cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Skipping the home realm discovery Page

Mudasar Syed
Brass Contributor

‎Nov 03 2016 09:39 AM

‎Nov 03 2016 09:39 AM

Skipping the home realm discovery Page

Hi All,

We have custom portal deployed on azure webapp with with ADAL .net Authentication. Please let us know if there is any way that we can avoid the O365 Landing Page where user has to select his email to login.  We need a seamless sso without even prompting the user to select the email.

 

Regards,

Syed

3,008 Views
0 Likes
2 Replies
Reply
2 Replies
best response confirmed by Mudasar Syed (Brass Contributor)
Jasjit Chopra

‎Nov 04 2016 05:42 AM - edited ‎Nov 04 2016 05:44 AM

‎Nov 04 2016 05:42 AM - edited ‎Nov 04 2016 05:44 AM

Solution

Re: Skipping the home realm discovery Page

Hi Syed,

 

Skipping that is very much possible.

 

See this article: https://blogs.technet.microsoft.com/enterprisemobility/2015/02/11/using-azure-ad-to-land-users-on-th...

 

How to do this?

The implementation depends on the protocol you use to talk to Azure AD.

  • For web applications that use the Open ID Connect protocol, simply add the following query string parameter to the sign-in URL: &domain_hint=contoso.com, where contoso.com is the realm of the users who are expecting to sign in.
  • For web applications that use the WS-Federation protocol, use &whr=contoso.com instead.
  • For native applications built with our ADAL libraries, you need to pass the domain hint in the AquireToken construct. Check out Vittorio’s blog post for more details. His post also provides guidance if you’re using our OWIN middleware.For web applications that use the SAML Protocol, you need to send the hint as part of the SAML AuthN request.

 

Note: Seamless sign in without having to enter any credentials at all wont be possible since the Auth token is required for your app specifically.

 

Hope this helps.

 

Regards,

Jasjit

3 Likes
Reply
Mudasar Syed

‎Nov 14 2016 09:29 AM

‎Nov 14 2016 09:29 AM

Re: Skipping the home realm discovery Page

Thanks Jasjit. This worked as we are expecting !!!

1 Like
Reply
1 best response

Accepted Solutions
best response confirmed by Mudasar Syed (Brass Contributor)
Jasjit Chopra

‎Nov 04 2016 05:42 AM - edited ‎Nov 04 2016 05:44 AM

‎Nov 04 2016 05:42 AM - edited ‎Nov 04 2016 05:44 AM

Solution

Re: Skipping the home realm discovery Page

Hi Syed,

 

Skipping that is very much possible.

 

See this article: https://blogs.technet.microsoft.com/enterprisemobility/2015/02/11/using-azure-ad-to-land-users-on-th...

 

How to do this?

The implementation depends on the protocol you use to talk to Azure AD.

  • For web applications that use the Open ID Connect protocol, simply add the following query string parameter to the sign-in URL: &domain_hint=contoso.com, where contoso.com is the realm of the users who are expecting to sign in.
  • For web applications that use the WS-Federation protocol, use &whr=contoso.com instead.
  • For native applications built with our ADAL libraries, you need to pass the domain hint in the AquireToken construct. Check out Vittorio’s blog post for more details. His post also provides guidance if you’re using our OWIN middleware.For web applications that use the SAML Protocol, you need to send the hint as part of the SAML AuthN request.

 

Note: Seamless sign in without having to enter any credentials at all wont be possible since the Auth token is required for your app specifically.

 

Hope this helps.

 

Regards,

Jasjit

View solution in original post

3 Likes
Reply