Hi Team,
We are planning to migrate from on-premise ADFS authentication to Azure Cloud Authentication ( Password hash sync + SSO ). Wanted to know what all things we need to do-
1. We have a forest xyz.no and a domain inside that forest abc.xyz.no ( to which ADFS Servers are joined)
2. We have some applications Microsoft office 365, salesforce and few other homegrown on-premise application currently using on-premise ADFS authentication.
3. We are already syncing user data along with password hash to Azure AD tenant using Azure AD Connect.
Things to achieve :
We want to stop using on-premise ADFS and use Azure Cloud authentication, in order to do that I understand that I need to manually move my domain (abc.xyz.no) from federated to Managed ( manually because ADFS was installed standalone not with the help of AD Connect tool), but when I do such a thing will other applications using ADFS get affected ?
Also, once I migrate my domain what changes I need to do at application end like office 365, Salesforce makes them understand that it now needs to use Azure authentication and not ADFS anymore.
And what is the best Roll-back <g class="gr_ gr_232 gr-alert gr_gramm gr_inline_cards gr_run_anim Punctuation multiReplace" data-gr-id="232" id="232">strategy.</g>
Note: Password Hash sync is already enabled.
We are planning to migrate from on-premise ADFS authentication to Azure Cloud Authentication ( Password hash sync + SSO ). Wanted to know what all things we need to do-
1. We have a forest xyz.no and a domain inside that forest abc.xyz.no ( to which ADFS Servers are joined)
2. We have some applications Microsoft office 365, salesforce and few other homegrown on-premise application currently using on-premise ADFS authentication.
3. We are already syncing user data along with password hash to Azure AD tenant using Azure AD Connect.
Things to achieve :
We want to stop using on-premise ADFS and use Azure Cloud authentication, in order to do that I understand that I need to manually move my domain (abc.xyz.no) from federated to Managed ( manually because ADFS was installed standalone not with the help of AD Connect tool), but when I do such a thing will other applications using ADFS get affected ?
Also, once I migrate my domain what changes I need to do at application end like office 365, Salesforce makes them understand that it now needs to use Azure authentication and not ADFS anymore.
And what is the best Roll-back <g class="gr_ gr_232 gr-alert gr_gramm gr_inline_cards gr_run_anim Punctuation multiReplace" data-gr-id="232" id="232">strategy.</g>
Note: Password Hash sync is already enabled.