Ask a new question

ADFS vs ADAL (Modern Authentication)

Hi,

I have O365 setup using AADC with the password sync option enabled (We do not have ADFS).

We did not invoke ADFS because we did not really require SSO within our domain environment.

We are currently using Exchange on-premise.

One of the original user facing issues if we moved to Exchange Online was that the Outlook client would prompt for credentials. However I now believe with Modern Authentication this issue is now resolved.

I am trying to understand if ADFS is a requirement of Modern Authentication or not?

It's not a requirement. But the client needs to support Modern auth/ADAL, which in the case of Outlook means either 2016 or 2013 (not older than an year).

Was this reply helpful?

Sorry this didn't help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

Hi Customer,

The short answer is no. Please feel free to post back if you have any other inquiries.

Thanks,

Sam

Was this reply helpful?

Sorry this didn't help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

Hi,

Thanks for the replies... the reason i ask is simply because nearly all the references to Modern Auth include ADFS...

Is there any real reason nowadays to use ADFS then?

Was this reply helpful?

Sorry this didn't help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

Hi UselessUser,

Modern authentication brings Active Directory Authentication Library (ADAL)-based sign-in to Office client apps across platforms. This enables sign-in features such as Multi-Factor Authentication (MFA), SAML-based third-party Identity Providers with Office client applications, smart card and certificate-based authentication, and it removes the need for Outlook to use the basic authentication protocol. The ADFS service is not required.

However, ADFS is just a standards-based service that allows the secure sharing of identity information between trusted business partners (known as a federation) across an extranet. You can refer to the article below for more details:
Active Directory Federation Services

You can also refer to the article below for more details about Modern Authentication (ADAL).
https://support.office.com/en-us/article/How-modern-authentication-works-for-Office-2013-and-Office-2016-client-apps-e4c45989-4b1a-462e-a81b-2a13191cf517

Regards,
Yang

2 people found this reply helpful

·

Was this reply helpful?

Sorry this didn't help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

Hi Customer,

Have you checked the information above? Do you need further assistance?

Thanks,
Sam

Was this reply helpful?

Sorry this didn't help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

 
 

Question Info

Last updated May 13, 2022 Views 4,879 Applies to: