When you configure an Office 365 domain with WS-Trust protocol by using the wizard, the following two domains are created:
A domain preconfigured for active authentication using WS-Trust protocol
A domain preconfigured for passive authentication using WS-Federation protocol
To use the SAML 2.0-based domain, you can configure a domain manually using the steps in Configuring an Office 365 Domain That Supports Passive Federation by using SAML 2.0.
The following sections explains how to configure a domain using WS-Trust and WS-Federation: