User authentication in AD FS in Azure. RRS feed

  • Question

  • Hi, I have a problem with my AD FS infrastructure in Azure, the current infrastructure consists of 2 AD servers, 2 ADFS servers and 2 ADFS proxy servers, the Azure ADs are synchronized with my On-Premises AD by means of a VPN,
    The problem is this: when the VPN goes down, the ADFS servers are not looking for the Azure AD servers, but they go to the On-premises AD.
    There is a way to tell AD FS servers to search for a specific AD?


    Ing. Daniel Garcia

    Monday, July 23, 2018 2:53 PM

All replies

  • Hi Daniel,

    You can convert a federated domain to standard using the Convert-MsolDomainToStandard PowerShell cmdlet. When the VPN servers are up again, you can convert the standard domain back to federated using the Convert-MsolDomainToFederated PowerShell cmdlet.

    Standard domains will authenticate against the Azure Active Directory, where federated domains will authenticate against your on-premises Active Directory.

    Monday, July 23, 2018 8:03 PM