Forum Discussion
Authentication popup for autologon.microsoftazuread-sso.com:443
Hello, Using Teams 1.2.00.32462 on Windows 10 1909. The last week or so I've been starting getting popups asking me to authenticate to autologon.microsoftazuread-sso.com:443 with a username and pas...
We're also experiencing this bug at a customer. We've scripted out the suggested IE trusted sites to no avail. They do not have ADFS, but hybrid infrastructure with domain controllers, file servers and some other legacy stuff. The clients are Azure AD and Intune MDM only, no hybrid.
My thoughts about cause now is DNS going through onprem AD, we've seen this intefere with auth earlier. But if this is a confirmed bug from Microsoft:
- Any word on when a fix will be available?
- Why are there no status page for bugs like these?
- Think of all the overhead when multiple partners/ MS customers have to create tickets, instead of just being transparent on things like these.
- Not only that, we can't really use info on a forum to tell the customers that theres nothing we can do about it. So with no public info on this bug from Microsoft, we're forced to create a ticket too.
Are your clients computers domain joined?
A script is not needed for the deployment. You can use a GPO to push out the intranet zone settings for all computers such that the autologon domain is added. This is a strong suggestion for all tenants that have Azure Seamless Signon enabled, which I suspect all of us do. The intranet zone should be configured by default to automatically pass authentication to sites in the zone.
Once that's in place, computers should no longer prompt. At least, that is my own experience. If you manually adjust an affected computer, does it still prompt?
A script is not needed for the deployment. You can use a GPO to push out the intranet zone settings for all computers such that the autologon domain is added. This is a strong suggestion for all tenants that have Azure Seamless Signon enabled, which I suspect all of us do. The intranet zone should be configured by default to automatically pass authentication to sites in the zone.
Once that's in place, computers should no longer prompt. At least, that is my own experience. If you manually adjust an affected computer, does it still prompt?