Forum Discussion

Marcus Pettersson's avatar
Marcus Pettersson
Copper Contributor
Oct 09, 2018

AAD Seamless Single Sign-On and Chrome

Hi,   I have deployed AAD Seamless SSO recently and it all works just fine in Edge / IE. However I cannot get the SSO experience to work with Chome.  I have checked the GPO settings mentioned in M...
Azure Active Directory (AAD)
Identity Management
Will-S's avatar
Will-S
Copper Contributor
Feb 01, 2023

For anyone trying to resolve this, after my research this is the exact requirements (Chome-side, your Azure AD setup has its own stuff) I needed:

Latest "Chrome Enterprise Policy List": https://support.google.com/chrome/a/answer/187202?hl=en

GPO Settings
User Configuration\Policies\Administrative Templates\Google\Google Chrome\HTTP Authentication
-Kerberos delegation server whitelist
autologon.microsoftazuread-sso.com,aadg.windows.net.nsatc.net
-Authentication server Whitelist
autologon.microsoftazuread-sso.com,aadg.windows.net.nsatc.net
# Needed if you're blocking extensions from being installed to whitelist this one
User Configuration\Policies\Administrative Templates\Google\Google Chrome\Extensions
-Configure the list of force-installed apps and extensions (Enabled)
ppnbnpeolgkicgegkbkbjmhlideopiji
-Configure extension installation allow list (Enabled)
ppnbnpeolgkicgegkbkbjmhlideopiji

Note: That extension ID I pulled from https://chrome.google.com/webstore/detail/windows-accounts/ppnbnpeolgkicgegkbkbjmhlideopiji (Windows Accounts)

RathoreShakti's avatar
RathoreShakti
Copper Contributor
Mar 27, 2023
Thanks for your help, I was able to configure a Seamless Single Sign-On experience on Chrome using the above configuration.