Feb 02 2021
- last edited on
Jan 14 2022
On windows 10 Azure-AD joined device, we know that when we sign into the device, a PRT is obtained.
This PRT is used by web and non-web applications through WAM
If I want to settle one more PRT in the same windows session , is it possible ?
If yes, can you explain how that flow would be to obtain the 2nd PRT for for my another account in AAD in the device ?
Feb 02 2021 01:24 PM
@testuser7 Hi, not sure what you're after. But have you had a look at the docs? Primary Refresh Token (PRT) and Azure AD - Azure Active Directory | Microsoft Docs
Feb 03 2021 05:17 AM
Thanks Christian. @ChristianBergstrom for your response.
At the same time, I do not know where did I confuse you. I have gone through the link several times.
My ask is as simple as this.
You hit ctrl+alt+del on AAD-join windows box and sign in with your AAD account UPN
Cloud-AP will authenticate you and get you the PRT with communicating with Azure-AD
Now you are in the windows 10 box.
You have one more account in AAD
You want to use this account while accessing any AAD protected service which is under device-based conditional policy.
As a result, you need to have a PRT of this new account.
How do I get the PRT for this new account ?
Feb 03 2021 06:18 AM