• We use AD Connect configured with passthrough authentication for SSO and also sync the password hash solely for the purpose of breach detection.  Passthrough Authentication and Password Hash Authentication are mutually exclusive so while the hashes are synchronized, they are not used for authentication purposes.  We wanted to stay away from the complexities of ADFS as long as possible in our environment.

    I just thought I would offer this up another alternative.

© 4sysops 2006 - 2022


Please ask IT administration questions in the forums. Any other messages are welcome.


Log in with your credentials


Forgot your details?

Create Account