If you think about a big microsoft based corp who are now using azure - they have an on prem AD and are using all kinds of AD magic to administrate their real hardware. Then they have an Azure AD that manages their servers and other resources and controls access to all their cloud stuff. Now a local domain user needs rights on some cloud asset with single sign on - consulting around I've seen company sholve this a bunch of ways and it's a mess.
So if one thing MS are doing here is adding an elegant official way of doing that - that would be nice.
