HI, i am configuring an ADFS 4.0 server with an additional WAP Proxy Server to allow SSO with things such as facebook workplace and Egress Switch
we have our primary domain which is company-A.com and a load of additional UPN suffixes which users can be configured with for example companyb.net, companyc.org and anycompany.com.
the FQDN of the ADFS box will be
do we need to have a Multi-domain SAN certificate configured to allow external 3rd party applications such as office365, or facebook workspace to be able to authenticate users with usernames that contain one of the other UPN suffixes. or do we simply need a single domain certificate for adfs.company-a.com