Forum Discussion
AAD Seamless Single Sign-On and Chrome
Dominik Hoefling I didn't have modern authentication turned on however I did that last night. Still not any better. I have looked through that documentation and nothing jumps out. Also, it is quite out dated with certain things. One "big" thing is that Edge doesn't work when actually now it does.
I think Fiddler is a good call. I will give that a bash
Rocketrs8We are currently encountering the same issue in the chrome browser. Could you please share the information on, how you fixed it?
For anyone trying to resolve this, after my research this is the exact requirements (Chome-side, your Azure AD setup has its own stuff) I needed:
Latest "Chrome Enterprise Policy List": https://support.google.com/chrome/a/answer/187202?hl=en
GPO Settings
User Configuration\Policies\Administrative Templates\Google\Google Chrome\HTTP Authentication
-Kerberos delegation server whitelist
autologon.microsoftazuread-sso.com,aadg.windows.net.nsatc.net
-Authentication server Whitelist
autologon.microsoftazuread-sso.com,aadg.windows.net.nsatc.net
# Needed if you're blocking extensions from being installed to whitelist this one
User Configuration\Policies\Administrative Templates\Google\Google Chrome\Extensions
-Configure the list of force-installed apps and extensions (Enabled)
ppnbnpeolgkicgegkbkbjmhlideopiji
-Configure extension installation allow list (Enabled)
ppnbnpeolgkicgegkbkbjmhlideopiji
Note: That extension ID I pulled from https://chrome.google.com/webstore/detail/windows-accounts/ppnbnpeolgkicgegkbkbjmhlideopiji (Windows Accounts)- Thanks for your help, I was able to configure a Seamless Single Sign-On experience on Chrome using the above configuration.
