Microsoft1. How can we track which users and on which devices the user has accepted ? Preferably both on the device itself (for the user) and centrally in Entra ID?
2. How this is handled right now is ruining user experiences; I.e. they might have 6-7 different apps that require Entra ID SSO - but none of them show any notifications. They just don't get new mail, the VPN does not connect etc.
3. Also noticing that accepting one prompt may not lead to other prompts detecting that the user has accepted.. I.e. I am seeing log entries 10-15 mins (at least) after a user has accepted that fails due to "user has to permit-sso"
4. For any situation where the user logs on to a device with Entra ID Credentials the prompt should have been displayed on logon - (like WHFB-wizard) in that way you are sure the user sees the message and other noninteractive flows can start after this.
