WS-Trust is a common requirement for these solutions to support single sign-on.
If you use another vendor solution for federation, check with that vendor for how to configure it for Azure AD. Single sign-on (SSO) is supported for Azure Information Protection so that users are not repeatedly prompted for their credentials. To use user accounts from your on-premises directory (AD DS), you must also configure directory integration. To support authentication and authorization for Azure Information Protection, you must have an Azure Active Directory (AD). If your question is not answered there, contact your Microsoft Account Manager or Microsoft Support. Modern Work Plan Comparison (PDF download).Microsoft 365 licensing guidance for security & compliance.You must have an Azure Information Protection plan for classification, labeling, and protection using the Azure Information Protection scanner or client. Subscription for Azure Information Protection For more information, see Install the Azure Information Protection unified labeling client for users and The client side of Azure Information Protection. To deploy Azure Information Protection, you must have the AIP client installed on any machines where you want to use AIP features. Subscription for Azure Information Protection.Learn more in our recent deprecation blog.īefore deploying Azure Information Protection, ensure that your system meets the following prerequisites: We recommend that you migrate to unified labeling and upgrade to the unified labeling client. No further support is provided for the classic client, and maintenance versions will no longer be released. To provide a unified and streamlined customer experience, the Azure Information Protection classic client and Label Management in the Azure Portal are deprecated as of March 31, 2021.