Forum Discussion
landymilner
Apr 21, 2023Copper Contributor
AVD SSO Broken
Setup AVD's with a local DC Setup SSO All was working as expecting (Passing AAD creds through and authenticating locally). I had moved all users into a specific OU, and adjusted AD Sync to only s...
elliottpark_msft
Apr 24, 2023Microsoft
My AAD SSO broke several times because the user accounts were added to either "Domain Admins" or "Administrators" group in AD. If you open your AzureADKerberos object in ADUC and go to properties/Password Replication Policy tab, you will see many Deny entries. It is possible you may have inadvertently added your AVD users to any of these groups. Try removing group membership to these groups and try logging in again.