O'Reilly logo
  • Derrick Marshall thinks this is interesting:

For example, let’s say you create a new user account for a new employee in AD and that user requires access to Office 365. Without federated identities, you will have to manually create and maintain a corresponding user account in Office 365 for the new employee. Whenever an employee leaves your organization, you will have to ensure you delete, or disable, the user account in Office 365 in addition to deleting or disabling the employee’s account in AD. Therefore, while cloud identities can be used in an enterprise and are easy to implement, they are definitely not the best approach from a long-term, administration standpoint.

From

Cover of Microsoft Office 365 Administration Inside Out

Note

ID Managemet 2