We are hybrid with Azure and sync onprem AD via AAD connect . We don't have password hash sync turned on. So all authentication are via on-prem ADFS-3.
Question is, can we use Azure AD as SAML IDP to authenticate users instead of using onprem ADFS for specific application? The scenario is that we would like to grant access to SharePoint onprem to users with in organisation and outside the organisation. Using ADFS as IDP restrict us to provide Auth to internal users only. If we could use Azure as IDP to auth SharePoint onPrem we can get external users to authenticate also. At least that is my understanding.
This is sharePoint onprem Not sharePoint online.