Hi u/nerddtvg !! Thanks for the quick response !!
Can you expand on this a bit? Is the device AAD-joined? What experience are users having right now when they use Office 365 applications? Do they have to enter a password or simply choose their account and they're logged in?
- Yup, all the devices are AAD-joined, when they use (installed) office 365 applications, they need to login once (for the first time) then the credentials gets stored in cache and does not require login again.
With the browser, when I try any of the following URL's, everytime I put in my username [email protected], it redirects me to another page to put in my password, i have to do this everytime I login to the portal. Our company's policy restricts us from storing passwords in browser's password vaults but anyways I want the SSO stuff to work on the browser as well.
In the long run, we want to set a policy to have our intranet sharepoint (communication) site as the homepage for all browsers. User should be able to access the portal without authentication, signing in for the first time seems fine but gets very annoying if they have to sign-in from the browser every time they access the portal.
Browser extensions (Secure Sign-In Extensions) should work but I don't want to go that path.
Also, thanks for clearing out confusion with Seamless SSO, yeah it makes sense to implement in a hybrid setup (on-prem/cloud). Also i will check out more details on Windows Hello !!
Thanks again :-)
FYI: With the default settings, SSO for office 365 apps only works on Internet Explorer.