No, there is nothing built in to Filemaker to add AD, Google, or other external account types. You will need to do that in the directory tool. There ARE powershell scripts for Azure AD (and I'm sure the other directory services) fro importing and creating users, with the appropriate credentials. Some of this can be quite fiddly and tedious to figure out. That is a trade off for moving out of Filemaker native bits.
I'm sure many will all start sharing some examples of these functions after having some time to get our feet wet.
Thanks, it's starting to get a bit clearer now.
It looks like only Azure AD has the capability of connecting a user group instead of just individual users. This way one may handle sign up or user import from there as you suggested.
I will try to share some experiences as I learn.
None of the External Authentication providers accounts/groups can be added through scripting... always was this way and is a little more painful for the Google And Amazon OAuth because those rely on individual accounts in the FM file. Not group accounts like Azure AD, on-premise AD or OD.
Have you tried adding an Azure AD group to a FileMaker solution?
I have added an individual MS user and it authenticates just fine but when I change it to Group then it fails. Obviously I change the group name to the Object ID of the Group in the AD. I also assigned the Group to the created Application but no lack :/
You have to make a change to the manifest of your Azure app; it does not automatically allow for group access.
Short description in the 2nd white paper listed here: Version 16 Brings Major New Security Features - FileMaker Security Blog - FMForums.com
Oh great!! Finally works
It's not mentioned in the white paper though. Basically I changed this: