question

EnterpriseArchitect avatar image
EnterpriseArchitect asked ·

Configuring multiple UPN for ADFS SSO support with Office 365?

I've deployed ADFS 4.0 using Windows Server 2016 and OnPremise AD is synched using Azure AD Connect for the Hybrid configuration.

Since our AD structure is Single Forest Single Domain AD and I can see the information like below from the Azure console: Primary domain is just one that is domain.com

However, we have multiple users with different UPN configured in AD.

So shall I execute it for each UPN or just one for domain.com only?

Based on: https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-multiple-domains

Powershell script **

Any help and suggestion would be greatly appreciated.

Thank you in advance.






adfsazure-ad-connectazure-ad-domain-servicesazure-ad-hybrid-identity
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

amanpreetsingh-msft avatar image
amanpreetsingh-msft answered ·

@EnterpriseArchitect Please find the answer to your questions regarding Rollout and Rollback plan:

  • Rollout Plan

If you have added 'domain.com', 'company1.net' & 'Subsidiary2.org' domains as verified domains to your tenant and users will be typing their usernames as
'username@domain.com', 'username@company1.net' & 'username@Subsidiary2.org' to sign-in to Azure Portal, you would need to run Convert-MsolDomainToFederated -DomainName $Domain -SupportMultipleDomain cmdlet for each domain.

  • Rollback Plan

The Set-MsolDomainAuthentication cmdlet updates only the settings in Azure Active Directory. You should use Convert-MsolDomainToStandard cmdlet instead.


Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.

1 comment Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @EnterpriseArchitect, Have you had a chance to test it out. Feel free to tag me in your reply if you have any question.

0 Votes 0 · ·