In addition to what @Pierre Audonnet - MSFT called out, please refer this article which may help you choose the right authentication method for your Azure Active Directory hybrid identity solution. Thanks!
AD FS or Azure AD
Good morning!
I am an IT Pro Jr and I have some doubts on the subject.
Currently many customers use AD FS to validate to O365.
I have read in some blogs that the trend is to migrate from AD FS to Azure AD for validation of users in O365.
Is this real, and what are the benefits of having Azure AD to AD FS?
2 answers
Sort by: Newest
-
-
Pierre Audonnet - MSFT 10,166 Reputation points Microsoft Employee
2021-07-14T18:01:00.557+00:00 Originally, customers used ADFS for Office 365 (well, technically ADFS trusts Azure AD, not Office 365, Office 365 is more a suite of products) to get Single-Sign-On (SSO) with their on-premises domain-joined machines.
Now we can have SSO without deploying ADFS (Azure AD Connect Seamless-SSO, Azure AD joined machines, Windows 10 and primary refresh tokens etc.). So deploying ADFS for Azure AD integration is not required at all. They might be other reasons why customers wants to use ADFS (such as a custom MFA provider). But that's rather rare now.
ADFS has an infrastrucutre cost. There are servers, load-balancers, certificates to manage... So if that's not required to get SSO to access "Office 365", why bother...