Forum Discussion
MicrosoftInsider Preview: Single sign-on and passwordless authentication for Azure Virtual Desktop
DavidBelanger
First of all, This is great. We were awaiting this feature for some time now.
Great to see it coming to light. We of course went right ahead and deployed it to our test pool.
- VM Login AAD only
- Azure Files AAD only
- Intune enabled
- now running 22h2 π
We had a small issue though, we are allowing the Azure Virtual Desktop application outside of the compliant device policies. However it seems like the exemption we made for the Enterprise application "Azure Virtual Desktop" doesn't include this, the application is called.
- Microsoft Remote Desktop (app ID a4a365df-50f1-4397-bc59-1a1564b8bb9c), which applies when the user authenticates to the session host when https://docs.microsoft.com/en-us/azure/virtual-desktop/configure-single-sign-on is enabled.
https://docs.microsoft.com/en-us/azure/virtual-desktop/set-up-mfa
Please add this to the FAQ π
Also I seem to need to give consent my login on the VM.
I cannot find the admin consent button for the Enterprise application.
please provide instructions on this π
Regarding reply from: dikkekip20 Any updates regarding consent login on the VM? We are getting the same prompt which is new.
Can we give admin consent to this client_id=a85cf173-4192-42f8-81fa-777a763e6e2c so that users won't be bothered with this?
We already consented server & client app with https://rdweb.wvd.microsoft.com/
Any updates on this issue? This behavior currently completely destroy SSO experience for the and user when connecting to larger host pools or after a host pool refresh