Our IdP is Shibboleth, Devices are AD joined and Hybrid AAD Joined through AzureADSync, But Intune enrolment of the HybridEntraID Joined devices failed because Shibboleth doesn't support WS-Trust protocol.
Now the solution is to implement an ADFS and federate or integrate with Shibboleth so that my Hybrid Azure AD Joined devices will be automatically enrolled into Intune.
I went through these two KBs
- https://video2.skills-academy.com/en-us/entra/architecture/multilateral-federation-solution-three
- https://video2.skills-academy.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/gg317734(v=ws.10)?redirectedfrom=MSDN
I would appreciate it if anyone with better experience in the area of ADFS could
- Elaborate on how it is done and what are the important components to be configured. or
- Suggest a new solution that can replace the above.
Any link or step-by-step guide would be highly appreciated.
Thanks in advance,
Logan.