Other Gareth


Please sign in to leave a comment.