Back

Set Up Office 365 Single Sign-On Federation with ADFS 2.0

When you set up single signon also known as identity federation your users can sign in with their corporate credentials to access the services in ...

2 min read
Published on Apr 14, 2011
Set Up Office 365 Single Sign-On Federation with ADFS 2.0

When you set up single sign-on (also known as identity federation), your users can sign in with their corporate credentials to access the services in Microsoft Office 365 for enterprises. As part of setting up single sign-on, you must also set up directory synchronization. Together, these features integrate your local and cloud directories.

1. Prepare for single sign-on Learn about the benefits of single sign-on and make sure you meet the requirements before you set it up. Read: Prepare for single sign-on

2. Plan for and deploy Active Directory Federation Services 2.0 Work through the in-depth documentation to deploy and configure AD FS 2.0. Read: Plan for and deploy Active Directory Federation Services 2.0 for single sign-on

3. Install the Microsoft Online Services Identity Federation Management tool Download and run the tool that establishes the trust relationship between your AD FS 2.0 server and Microsoft Office 365 for each of your domains that use single sign-on. Read: Install the Microsoft Online Services Identity Federation Management tool

Windows 32-bit version Windows 64-bit version

4. Verify additional domains Go to the domains page to verify any additional domains that don’t use single sign-on.

5. Prepare for directory synchronization Check prerequisites, including computer requirements and user permissions. Read: Prepare for directory synchronization

6. Activate Active Directory® synchronization Activate directory synchronization to use your local Active Directory to add or remove users and security groups and sync to Microsoft Office 365. After you activate directory synchronization, you cannot deactivate it. Learn more

Activating Active Directory® synchronization allows you to automatically copy users, security groups and other objects from your local Active Directory to Microsoft Office 365. Important: The ability to deactivate Active Directory synchronization is currently not available. Once Active Directory synchronization is activated, synchronized objects may only be edited on-premise.Learn more

7. Install and configure the Directory Synchronization tool Download the Directory Synchronization tool and then configure it to set up synchronization from Active Directory to Microsoft Office 365.

Read: Install the Directory Synchronization tool

8. Verify directory synchronization Make changes to your local Active Directory and verify those changes in Microsoft Office 365. Read: Verify directory synchronization

9. Activate synchronized users Go to the users page, select the “Unlicensed users” view, select all of those users, and then click “Activate synced users”.

  1. Verify and manage single sign-on Sign in to Microsoft Office 365 with your corporate credentials to verify that single sign-on is working. Then learn how to maintain single sign-on and directory synchronization.

Read: Verify and manage single sign-on

Read: Manage directory synchronization Set up and manage single sign-on

This post has matured and its content may no longer be relevant beyond historical reference. To see the most current information on a given topic, click on the associated category or tag.

Related Posts

Azure Migration Made Easy Tools Automation and Best Practices

Azure Migration Made Easy: Tools, Automation, and Best Practices for a Smooth Cloud Transition

Simplify your Azure migration with the right tools and automation. Explore Azure Migrate, Site Recovery, DevOps, and third-party solutions for an efficient cloud transition.

May 26, 2025
7 min read
How to Enable Cross-Cloud Collaboration Between GCC High and Office 365

How to Connect GCC High and Office 365 for Cross-Cloud Collaboration

Learn how to securely connect GCC High and Office 365 for cross-cloud collaboration. Explore supported features, limitations, and compliance best practices.

May 22, 2025
6 min read
Key Controls for Achieving CMMC Level 2

Key Controls for Achieving CMMC Level 2 Compliance

Discover the key security controls required for CMMC Level 2 compliance. Learn how to implement NIST 800-171 practices to protect Controlled Unclassified Information (CUI).

May 21, 2025
7 min read
Understanding CMMC Enclaves: A Guide for DoD Contractors

CMMC Enclaves: Your Comprehensive Guide to Protecting CUI

Discover how CMMC enclaves can streamline compliance and bolster security by isolating Controlled Unclassified Information (CUI) within a secure environment.

May 21, 2025
7 min read
How MSPs, RPOs, and C3PAOs Help Organizations Achieve CMMC Compliance

How MSPs Help Organizations Achieve CMMC Compliance

MSPs, RPOs, and C3PAOs play a crucial role in CMMC compliance. Learn how to choose the right consultant, third-party auditor, or provider to meet CMMC certification requirements.

May 20, 2025
8 min read
CMMC Compliance Requirements for Level 1 Level 2 and Level 3

CMMC Compliance Requirements for Level 1 Level 2 and Level 3

CMMC certification requires different cybersecurity controls at each level. Learn the key requirements for Level 1, Level 2, and Level 3 compliance and how they align with NIST 800-171.

May 16, 2025
5 min read

Ready to Secure and Defend Your Data
So Your Business Can Thrive?

Fill out the form to see how we can protect your data and help your business grow.

Loading...
Secure. Defend. Thrive.

Let's start a conversation

Discover more about Agile IT's range of services by reaching out.

Don't want to wait for us to get back to you?

Schedule a Free Consultation

Location

Agile IT Headquarters
4660 La Jolla Village Drive #100
San Diego, CA 92122

Secure. Defend. Thrive.

Don't want to wait for us to get back to you?

Discover more about Agile IT's range of services by reaching out

Schedule a Free Consultation