I'm planning to set up AD FS to provide access to an internal application for customers. I'm looking for a way to do this without having to upgrade the whole environment.
SBS 2008 AD + SQL + IIS + File server (all 2008).
Install server 2012 R2 member server (domain) to host AD FS + New LDAP (For application authorization)
Install server 2012 R2 server to host AD Application Proxy (DMZ - workgroup)
Can Server 2012 R2 AD FS use the SBS 2008 DC for authentication?
Can Server 2012 R2 AD FS use the AD LDAP service for AD FS (instead of corporate AD in SBS 2008)?
Since I'm using SBS2008 I'm looking into options where I don't have to upgrade the domain yet. Otherwise It will cost a small fortune to migrate SBS, Exchange,... This will be needed eventually, I know, but prio should be on the application for now. Any advice