Hi All,
I have been researching the latest version of Azure Active Directory Sync Service and the proposed MS roadmap for Dirsync, FIM, Azure AD Sync and Azure Active Directory Connect - link but am still confused about my options.
I have a client whose is part of a government organisation and wants to provide on-premise access to applications hosted on an on-premise SharePoint farm to other Government bodies through a federation. They all currently have separate Active Directory on-premise forests, with no trust in place, using the cloud is not being considered at the moment because of current data sensitivity\legislation.
Question - I'm investigating using ADFS for authentication and Single-Sign on but want to be able to grant users permissions through the people picker and also perform SharePoint User Profile Sync. Which of the above technologies would be the best fit for this?
I also understand that configuring full trust between organisations forests would allow this but am looking for a solution where I am not be allowed to utilise full trust between organisations.
Any ideas of which technology I could use along with ADFS to sync users between on premises AD so as to be accessible through such things as the SP people picker?
Thanks,