Thanks @Pierre Audonnet - MSFT
Yes, I agree with you that ADFS might not be doing truly "WWW-Authenticate: Basic"
The reason I declared and assumed that it is WWW-Authenticate: Basic is because
- the popup was indeed from /adfs/ls..
- the popup was indeed true html popup (which you are calling Form-Based-Authentication FBA) in case of Chrome and Firefox
So far we are on the same page.
The only thing left is why this FBA is not manifested as true HTML Rendering in case of Edge ?
If you see my first screen shot at the top of the thread, it is Windows-Security Popup.
I do not think it is HTML. Is it ?
Following is my logical understanding. Please correct me if I am wrong.
As you explained, if the settings on the ADFS side concludes that IWA is not possible in the first place then ADFS will straight away shows the **HTML popup **
However,
if ADFS starts with IWA and if the browser is not capable to submit the kerberos Service-ticket then Windows-Security Popup. is employed.
Technically both are FBA. The GUI interface is different.
Thanks.