I have an O365 tennant with Azure AD being the only directory source. If I join a machine to Azure AD, thus requiring the Azure AD sign-on to be used for login, should Outlook be able to sign-in automatically? It appears to do this for Teams and SharePoint from what I can see however Outlook isn't working this way and users are prompted with AzureAD\useraccount for the username and to enter their password. Does another app need to be set in Azure for SSO aside from the defaults which are there? I believe it impacts Skype for Business as well for the original sign-in prompt as well as the Exchange-integrated prompt.
The objective is to ensure logged in users to an AzureAD-connected Windows 10 workstation are not prompted for credentials to access Office365 services at a minimum.
Is there a good reference document to accomplish this?
Victor, I happened to notice your reply first due to my slow email reading today and I did notice that for this tennant OAuth2 was set to $false. I've adjusted the setting and will test. I knew it was something simple for starters and recall reading about the Modern authentication option...I simply didn't connect the dots. I'll chime in with test results when I have them.
As it says in the article, Modern Auth is enabled by default for new tenants since 2017 August 1. So i guess your tenant is older (like mine was). As we are using local AD, i also had to add SIP address for a user into ProxyAddresses attribute for Skype to find correct username automatically, but in your case this is probably not needed.