@Bastien1920 , The requirement is still not clear. Based on the explanation given it looks like you are trying to create a relationship between you local and remote sites, which can pretty much be done using your on-prem Domain Controllers. SSO would be delivered using Kerberos within your org network. I am not sure where Azure AD is coming into picture here.
Do clarify your requirement with AAD, so that we can help better.