If I, as a service provider, want to host an application from Azure AD I can do this by making my application multi tenant. My customers, as an identity provider, can connect to this multi tenant application by exchanging tenant ID/application ID/Client secret/etc. That is, if the customer is alo using Azure AD of course.
But what if the customer is not using Azure AD, but ADFS, Okta, PingFederate or some other SAML IDP. How can those customers connect? Is Azure AD able to provide an Metadata URL which the customer can use to make up the trust? Or do we need Azure AD B2C for this?
Read more here: Source link