Skype for Business Server (SfB) 2015 May 2017 cumulative update supports Hybrid Modern Authentication (HMA). To use HMA with your SfB on-premises, you will need to have on-premises Active Directory f...
Updated Nov 25, 2019
Version 19.0Blog Post
Hi Carolyn
Great article! I have configured MA in my testlab with an On-Prem environment (all users are hosted On-Prem) and it works as expected without any issue until now. ;-) There are some question about fallback scenarios in case OAuth will not work.
What about if OAuth cannot proceed? Either internet connection is broken at customer side, there is a service issue at Microsoft Datacenter in accepting MA, ADFS is from the customer is not working correcly for some reason... As far as I have tested with my On-Prem clients (Desktop and Mobile), they will no longer be able to login to SfB!
Is there a kind of a fallback scenario? Clients which does not support OAuth will fallback to NTLM. Is there something similar for MA if there is one component in the authentication flow which does not work correctly? Or do we stuck in not being able to authenticate and login to O365?