适用于应用程序的品牌准则Branding guidelines for applications

使用 Azure Active Directory (Azure AD) 开发应用程序时,如果客户想要使用工作或学校帐户(在 Azure AD 中托管)进行注册和登录到应用程序,你需要指导客户进行相关操作。When developing applications with Azure Active Directory (Azure AD), you'll need to direct your customers when they want to use their work or school account (managed in Azure AD) for sign-up and sign-in to your application.

在本文中,你将:In this article, you will:

  • 了解 Microsoft 管理的两种用户帐户以及如何在应用程序中引用 Azure AD 帐户Learn about the two kinds of user accounts managed by Microsoft and how to refer to Azure AD accounts in your application
  • 了解添加要在应用中使用的 Microsoft 徽标所需执行的操作Find out what you need to do add the Microsoft logo for use in your app
  • 下载官方的登录使用 Microsoft 登录图像以在应用中使用Download the official Sign in or Sign in with Microsoft images to use in your app
  • 了解品牌和导航的注意事项Learn about the branding and navigation do's and don'ts

在应用程序中引用 Azure AD 帐户Referring to Azure AD accounts in your application

Microsoft 不会向最终用户显示 Azure 或 Active Directory 品牌名称,你也应该如此。Microsoft doesn’t expose end users to the Azure or the Active Directory brand names, and neither should you.

  • 在用户登录后,应尽量使用组织的名称和徽标。Once users are signed in, use the organization’s name and logo as much as possible. 这比使用“你的组织”等通用词语要好。This is better than using generic terms like “your organization.”
  • 如果用户未登录,将他们的帐户称为“工作或学校帐户”,并使用 Microsoft 徽标来表明这些帐户由 Microsoft 管理。When users aren't signed in, refer to their accounts as “Work or school accounts” and use the Microsoft logo to convey that Microsoft manages these accounts. 请勿使用“企业帐户”、“业务帐户”或“公司帐户”等词语,这会给用户造成混淆。Don’t use terms like “enterprise account,” “business account,” or “corporate account,” which create user confusion.

用户帐户象形图User account pictogram

在先前版本的准则中,我们建议使用“蓝色徽章”象形图。In an earlier version of these guidelines, we recommended using a “blue badge” pictogram. 根据用户和开发人员的反馈,我们现在建议改用 Microsoft 徽标。Based on user and developer feedback, we now recommend the use of the Microsoft logo instead. Microsoft 徽标帮助用户了解,他们可以重用其用于 Office 365 或其他 Microsoft 业务服务的帐户来登录应用。The Microsoft logo will help users understand that they can reuse the account they use with Office 365 or other Microsoft business services to sign into your app.

使用 Azure AD 注册和登录Signing up and signing in with Azure AD

应用程序可以为注册和登录提供不同的路径,以下部分提供了这两种应用场景的可视指南。Your app may present separate paths for sign-up and sign-in and the following sections provide visual guidance for both scenarios.

如果应用支持最终用户注册:可以显示“登录” 按钮,让用户使用其工作帐户访问应用。If your app supports end-user sign-up: You can show a sign-in button that allows users to access your app with their work account. 当用户首次访问你的应用程序时,Azure AD 会显示许可提示。Azure AD will show a consent prompt the first time they access your app.

如果应用需要只有管理员才能授予的权限,或者需要组织许可: 请将管理员请求与用户登录区别开来。If your app requires permissions that only admins can consent to, or if your app requires organizational licensing: Separate admin acquisition from user sign-in. “获取此应用”按钮 会将管理员重定向到登录页,然后要求他们代表其组织中的用户授权同意,这还有一个额外的好处,那就是在你的应用中抑制最终用户许可提示。The “get this app” button will redirect admins to sign in then ask them to grant consent on behalf of users in their organization, which has the added benefit of suppressing end-user consent prompts to your app.

有关获取应用程序的可视指南Visual guidance for app acquisition

“获取应用程序”链接必须将用户重定向到 Azure AD 的访问权限授予(授权)页,以方便组织的管理员对应用程序进行授权,使其有权访问 Microsoft 托管的组织数据。Your “get the app” link must redirect the user to the Azure AD grant access (authorize) page, to allow an organization’s administrator to authorize your app to have access to their organization’s data, which is hosted by Microsoft. 有关如何请求访问权限的详细信息,请参阅将应用程序与 Azure Active Directory 集成 一文。Details on how to request access are discussed in the Integrating Applications with Azure Active Directory article.

