Forum Discussion
seamless SSO
Hallo, we want to use pass through authentication. I can set it up with AD connect and it runs. For a better user experience, I use the mail (attribute in on premise AD) to authenticate in O365 (azu...
Afaik AlternateID is supported with both PTA/SSO. But not all O365 apps work correctly with it, review the list here: https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configuring-alternate-login-id
Thanks for your information.
PTA works fine. But seamless doesn’t work. The Kerberos ticket is right.
But the AD attribute “servicePrincipalName” from the sync account is empty, so I think the Kerberos SPN is not correct.
What can I do to correct it?
Regards
Stefan