We are now configured AADC to sync on-prem AD object to O365 with ADFS for federation and access control.
We are planning to dismiss the ADFS and migrate to Azure AD conditional access and keep AADC to sync on-prem AD object / password hash to O365.
1 of the Azure AD conditional access condition should be only allow domain joined computer, which need Azure AD hybrid join as I know.
During the migration, I am thinking if Azure AD hybrid join can point to Azure AD directly instead of ADFS so that we can test and finally dismiss the ADFS?
From Microsoft document for Configure hybrid Azure Active Directory join for Federated domain: https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-plan
Select the authentication service. You must select AD FS server unless your organization has exclusively Windows 10 clients and you have configured computer/device sync, or your organization uses seamless SSO.
Seems like i can select Azure AD for the authentication service instead of ADFS.