Forum Discussion
Insider Preview: Single sign-on and passwordless authentication for Azure Virtual Desktop
DavidBelanger
First of all, This is great. We were awaiting this feature for some time now.
Great to see it coming to light. We of course went right ahead and deployed it to our test pool.
- VM Login AAD only
- Azure Files AAD only
- Intune enabled
- now running 22h2 🙂
We had a small issue though, we are allowing the Azure Virtual Desktop application outside of the compliant device policies. However it seems like the exemption we made for the Enterprise application "Azure Virtual Desktop" doesn't include this, the application is called.
- Microsoft Remote Desktop (app ID a4a365df-50f1-4397-bc59-1a1564b8bb9c), which applies when the user authenticates to the session host when https://docs.microsoft.com/en-us/azure/virtual-desktop/configure-single-sign-on is enabled.
https://docs.microsoft.com/en-us/azure/virtual-desktop/set-up-mfa
Please add this to the FAQ 🙂
Also I seem to need to give consent my login on the VM.
I cannot find the admin consent button for the Enterprise application.
please provide instructions on this 🙂
- deanboxJan 27, 2023Copper Contributor
Regarding reply from: dikkekip20 Any updates regarding consent login on the VM? We are getting the same prompt which is new.
Can we give admin consent to this client_id=a85cf173-4192-42f8-81fa-777a763e6e2c so that users won't be bothered with this?
We already consented server & client app with https://rdweb.wvd.microsoft.com/
- DeletedFeb 13, 2023Any updates on this issue? This behavior currently completely destroy SSO experience for the and user when connecting to larger host pools or after a host pool refresh
- Andrew_WooSep 16, 2022Iron ContributorThe above work only for WIndows ?
How about MAC?
Apps : a4a365df-50f1-4397-bc59-1a1564b8bb9c
The above apps is not working for MAC and web- DavidBelangerSep 16, 2022
Microsoft
Hi Andrew, the feature is currently only working using the Windows client. Support for the web client should be available soon. Other clients like macOS, iOS and Android will come later but are in development.- Marius SandbuNov 24, 2022Brass ContributorWhen I've configured this it works for some users that are sitting on Windows Azure AD only machines. However end-users with machines that are part of Active Directory are not able to logon using SSO, is there a limitation with seamless SSO that can affect the authentication process?
- dikkekip20Sep 16, 2022Copper Contributor
Andrew_Woo I think this SSO feature is only working for Windows atm yeah
- Andrew_WooSep 21, 2022Iron ContributorThanks for the reply. We hope to see it in MacOS soon. Thanks