Share via

Configuring Multiple UPN SSO with Azure AD and ADFS (4.0) 2016 to enable user login once via browser to all M365 services ?

EnterpriseArchitect 6,041 Reputation points
2020-07-15T06:56:40.91+00:00

People,

I'm currently using Hybrid OnPremise AD-AzureAD Sync and ADFS (4.0) 2016.
AD is single Forest domain.

I have multiple UPN for different users spread across multiple locations. as per https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/AzureADConnect, there are 20+ domains verified with green tick already, those are consists of smaller subsidiaries and sister companies.

  1. User1.Last@keyman .com
  2. ******@company1.net
  3. ******@Corp.org
  4. ...

I wonder if this is the right steps to follow as per: https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-multiple-domains Because when I execute the command:

$Cred = Get-Credential
Connect-MSOLservice -Credential $Cred

Get-MsolDomainFederationSettings -DomainName 'myCompany.com'

There is no result at all? or blank

Thank you in advance.

Microsoft Security | Active Directory Federation Services
Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. AmanpreetSingh-MSFT 56,871 Reputation points Moderator
    2020-07-15T07:45:51.66+00:00

    Hi @EnterpriseArchitect

    You will get results for the cmdlet Get-MsolDomainFederationSettings -DomainName myCompany.com only after you run Convert-MsolDomainToFederated -DomainName myCompany.com -SupportMultipleDomain cmdlet and the domain is successfully converted to federated domain. Below is the screenshot of how the output should look like:

    12423-untitled.png

    Could you please confirm that the domain 'myCompany.com' appears as federated domain in Azure Portal. Also, make sure you you are using admin account to run the cmdlet. If the domain is still a managed domain, you will not get any results for the Get-MsolDomainFederationSettings cmdlet.

    12495-untitled1.png

    -----------------------------------------------------------------------------------------------------------

    Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.

    1 person found this answer helpful.
    0 comments
  2. EnterpriseArchitect 6,041 Reputation points
    2020-07-18T08:32:50.697+00:00

    @amanpreetsingh-msft where in the Azure portal can I see that screenshot about the domain federated checkboxes?

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.