I’m currently testing Azure AD Conditional Access and Azure MFA. This is going to be used for securing Office 365 services. MFA will be mandatory when logging to Office 365 from outside our corpnet. We have single domain that is federated with Office 365. We have ADFS (2016) on-premise environment.
What I dont fully understand is the role of ADFS in this MFA & Azure AD Conditional Access scenario. Do I need to configure something in on-premise ADFS or not to get this working with Office 365? Or is it only if I have some on-premise resources that I would also want to secure with Azure MFA and then I would need to configure Azure MFA adapter to our ADFS farm?