We are currently running AD LDS and using adamsync to create userproxy objects from multiple domains to allow authentication from multiple domains. The adamsync process is messy and i am curious if AD FS would be a suitable alternative? We have multiple domains and have applications that use LDAP to authenticate and would like to point our LDAP applications to AD FS and have it authenticate users from several different AD domains. Is this possible? If so is there documentation on how to set this up? We would love to be able to get rid of LDS and replace it with AD FS.
Our LDS is running on windows 2008 server AD FS would be built on windows 2012 R2
Jef