Deciding between AAD and ADFS
In the previous section, we touched on the different topologies offered by AAD and ADFS, which we are now going to build on in this section. To ensure that the right decision is made when selecting the identity provider, it is important to understand the differences between the two options. It is imperative that you understand the limitations of choosing ADFS as the identity provider whether in a connected or disconnected scenario.
The connected Azure Stack Hub deployment
When you choose a connected deployment of Azure Stack Hub, as stated earlier in this chapter, you can then select either AAD or ADFS as the identity provider. The choice of identity provider has no bearing on tenant virtual machines and the identity provider they can use. The tenant virtual machines can use an identity provider depending on how they are going to be configured. This means that the tenant virtual machines can still choose AAD, Windows Server Active Directory domain...
