Can some apps use ADFS and some Azure AD?

Occasional Contributor

We use ADFS for around 10 apps for SSO including Office 365.  We also have password hash sync enabled in Azure AD Connect as a backup.   I would like to start testing Azure AD for SSO in hopes that we can retire ADFS someday. I would like to start testing azure app market apps as well as saml based apps.  I was thinking about getting my Docusign test environment connected with our Azure AD instead of ADFS, but I don't want to break prod if what I am envisioning is not supported or does not work.   Thanks

5 Replies
best response confirmed by brentmattson (Occasional Contributor)

You can. What you cannot do is have some of the applications within the Office 365 suite use AD FS, while others use other auth methods. 

That makes sense. Thanks!

Just for clarification on what you said, you CAN'T have sharepoint use ADFS and exchange use PHS.....BUT you CAN have all of office use ADFS and Salesforce use PHS?




Yup, as long as the corresponding application allows you do configure an authentication method separate from the "general" Azure AD one.

@Vasil Michev Can you elaborate on this a bit? I am having issues getting a user to authenticate against Azure AD.  My application keeps pointing me back at ADFS even though the SAML connection is setup directly to Azure AD as a custom enterprise app