When I configure ADFS while installing Azure-AD Connect, my understanding is I am installing ADFS server in only one domain out of all the domains that I am synching to Azure-AD
This single ADFS server will be capable to federate all my top-level AAD verified domains.
So for eg., if my AAD has 2 domains i.e., constoso.com and fabrikam.com, then AAD can redirect users in both domains to the same ADFS server.
ADFS server can talk to both on-prem directories i.e., constoso.com and fabrikam.com to complete authentication and send the SAML token back to AAD
Am I correct in my understanding ?