SOLVED
Home

When multiple logins are a problem

%3CLINGO-SUB%20id%3D%22lingo-sub-184710%22%20slang%3D%22en-US%22%3EWhen%20multiple%20logins%20are%20a%20problem%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-184710%22%20slang%3D%22en-US%22%3E%3CP%3EA%20constant%20recurring%20issue%20that%20I%20often%20encounter%20with%20many%20of%20the%20companies%20I%20work%20with%20is%20that%20their%20end%20users%20find%20it%20annoying%20that%20they%20often%20have%20to%20log%20in%20multiple%20times%20when%20they%20work%20in%20Office%20365.%20This%20also%20applies%20to%20those%20who%20have%20just%20started%20using%20Microsoft%20Teams.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20want%20user%20adoption%20to%20work%20as%20smoothly%20as%20possible%20and%20I%20think%20one%20of%20the%20key%20success%20factors%20is%20that%20the%20end%20users%20should%20experience%20a%20seamlessness%20between%20Office%20365%20services%20%2F%20workloads.%20In%20order%20to%20accomplish%20this%2C%20it%20is%20important%20that%20you%20initially%20always%20begin%20to%20ensure%20that%20all%20end-users%20have%20the%20necessary%20%3CA%20href%3D%22https%3A%2F%2Fsupport.office.com%2Fen-us%2Farticle%2Foffice-365-urls-and-ip-address-ranges-8548a211-3fe7-47cb-abb1-355ea5aa88a2%3Fomkt%3Den-US%26amp%3Bui%3Den-US%26amp%3Brs%3Den-US%26amp%3Bad%3DUS%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3EOffice%20365%20URLs%3C%2FA%3E%20and%20required%20Trusted%20sites%20rolled%20out%20on%20their%20clients.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHave%20any%20of%20you%20experienced%20the%20same%20challenge%20and%2C%20if%20so%2C%20how%20do%20you%20usually%20handle%20%2F%20solve%20this%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-184710%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EHow-to%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMicrosoft%20Teams%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ETips%20%26amp%3B%20Tricks%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-184842%22%20slang%3D%22en-US%22%3ERe%3A%20When%20multiple%20logins%20are%20a%20problem%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-184842%22%20slang%3D%22en-US%22%3ESeamless%20sign%20on%20works%20fairly%20well%20in%20reducing%20logins.%20The%20biggest%20issue%20we%20still%20have%20is%20with%20Password%20changes%20and%20Outlook%20being%20finicky.%20Here%20is%20that%20if%20your%20not%20using%20it%20It%20is%20easy%20to%20setup%20and%20works%20great.%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fconnect%2Factive-directory-aadconnect-sso%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fconnect%2Factive-directory-aadconnect-sso%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EA%20step%20up%20from%20this%20is%20using%20Domain%20Hybrid%20Join%2C%20and%20or%20if%20possible%20just%20joining%20the%20machines%20to%20Azure%20AD.%20This%20allows%20true%20SSO%20from%20my%20testing%20and%20works%20really%20well%20and%20nearly%20no%20prompts.%20It%20even%20lets%20you%20use%20Windows%20Hello%20%2F%20TPM%20chip%20on%20your%20machine%20when%20two%20factor%20is%20enabled%20to%20not%20have%20to%20%22respond%22%20or%20provide%20codes%20when%20logging%20in%20to%20resources%20when%20you%20are%20on%20a%20Azure%20%2F%20Hyrid%20joined%20machine.%3CBR%20%2F%3E%3CBR%20%2F%3EMore%20information%20on%20Hybrid%20Join%20here%3A%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevice-management-hybrid-azuread-joined-devices-setup%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fdevice-management-hybrid-azuread-joined-devices-setup%3C%2FA%3E%3CBR%20%2F%3E%3C%2FLINGO-BODY%3E
Magnus Goksøyr
Super Contributor

A constant recurring issue that I often encounter with many of the companies I work with is that their end users find it annoying that they often have to log in multiple times when they work in Office 365. This also applies to those who have just started using Microsoft Teams.

 

I want user adoption to work as smoothly as possible and I think one of the key success factors is that the end users should experience a seamlessness between Office 365 services / workloads. In order to accomplish this, it is important that you initially always begin to ensure that all end-users have the necessary Office 365 URLs and required Trusted sites rolled out on their clients.

 

Have any of you experienced the same challenge and, if so, how do you usually handle / solve this?

1 Reply
Solution
Seamless sign on works fairly well in reducing logins. The biggest issue we still have is with Password changes and Outlook being finicky. Here is that if your not using it It is easy to setup and works great. https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-sso

A step up from this is using Domain Hybrid Join, and or if possible just joining the machines to Azure AD. This allows true SSO from my testing and works really well and nearly no prompts. It even lets you use Windows Hello / TPM chip on your machine when two factor is enabled to not have to "respond" or provide codes when logging in to resources when you are on a Azure / Hyrid joined machine.

More information on Hybrid Join here: https://docs.microsoft.com/en-us/azure/active-directory/device-management-hybrid-azuread-joined-devi...
Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
46 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
30 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies