SOLVED

Ambient Authentication has been added to Edge for InPrivate and Guest sessions

%3CLINGO-SUB%20id%3D%22lingo-sub-1205120%22%20slang%3D%22en-US%22%3EAmbient%20Authentication%20has%20been%20added%20to%20Edge%20for%20InPrivate%20and%20Guest%20sessions%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1205120%22%20slang%3D%22en-US%22%3E%3CP%3EMicrosoft%20Edge%20Version%2082.0.442.0%20(Official%20build)%20canary%20(64-bit)%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ethe%202%20new%20flags%20%3CA%20href%3D%22edge%3A%2F%2Fflags%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Eedge%3A%2F%2Fflags%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3EEnable%20Ambient%20Authentication%20in%20InPrivate%20mode%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3EEnables%20ambient%20authentication%20in%20InPrivate%20mode.%20This%20flag%20may%20be%20overriden%20by%20policies.%20%E2%80%93%20Mac%2C%20Windows%3C%2FP%3E%3CP%3E%23enable-ambient-authentication-in-incognitoEnabled%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3EEnable%20Ambient%20Authentication%20in%20Guest%20session%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3EEnables%20ambient%20authentication%20in%20Guest%20session.%20This%20flag%20may%20be%20overriden%20by%20policies.%20%E2%80%93%20Mac%2C%20Windows%3C%2FP%3E%3CP%3E%23enable-ambient-authentication-in-guest-session%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20I'm%20right%2C%20it's%20supposed%20to%20facilitate%20sign-ins%20while%20in%20InPrivate%20mode%20or%20browsing%20in%20Guest%20session.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Etrying%20to%20sign%20in%20to%20my%20Microsoft%20account%20or%20Office%20365%20account%20in%20either%20of%20those%20modes%2C%20I%20didn't%20notice%20any%20difference.%3C%2FP%3E%3CP%3Eso%20any%20further%20info%20about%20these%20flags%20and%20how%20they%20exactly%20work%20is%20appreciated%2C%20thank%20you%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1205120%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3E82.0.442.0%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eambient%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EAuthentication%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ecanary%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EEdge%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Efeature%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EFlags%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EGuest%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EInPrivate%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Emicrosoft%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Enew%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1205148%22%20slang%3D%22en-US%22%3ERe%3A%20Ambient%20Authentication%20has%20been%20added%20to%20Edge%20for%20InPrivate%20and%20Guest%20sessions%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1205148%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F310193%22%20target%3D%22_blank%22%3E%40HotCakeX%3C%2FA%3E%26nbsp%3BAs%20documented%20in%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftextslashplain.com%2F2019%2F05%2F01%2Fedge-76-vs-edge-18-vs-chrome%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Ftextslashplain.com%2F2019%2F05%2F01%2Fedge-76-vs-edge-18-vs-chrome%2F%3C%2FA%3E%2C%3C%2FP%3E%0A%3CP%3E%3CEM%3EIn%20Edge76%2C%20Edge18%2C%20and%20Firefox%2C%20running%20the%20browser%20in%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftextslashplain.com%2F2018%2F11%2F15%2Fprivate-mode-browsers%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3EInPrivate%20mode%3C%2FA%3E%26nbsp%3Bdisables%20automatic%20Integrated%20Windows%20Authentication.%20Chrome%20and%20Internet%20Explorer%20do%20not%20disable%20automatic%20authentication%20in%20private%20mode.%20You%20can%20disable%20automatic%20authentication%20in%20Chrome%20by%20launching%20it%20with%20a%20command%20line%20argument%3A%26nbsp%3B%3CCODE%3Echrome.exe%20--auth-server-whitelist%3D%22_%22%3C%2FCODE%3E%3C%2FEM%3E%3C%2FP%3E%0A%3CP%3E%3CEM%3E%3CCODE%3E%3C%2FCODE%3E%3C%2FEM%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EThese%20flags%20revert%20that%20change%2C%20such%20that%20Windows%20Integrated%20Authentication%20mechanisms%20(NTLM%2C%20Negotiate%2FKerberos)%20will%20automatically%20respond%20to%20authentication%20challenges%20from%20%3CA%20href%3D%22https%3A%2F%2Ftextslashplain.com%2F2020%2F01%2F30%2Fsecurity-zones-in-edge%2F%22%20target%3D%22_self%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Econfigured%20sites%3C%2FA%3E%26nbsp%3Beven%20while%20the%20browser%20is%20running%20in%20a%20Guest%20or%20InPrivate%20session.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1205165%22%20slang%3D%22en-US%22%3ERe%3A%20Ambient%20Authentication%20has%20been%20added%20to%20Edge%20for%20InPrivate%20and%20Guest%20sessions%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1205165%22%20slang%3D%22en-US%22%3EThank%20you!%3C%2FLINGO-BODY%3E
Highlighted
Honored Contributor

Microsoft Edge Version 82.0.442.0 (Official build) canary (64-bit)

 

the 2 new flags edge://flags/

 

Enable Ambient Authentication in InPrivate mode

Enables ambient authentication in InPrivate mode. This flag may be overriden by policies. – Mac, Windows

#enable-ambient-authentication-in-incognitoEnabled

 

 

Enable Ambient Authentication in Guest session

Enables ambient authentication in Guest session. This flag may be overriden by policies. – Mac, Windows

#enable-ambient-authentication-in-guest-session

 

 

If I'm right, it's supposed to facilitate sign-ins while in InPrivate mode or browsing in Guest session.

 

trying to sign in to my Microsoft account or Office 365 account in either of those modes, I didn't notice any difference.

so any further info about these flags and how they exactly work is appreciated, thank you

 

2 Replies
Highlighted
Best Response confirmed by HotCakeX (Honored Contributor)
Solution

@HotCakeX As documented in https://textslashplain.com/2019/05/01/edge-76-vs-edge-18-vs-chrome/,

In Edge76, Edge18, and Firefox, running the browser in InPrivate mode disables automatic Integrated Windows Authentication. Chrome and Internet Explorer do not disable automatic authentication in private mode. You can disable automatic authentication in Chrome by launching it with a command line argument: chrome.exe --auth-server-whitelist="_"

 

These flags revert that change, such that Windows Integrated Authentication mechanisms (NTLM, Negotiate/Kerberos) will automatically respond to authentication challenges from configured sites even while the browser is running in a Guest or InPrivate session.

Highlighted