Forum Discussion
MicrosoftInsider Preview: Single sign-on and passwordless authentication for Azure Virtual Desktop
DavidBelanger
First of all, This is great. We were awaiting this feature for some time now.
Great to see it coming to light. We of course went right ahead and deployed it to our test pool.
- VM Login AAD only
- Azure Files AAD only
- Intune enabled
- now running 22h2 π
We had a small issue though, we are allowing the Azure Virtual Desktop application outside of the compliant device policies. However it seems like the exemption we made for the Enterprise application "Azure Virtual Desktop" doesn't include this, the application is called.
- Microsoft Remote Desktop (app ID a4a365df-50f1-4397-bc59-1a1564b8bb9c), which applies when the user authenticates to the session host when https://docs.microsoft.com/en-us/azure/virtual-desktop/configure-single-sign-on is enabled.
https://docs.microsoft.com/en-us/azure/virtual-desktop/set-up-mfa
Please add this to the FAQ π
Also I seem to need to give consent my login on the VM.
I cannot find the admin consent button for the Enterprise application.
please provide instructions on this π
How about MAC?
Apps : a4a365df-50f1-4397-bc59-1a1564b8bb9c
The above apps is not working for MAC and web
- DavidBelangerHi Andrew, the feature is currently only working using the Windows client. Support for the web client should be available soon. Other clients like macOS, iOS and Android will come later but are in development.
- When I've configured this it works for some users that are sitting on Windows Azure AD only machines. However end-users with machines that are part of Active Directory are not able to logon using SSO, is there a limitation with seamless SSO that can affect the authentication process?
Andrew_Woo I think this SSO feature is only working for Windows atm yeah
- Thanks for the reply. We hope to see it in MacOS soon. Thanks
