RobertJ.12440 (Community Colleges of Spokane) asked a question.
We are preparing to enable O365 SSO through Okta. We operate in a hybrid environment and use AD Connect to sync our users with Azure. At the moment we do not plan on using Okta to do any O365 provisioning. We just want to use it for SSO & MFA. I understand that once we enable federation with Okta, when a user signs into O365, they will no longer be redirected to our on prem authentication server, but will be redirected to Okta for authentication.
The issue is that we have a large number of Azure Enterprise Applications that are used to provide SSO functionality for other vendors such as Adobe, LinkedIn, KnowBe4, Zoom...etc.
With our current configuration, when a user signs into one of these, Adobe.com for example, they hit Azure AD and ultimately get redirected to our on prem authentication server. If we enable O365 Federation with Okta, will they hit Azure AD and then be redirected to Okta for authentication instead of our on prem server?
Thank you,
Jason Jakober
Technology Services
Community Colleges of Spokane
Hi Jason,
This is Alex from Okta Support.
Once you federate an Office domain with Okta, all login requests made from users that are part of that domain will be redirected to Okta as well. You cannot select who goes through the federated login and who will go to your On-Prem authenticator.
Best regards,