How do I remove AuthAnvil SSO Federation from an Office 365 Domain?

Disconnecting AAoD from your Federated Office 365 domain.

  1. Log into your On-Demand Tenant.
  2. Select SSO Manager.
  3. Select the Office 365 app.
  4. Uncheck Manage Office 365 Federation Automatically.
  5. Select Disconnect AuthAnvil.

Note: Disconnecting Office 365 could take up to 72 hours to complete as Microsoft's servers replicate the changes.


If that fails to disconnect then please see the following.

In order to remove SSO from your domain you will need the Microsoft Online Service Module for Windows PowerShell (the PowerShell bits for Office 365).
You can download this module from Microsoft at

Once installed, you can connect in to your Office 365 account using the following commands:

Import-Module msonline
Set-MsolDomainAuthentication -Authentication Managed -DomainName <>

Note: Do not use convert-MsolDomainToStandard as this command is only used with ADFS 2.0. It will not work to convert an AuthAnvil Single Sign On federated domain. Type get-help Set-MsolDomainAuthentication -detailed for more information on this command.

 This process will prompt for your * account credentials to set the defined domain name ( back to standard passwords instead of federated single-sign on. You may need to reset your users' passwords after setting the domain back.

As a last step you may wish to run the following command to convert all federated users back to standard password users, resetting their passwords automatically:
Get-MsolUser | Convert-MsolFederatedUser

Have more questions? Submit a request


Article is closed for comments.