onedrive silent sign in not working

Iron Contributor

am using onedrive per machine installation and azure ad joined and password. i cannot use whfb yet because organization is not ready for deployment.

 

i have below onedrive policy deployed to device-based group.

 

Silently sign in users to the OneDrive sync app with their Windows credentials
Enabled
Prompt users to move Windows known folders to OneDrive
Enabled
Prevent users from moving their Windows known folders to OneDrive
Enabled
Silently move Windows known folders to OneDrive
Enabled
Prevent users from syncing personal OneDrive accounts
Enabled
Set the sync app update ring
Enabled
Prevent users from redirecting their Windows known folders to their PC
Enabled
Allow syncing OneDrive accounts for only specific organizations
Enabled
Use OneDrive Files On-Demand
Enabled

 

 

after windows autopilot azure ad joined deployment, i login to work account. however, onedrive did not silent sign in. on the notification side, i received this suddenly. after i clicked on the notification and click my work account + 2fa + reboot, onedrive will silently sign in.

 

  Screenshot 2024-04-02 213058.png

 

i checked azure ad logs when sign in, it is using the application called "Device Management Client"

Screenshot 2024-04-02 213059.png

 

i don't understand why and i am trying to achieve silent onedrive login. I cannot be asking user to take note of this notification and sign in manually and reboot everytime.

 

anyone encounter this issue can advise how you solve please? thanks.

3 Replies
I assume you have conditional access in place and requireing mfa for all cloud apps?
yes, that is one of the policy templates "Require multifactor authentication for all users"

@jrng well thats probably the reason why you are getting that message (issue with work or school account)

 

 

https://call4cloud.nl/2022/06/enrollmenterrorsintune/#part4

 

and onedrive requires mfa so kfm will only work after you logged in with mfa… so i assume you have no windows hello in place (wwhich has the mfa claim in it)