How to migrate a Relying Party Trust in ADFS for Office 365 (EntryID) to a new Forest
We need to migrate ADFS (>5 years old) from an old AD forest to the new Forest. We use ADFS, among other things, for SSO with custom domains for EntraID.
For federation and creating the relying party with EntraID (Office 365 / Microsoft 365) I used to work with Powershell and MSOLService, which is outdated. Microsoft's recommendation is to use MSGraph with something in Powershell like New-MgDomainFederationConfiguration or Update-MgDomainFederationConfiguration. Unfortunately, no configuration of the ADFS is carried out here. Also I couldn't find any documentation for federation with ADFS and MS Graph.
In my tests to federate a new domain, I was able to federate it in EntraID, but I cannot delete or change it. The -InternalDomainFederationId is required for this, but it is not displayed anywhere.
What am I doing wrong and how do I do it right? Is there corresponding documentation.
Configuring ADFS via AzureADConnect is out of the question in this case.