A client of ours wants to use their Azure ADFS instance to authenticate to Laserfiche. In exploring ADFS setup, below is a screenshot of the settings in our Directory Services authentication portal for ADFS. Presumably the parts I need from the client are the Host, Issuer, Endpoint, and Certificates from Azure:

This is a snippet of the Laserfiche documentation, showing how to fill out these settings:

I did some additional research and this page looks helpful. It also implies that the client need Azure ADFS "Premium" to make this work.

https://docs.microsoft.com/en-us/azure/active-directory/active-directory-saas-custom-apps

All that said, the client is very new to their use of ADFS. They have configured Office 365 to use their Azure ADFS instance but we will be the first non-Microsoft app that they configure to work with ADFS. I am not sure they will know where to look for the above information. Knowing that, I have the following questions for Laserfiche or anyone else who may have configured ADFS to date:

• Is Laserfiche a "non-gallery app" as described in the above Microsoft article?
• If so, should we be using the Azure ADFS "SAML Based Sign-On" setting?
• If so, where do I get the corresponding Identifier and Reply URL to set up for LF? Do I need to set those up before setting up the LFDS settings to automatically "Get Configuration From Host"?

It might be useful to have a white paper written on setting up integration with Azure ADFS, that includes the clicks needed on the ADFS side as well as the Laserfiche side. The Laserfiche help documentation only seems to paint half the picture which is understandable since the Microsoft side could change.