Note-to-self: New deployment guides for AAD authentication

I was quite busy the last weeks and month to migrate a lot of customers from ADFS to mostly Password Hash Sync (PHS) combined with Seamless SSO for Azure AD authentication.

While documenting all that projects on my own, I recently find pre-written deployment guides for authentication from the Deployment Plan Team at Microsoft.

The new deployment guides covering the following scenarios:

  • Migrate ADFS to PTA (Pass-through Authentication)
  • Migrate ADFS to PHS (Password Hash Sync)
  • Deploy Seamless SSO

You will find additional guides in the following topics under the root of the project:

  • Application Proxy
  • Conditional Access
  • Migrating Apps to Azure AD
  • Multi Factor Authentication
  • SSPR
  • Single Sign On (SaaS)
  • User Provisioning

Don’t forget to choose the right authentication method for you using the following docs:

Choose the right authentication method for your Azure Active Directory hybrid identity solution

You may notice that “block legacy authentication” is no longer a reason to rely on ADFS as some weeks ago this feature was announced as public preview for Azure AD conditional access.

Azure AD Conditional Access support for blocking legacy auth is in Public Preview!



Author: Peter Stapf

Senior Consultant Identity and Access

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.