支持的帐户类型Supported account types

本文介绍了 Microsoft 标识平台应用程序支持的帐户类型(有时称为“受众”)。This article explains what account types (sometimes called audiences) are supported in Microsoft identity platform applications.

公有云中的帐户类型Account types in the public cloud

大多数类型的应用都可以使用任何受众登录用户:Most types of apps can sign in users with any audience:

  • 如果你正在编写业务线 (LOB) 应用程序,则可以在自己的组织中登录用户。If you're writing a line-of-business (LOB) application, you can sign in users in your own organization. 此类应用程序有时称为“单租户”。Such an application is sometimes called single-tenant.

  • 如果你是 ISV,可以编写一个应用程序来登录用户:If you're an ISV, you can write an application that signs in users:

    • 在任何组织中。In any organization. 这样的应用程序称为“多租户”Web 应用程序。Such an application is called a multitenant web application. 你有时会看到它使用工作或学校帐户登录用户。You'll sometimes read that it signs in users with their work or school accounts.
    • 通过其工作或学校。With their work or school.
  • 如果你正在为消费者应用程序编写业务,还可以借助 Azure AD B2C 使用其社交身份登录用户。If you're writing a business to consumers application, you can also sign in users with their social identities, using Azure AD B2C.

身份验证流中的帐户类型支持Account type support in authentication flows

某些帐户类型不能与某些身份验证流程一起使用。Some account types can't be used with certain authentication flows. 例如,在桌面、UWP 或守护程序应用程序中:For instance, in desktop, UWP, or daemon applications:

  • 守护程序应用程序只能与 Azure AD 组织配合使用。Daemon applications can be used only with Azure AD organizations.
  • 只能将集成身份验证流用于工作或学校帐户(在你的组织或任何组织中均可)。You can use the Integrated Windows Authentication flow only with work or school accounts (in your organization or any organization). 集成 Windows 身份验证适用于域帐户,并且需要将计算机加入域或加入 Azure AD。Integrated Windows Authentication works with domain accounts, it and requires the machines to be domain joined or Azure AD joined.
  • 资源所有者密码凭据授予(用户名/密码)。The Resource Owner Password Credentials grant (username/password) .

国家/地区云中的帐户类型Account types in national clouds

应用还可以在国家/地区云中登录用户。Apps can also sign in users in national clouds. 正因如此,这些云才将支持的帐户类型减少到你的组织(单个租户)或任何组织(多租户应用程序)。That's why the supported account types are reduced, for these clouds, to your organization (single tenant) or any organizations (multi-tenant applications).

后续步骤Next steps