cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

ADFS no longer tricked by InPrivate.

Rauten34
Copper Contributor

‎Aug 22 2019 11:52 PM

‎Aug 22 2019 11:52 PM

ADFS no longer tricked by InPrivate.

Hi there,

 

As an IT Operator for my company I need to be able to log in to several sites with all kinds of service accounts, including an operator account for our cloud Office system.


I have relied on Edge Insider Canary (currently running 78.0.254.0) to foil ADFS and log in with accounts other than my standard one... until today.


I don't know if something has changed "under the hood", or if I was just lucky all this time and ADFS is actually meant to work correctly while InPrivate, but I can't rely on it any longer.

 

Is there any hidden setting/flag I can modify to go back to ADFS not working while InPrivate? Has anyone else noticed a sudden change in their ADFS behaviour while using Edge Insider?

668 Views
0 Likes
2 Replies
Reply
2 Replies
HotCakeX

‎Aug 23 2019 12:21 AM

‎Aug 23 2019 12:21 AM

Re: ADFS no longer tricked by InPrivate.

It's just the ADFS SSO doing its SSO task. a well configured ADFS must not allow a user to log in with other credentials, that's a security issue.
you can try running the browser as a different user (hold shift then right click on the browser icon)
or you can use Firefox that has containers/container extensions. also test it in Application Guard window. it's more isolated than inPrivate window.
0 Likes
Reply
Rauten34

‎Aug 23 2019 03:07 AM

‎Aug 23 2019 03:07 AM

Re: ADFS no longer tricked by InPrivate.

Thanks for your reply.

 

I do understand that ADFS is merely doing its job, but this behaviour was exhibited by not only Edge Insider, but by old Edge as well (in fact, I can still use old Edge InPrivate to "trick" ADFS and log in using my service account) and, since both browsers and ADFS are all MSFT products, I assumed this was "working as intended", that this is the way they were supposed to function.

0 Likes
Reply