Mar 26 2019 01:32 AM
Hi, we are in a Hybrid enviromen with adfs and Office 365. So when we login to portal.office.com we first give our username and then are transfered to th adfs portal internally. This works great. However now we want to implement that users only can login to some computers. And this works for the computer login but from the moment we enable ths the users cant login to the o365 portal on any computer. Is this normal ? Is there a solution for this. Kind Regards, David
Mar 26 2019 01:56 AM
Mind sharing the details of exactly what you've configured? And keep in mind that AD FS basically impersonates the user and logs him to the server, so you need to allow for that.
Mar 26 2019 02:09 AM
This is the only thing i changed.
just added the 2 computers that he can logon to.
No adfs or ad server added here.
Mar 26 2019 12:41 PM
You need to add the AD FS servers to the list. Those restrictions apply to any interactive or remote login, as detailed for example here: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Question-about-AD-authenticat...