Need to migrate applications to Azure AD

ShashankSaxena-2458 131 Reputation points
2021-05-27T15:20:55.083+00:00

Hello All,

We have to migrate about 200 applications from ADFS, Siteminder, OKTA to Azure AD SSO but as we aware that we will not migrate all the application to Azure in a single go. So my question is, if we will migrate 5 application first phase but we don't want to break the SSO of all the applications. How do we achieve this setting where SSO will not break either the application is on Azure or onpremises during the migration process.

Regards,
Shashank Saxena

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,455 questions

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Siva-kumar-selvaraj 15,551 Reputation points
    2021-05-28T07:00:58.11+00:00
    0 comments
  2. ShashankSaxena-2458 131 Reputation points
    2021-05-28T14:22:39.867+00:00

    Hello @sikumars-msft ,

    Thanks for sharing such a helpful URL but through those URL, I didn't get my answer for how to prevent my SSO to be break after the migration.

    Regards,
    Shashank Saxena

  3. Siva-kumar-selvaraj 15,551 Reputation points
    2021-07-13T07:15:00.957+00:00

    sorry for delayed response.

    when yo say external access, are they belongs to same corporate AD domain trust (Multi-forest environments)? if so then PTA SSO should work as long as there is forest trusts (two-way) between your Active Directory forests and users accessing it from domain joined machine with VPN when they access from externally.

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-pta-faq#can-i-use-pass-through-authentication-in-a-multi-forest-active-directory-environment-

    If you don't have forest trust and users belongs to partner organization external then SSO wont work with this scenario. Hope this helps.

    0 comments