Hello,

The current version of Horizon in our environment is 2212.

MFA and TrueSSO is going to be implemented soon using Azure AD, this was tested in our test environment and works as expected. What I want to be able to do, is allow SSO from a Federated domain. The domain is not yet federated; we are potentially taking them on as a new client and they have asked for SSO using their own AD credentials and have asked if we can set this up for them. They use Azure AD. 

I've had several calls with VMware and have had mixed reports back, most saying this isn't possible without setting up an old school direct trust between our domain and the client's domain - I would prefer to avoid that and use modern authentication, is it possible to use Azure AD FS or Azure AD Authentication? 

If I must use something like Workspace ONE Access then fine, I would even consider dropping back to using an on-prem AD FS if I had to.

What options do I have? 

Thanks