Nov 22 2022 08:38 AM
i use citrix xenapp xendesktop 2203 multi user session on windows server 2019 with fslogix
everything worked fine
but yesterday since i updated fslogix to FSLogix version 2210 (2.9.8308.44092) for vhdx compaction
outlook asks the user for the password at log off if he forgets it and then at the next login he asks for it.
depends on what?
Dec 20 2022 12:20 PM
Maybe you could be a little clearer with what the problem is exactly. Outlook asks the user for the password at log off? When a user signs out Outlook is asking for a password while his session is logging off? What do you mean by if he forgets it?
Dec 21 2022 12:26 AM - edited Dec 22 2022 07:24 AM
@Scherubini I've the same problem on our infrastructure.
Outlook and OneDrive are prompting for credentials after upgrade from Version 2.9.8228.50276 to 2.9.8361.52326.
But only once per session. During the open session it's saved. Just after Logout/Login it's newly asked for each user:
=> After each Logout it newly asks for the users password (modern authentication screen of both is appearing)
I did an uninstall of version 2.9.8361.52326 and new install of the old version and the problem has gone..
=> Something is deleting users stored credentials or keys during Logout for Office and OneDrive..
Even disabling new features didn't changed that behaviour:
-Disk compaction
-AppX
Regards
Dec 21 2022 04:13 AM
Dec 23 2022 12:00 AM
Dec 24 2022 03:06 AM
so the best solution is to stay under the FsLogix version (2.9.8308.44092) from this version onwards the problem arises, can it be fixed with a patch that will make Microsoft fslogix?
Dec 29 2022 12:47 AM
Dec 29 2022 01:37 AM
@TiboV let's wait, whoever has news first shares
thank you
Jan 02 2023 06:53 AM
@Scherubini Problem is known officialy now:
Known Issues - FSLogix | Microsoft Learn
Users may be required to authenticate to their applications (for example, Microsoft 365 apps, Teams (work or school), OneDrive, etc.) at every sign-in. The repeated authentication prompts are due to the virtual machines Azure AD device state. We recommend virtual machines are Azure AD Joined (AADJ) or Hybrid Azure AD Joined (HAADJ) for the best user experience.
Virtual machines, which are AADJ or HAADJ create the user's primary refresh token (PRT) at sign-in. Primary refresh token(s) created at sign-in will be used to authenticate to Azure AD based applications. Standard Domain Joined (DJ) virtual machines don't create a PRT at sign-in, instead rely on the Microsoft Azure AD broker plugin.
Azure AD broker directories and apps
Starting in FSLogix 2210 (2.9.8361.52326) and later versions, all content stored in following locations is no longer roamed as part of the user profile.
%USERPROFILE%\AppData\Local\Packages\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy
%USERPROFILE%\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy
%USERPROFILE%\AppData\Local\Microsoft\TokenBroker
Jan 02 2023 06:58 AM
Jan 12 2023 05:36 AM
Mar 02 2023 02:02 AM
Mar 05 2023 09:48 AM
FSLogix 2210 hotfix 1 does not resolve.
It keeps asking for the psw every time I log into citrix and open office
Mar 05 2023 10:47 AM
Did you add the registry key ”RoamIdentity” with value 1? You must enable this in order to save the credentials
Mar 05 2023 02:17 PM
must work without making changes, fslogix must provide a product that works without making any further changes. Authentication must remain modern with Mfa active in 365.
Mar 09 2023 02:44 AM
The new version (2.9.8440.42104) with Hotfix is working fine on our infrastructure.
Setting up the group policy option "Roam identity" to Enable and everything is working as usal..
Regards
Mar 09 2023 03:47 AM
Setting the "Roaming Identity" Group Policy option to Enable and everything works as usual.
what this key?
Mar 16 2023 07:35 AM - edited Mar 16 2023 07:36 AM
You need to add the regkey under
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\FSLogix\Profiles
We can confirm it works with RoamIdentity value 1 in combination with FsLogix version 2.9.8440.42104