Change my Azure tenant authentication from ADFS to Azure AD

user20201 326 Reputation points
2021-09-14T01:41:12.18+00:00

We have an Azure tenant and the users that will log in to that will be authenticated from our ADFS. We are planning to decommission our ADFS so we need to migrate to Azure AD.

I would like to ask if there are steps on how to migrate or change our Azure tenant authentication from ADFS to Azure AD? Also, are there factors or impacts that we need to check first before we migrate our Azure tenant authentication? Thank you!

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,203 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,690 questions
0 comments
Accepted answer
  1. Devaraj G 2,091 Reputation points
    2021-09-14T02:53:47.157+00:00

    Hi,

    Yes, you need a implementation plan to carry out this migration as it involves lots of components form infra to application.
    Again, the authentication factor in Azure AD also have options like pass though / password hash sync etc when you moving away from ADFS.

    Major factor to consider is your application support for Azure AD based authentication.

    Start with the below articles to get an understanding on the migration approach.:
    https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/migrate-adfs-apps-to-azure
    https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/ad-fs-to-azure-ad-migrations-notes-from-the-field/ba-p/2635847

    Migrating all your application authentication to Azure AD is optimal, as it gives you a single control plane for identity and access management.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest