Dec 03 2018
01:30 PM
- last edited on
Jan 14 2022
05:21 PM
by
TechCommunityAP
Dec 03 2018
01:30 PM
- last edited on
Jan 14 2022
05:21 PM
by
TechCommunityAP
A little background: our organization uses ADFS for SSO with Office 365; naturally, we sync our AD to Azure AD to make that work. We do not sync passwords with Azure. We need ADFS for Dynamics on-premises, so for now we're still using it.
As I go to configure third-party SaaS applications (ex. Zoom, Adobe, etc.), I have seen that they have documentation to configure SSO with Azure AD (i.e., enterprise application gallery) or to configure it with ADFS.
My questions are:
If in the future we decide we no longer need ADFS and want to migrate towards a more Azure-centric configuration, my thoughts are that it would be easier if these SaaS apps are already in Azure AD. Plus, they can take advantage of things like MFA, Conditional Access, etc. right away.
If users will potentially see multiple login prompts, obviously that's not ideal.