Azure AD Federation with Custom IDP installed On Prem (Without User or Password Sync) RRS feed

  • Question

  • Looking forward to configure Azure AD to use custom IDP installed On Prem for SAML federation.

    Is it possible that user logs into Salesforce (partnership configured in azure in enterprise apps ) is redirected to azure login page, azure redirects to custom IDP login page using federated domain in user ID. 
    Authentication takes place on premise and token is returned to azure which further processes, redirects and logs the user in Salesforce.

    I have tried using AD Connect and ADFS and it works but requires user sync.

    I am not looking to sync users from On Prem to Azure AD.

    Thursday, November 1, 2018 8:09 AM


  • Thank you for your response, post experimenting and exploring it looks azure needs the user provisioned for SSO to work and can't work without user sync.

    The options suggested are not very relevant to the use case required.
    • Marked as answer by Ashim Usmani Monday, November 26, 2018 4:01 PM
    Monday, November 26, 2018 4:00 PM

All replies