Sep 10 2024 09:25 AM - edited Sep 10 2024 09:27 AM
Sep 11 2024 04:33 AM
Sep 11 2024 08:04 AM
Sep 24 2024 07:20 AM
Sep 24 2024 07:28 AM
I figured it out. You'd have to enable SSO plugin extension in your shared device policy. I have shared the link to the docmentation below
https://learn.microsoft.com/en-us/entra/identity-platform/apple-sso-plugin.
Once your policy is applied, on the test device, login to the authenticator which is already installed on the device. You will be prompted to register the device. The SSO extension will automatically recognize the account registered on the authenticator when you open outlook or any other O365 app.
Let me know if this works.
Sep 25 2024 01:29 AM
I have the same issue, did you do any additional configuration in the SSO Plugin Extension profile?
for example: AppPrefixAllowList, browser_sso_interaction_enabled and disable_explicit_app_prompt
Also did it work immediately after applying the configuration or did you have to do something in Authenticator? Re-adding the account or sign-in and out?
I tried on one device so far but no success after adding the SSO configuration. Trying a reset of the device now.
Sep 26 2024 12:51 AM
Sep 26 2024 12:54 AM
@marcvanderkooy i found this article as well, there you have a picture of a configuration profile that worked for that user.
https://www.reddit.com/r/Intune/comments/1foh5tu/shared_ipad_misconfiguration_alert_org_data/
Sep 26 2024 01:37 AM