silent sign in
2 TopicsOnedrive silently configuration won't work multiple times
Hello everyone, I encountered an issue with the Silently Sign Users in with Windows Creds. It will work the first time logging into OneDrive on the machine, however, if I were to unlink the account or sign out, the GPO will not run again. I will log out and restart the computer, and the GPO will still not run again. I found that after this GPO runs, it creates a registry key called "SilentAccountConfig" at the location HKLM\SOFTWARE\Policies\Microsoft\OneDrive. This registry key is set to 1 meaning that it has been completed. I have tried to set the key to 0 and tried deleting it to see if the GPO would run again. It unfortunately does not. Silently configure user accounts I have followed these steps: Verify SilentAccountConfig Unlink all pre-existing Business instances in OneDrive. Clear the registry of any previous successful Silent Business Config runs: reg delete HKCU\Software\Microsoft\OneDrive /v SilentBusinessConfigCompleted /f reg delete HKCU\Software\Microsoft\OneDrive /v ClientEverSignedIn /f reg delete HKCU\Software\Microsoft\OneDrive /v PersonalUnlinkedTimeStamp /f reg delete HKCU\Software\Microsoft\OneDrive /v OneAuthUnrecoverableTimestamp /f Set the Silent Config policy registry entry (must be run from an administrator CMD window): reg add HKLM\SOFTWARE\Policies\Microsoft\OneDrive /v SilentAccountConfig /t REG_DWORD /d 0x1 /f Sign out of Windows (Ctrl+Alt+Delete Sign out). Sign in to Windows. I have ensured that Verify Single Sign On (SSO) is configured. Remove any OneAuth failure timestamps reg query HKCU\Software\Microsoft\OneDrive /v OneAuthUnrecoverableTimestamp reg delete HKCU\Software\Microsoft\OneDrive /v OneAuthUnrecoverableTimestamp /f None of which seems to work for me. My question is: how do I allow silently sign into OneDrive GPO to apply every time a user signs into their account. If it does mean I have to run a script to remove/add registry keys to make it work, what would it look like? Any advice would be helpful1.9KViews0likes2CommentsOnedrive silent sign in
Hello friends! I've simulate in my lab environment an hybrid Azure AD environment containing a domain controler, a separate server with Azure AD Connect 2.1.16.0 and two test machines. AD Connect is configured with Hybrid Join, Password Hash Synchronization and SSO enabled. My test machines appear in Azure AD as hybrid joined whthout assigned owner,but this seems to be the correct behaviour. Following several guides like https://learn.microsoft.com/en-us/onedrive/use-silent-account-configuration https://learn.microsoft.com/en-us/onedrive/use-group-policy or https://www.adamfowlerit.com/2018/02/onedrive-business-auto-sign-windows-10/ I´ve configure Onedrive silent configuration but it doesn´t work. When the user signs in the ondrive sync client looks for updates and after that it doesn´t do anything more, it just shows the message "Not signed in". I´ve applied the script mentioned in this article on an AD Joined machine and it works perfectly https://learn.microsoft.com/en-us/onedrive/use-silent-account-configuration but on my hybrid joined machines with the GPOs nothing happens, it seems like the silent config process doesn´t even start . My GPOs enable the "Silent move Windos Knowb folders to Onedrive" and the "Silently sign in users to their Onedrive Sync app with their windows crdentials" and also add "https://autologon.microsoftazuread-sso.com" and "https://aadg.windows.net.nsatc.net" to the local intranet sites. Someone has experienced such a behaviour? I´m missing something important not mentioned in the guides? Any help will be appreciated Thank you in advanced7.8KViews0likes1Comment