BrianM.81956 (Customer) asked a question.
We are currently using Office 365 with ADFS and Azure AD connect (AAD syncs users into Office 365 from AD.) We also have Okta setup and working with AD for a few other applications. Currently, when users log into Office 365, it goes to ADFS for username/pass, then the MFA is handled through Azure. We still want Azure AD connect in place for pulling users into 365 from AD, but want Okta to handle the sign-on/MFA.
Looking through documentation, the process seems fairly straightforward, but I guess I'm a little gun shy and obviously would like the switchover to go smoothly. If Office 365 has been added/assigned in Okta, do we just need to enable Ws-Fed as the sign-on (Automatic) and enter global admin credentials for 365 to switch the federation over to Okta? How does this affect the conditional access policies setup in Azure AD for MFA? Are there other steps or caveats I'm missing? Any input is greatly appreciated.
Thank you.
Hello @BrianM.81956 (Customer),
Thank you for posting.
Please check the following link with information:
https://help.okta.com/en/prod/Content/Topics/Apps/Office365/Use_Okta_MFA_Azure_AD_MFA.htm
Please let me know if this information was useful.
Regards,
Natalia
Okta Inc.
Yes, that helps clarify my question regarding conditional access MFA in Azure. Thank you!