Microsoft ADAL requirements

Hello Experts,

One of my main customers runs a Hybrid Organization Exchange 2010 and Office 365, with AD on Premises and Azure premium subscriptions for Production and QA. They also deployed a internal farm of ADFS servers and WAP servers to allow SSO for their applications and allowing integration with cloud partners.

Now my client is looking to implement ADAL and get rid off ADFS infrastructure for their hybrid organization.

So, here are my questions:

Is it safe to decommission ADFS infrastructure?

What are the requirements to implement ADAL into a hybrid organization like this?

What are the real benefits of implementing ADAL vs decommission ADFS?

Any dependencies that we should look around, such as O365? if so, what work is required to complete this transition?

Please, elaborate your answers, and do not simple copy and paste MS url links
Jerry SeinfieldAsked:
Who is Participating?
 
Vasil Michev (MVP)Connect With a Mentor Commented:
ADAL is just the programmatic solution, i.e. a set of libraries/protocols. You still needs a backend servers to connect to and clients that 'talk' ADAL.

If you want a single sign-on solution, you will still need the on-prem AD FS infrastructure. What ADAL brings to this scenario is unified experience across all clients/devices, support for MFA, support for 3rd party solutions and more. But there is no "replacing" AD FS with ADAL.
0
 
Jerry SeinfieldAuthor Commented:
Hi Basil,

Are you 100% sure that we still need ADFS infrastructure to allow SSO for a hybrid organization?

My software developers are saying that ADFS can be replaced b ADAL, but I am skeptical with getting rid off the ADFS in a hybrid organization
0
 
Vasil Michev (MVP)Commented:
Yes, I'm sure. AD FS is not actually a requirement for Hybrid, but if you need true, seamless SSO experience, AD FS is still your only option.
0
 
Jerry SeinfieldAuthor Commented:
sorry, Vasil, I am not following you,

for a hybrid organization Azure-AD and Exchange 2010-0365,  if we want to move forward with ADAL implementation and decommission ADFS , can we proceed or not?

Do we still need the ADFS infrastructure to allow SSO and federate applications with other partners?

My understanding is that Microsoft wants to deprecate ADFS in the future and use ADAL

Can you please research with Microsoft, and share their thoughts?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.