管理员许可应用后,可以选择将应用添加到其用户的 Office 365 应用启动器体验(可从 waffle 访问)。After admins consent to your app, they can choose to add it to their users’ Office 365 app launcher experience (accessible from the waffle). 如果想要广告此功能,可以使用类似于“将此应用程序添加到组织”词语,并显示类似于以下示例的按钮:If you want to advertise this capability, you can use terms like “Add this app to your organization” and show a button like the following example:

显示 Microsoft 徽标和“添加到我的组织”文本的按钮

但是,我们建议编写说明性的文本而不要依赖于按钮。However, we recommend that you write explanatory text instead of relying on buttons. 例如:For example:

如果已使用了 Office 365 或 Microsoft 的其他业务服务,则可以授予 <your_app_name> 对组织数据的访问权限。这样,用户便可以使用其现有工作帐户访问 <your_app_name>。If you already use Office 365 or other business service from Microsoft, you can grant <your_app_name> access to your organization’s data. This will allow your users to access <your_app_name> with their existing work accounts.

若要下载官方 Microsoft 徽标以在应用中使用,请右键单击要使用的徽标,然后将其保存到计算机。To download the official Microsoft logo for use in your app, right-click the one you want to use and then save it to your computer.

资产Asset PNG 格式PNG format SVG 格式SVG format
Microsoft 徽标Microsoft logo PNG 格式的可下载 Microsoft 徽标 SVG 格式的可下载 Microsoft 徽标

有关登录的可视指南Visual guidance for sign-in

应用应显示登录按钮,用于将用户重定向到与用来与 Azure AD 集成的协议对应的登录终结点。Your app should display a sign-in button that redirects users to the sign-in endpoint that corresponds to the protocol you use to integrate with Azure AD. 以下部分详细描述了该按钮的外观。The following section provides details on what that button should look like.

图标和“通过 Microsoft 登录”Pictogram and “Sign in with Microsoft”

Microsoft 徽标和“通过 Microsoft 登录”词语的关联可唯一地将 Azure AD 与应用支持的其他标识提供者区别开来。It’s the association of the Microsoft logo and the “Sign in with Microsoft” terms that uniquely represent Azure AD amongst other identity providers your app may support. 如果没有足够的空间来容纳“通过 Microsoft 登录”,则可以将其缩短为“登录”。If you don’t have enough space for “Sign in with Microsoft,” it’s ok to shorten it to “Sign in.” 可以对该按钮使用浅色或深色方案。You can use a light or dark color scheme for the buttons.

下图显示在使用应用资产时,Microsoft 建议的红线。The following diagram shows the Microsoft-recommended redlines when using the assets with your app. 红线适用于“Microsoft 登录”或更短的“登录”版本。The redlines apply to "Sign in with Microsoft" or the shorter "Sign in" version.

显示“使用 Microsoft 登录”红线

若要下载官方图像以在应用中使用,请右键单击要使用的图像,然后将其保存到计算机。To download the official images for use in your app, right-click the one you want to use and then save it to your computer.

资产Asset PNG 格式PNG format SVG 格式SVG format
Microsoft 登录(深色主题)Sign in with Microsoft (dark theme) 可下载的“使用 Microsoft 登录”按钮深色主题 PNG 可下载的“使用 Microsoft 登录”按钮深色主题 SVG
Microsoft 登录(浅色主题)Sign in with Microsoft (light theme) 可下载的“使用 Microsoft 登录”按钮浅色主题 PNG 可下载的“使用 Microsoft 登录”按钮浅色主题 SVG
登录(深色主题)Sign in (dark theme) 可下载的“登录”短按钮深色主题 PNG 可下载的“登录”短按钮深色主题 SVG
登录(浅色主题)Sign in (light theme) 可下载的“登录”短按钮浅色主题 PNG 可下载的“登录”短按钮浅色主题 SVG

品牌注意事项Branding Do’s and Don’ts

务必将“工作或学校帐户”与“通过 Microsoft 登录”按钮结合使用来提供附加说明,以便帮助最终用户识别他们是否可以使用该应用。DO use “work or school account” in combination with the "Sign in with Microsoft" button to provide additional explanation to help end users recognize whether they can use it. 请勿 使用“企业帐户”、“业务帐户”或“公司帐户”等其他词语。DON’T use other terms such as “enterprise account”, “business account” or “corporate account.”

请勿使用“Office 365 ID”或“Azure ID”。DON’T use “Office 365 ID” or “Azure ID.” Office 365 也是 Microsoft 的消费型产品名称,它不使用 Azure AD 进行身份验证。Office 365 is also the name of a consumer offering from Microsoft, which doesn’t use Azure AD for authentication.

不要 更改 Microsoft 徽标。DON’T alter the Microsoft logo.

请勿向最终用户显示 Azure 或 Active Directory 品牌。DON’T expose end users to the Azure or Active Directory brands. 但是,可以对开发人员、IT 专业人员和管理员使用这些词语。It’s ok however to use these terms with developers, IT pros, and admins.

提供让用户注销以及切换到其他用户帐户的方法。DO provide a way for users to sign out and switch to another user account.