On a non-managed mobile, how do I enforce MFA on an SSO sign in on iOS without requiring Edge as the browser as part of the sign in journey

Paul Hart 20 Reputation points
2024-02-15T15:07:27.27+00:00

Many users run into a problem signing into apps with SSO enabled on iOS, where they are shown the message "You can't get in from there" and it forces the user to 'Launch in Edge' to complete the sign in journey. We have MFA enforced, as well as MAM policies via Intune to access apps on mobile. With apps such as DataDog, FreshService and others, you go to Edge but it will never return to the iOS app to complete signing in. In the app, it is sitting on the in built browser (Safari) window still displaying the same message, which makes signing in impossible. Setting the default browser as Edge does not change, a workaround for FreshService is to copy and paste the sign in URL from the browser window that appears within the app during sign in and paste this into Edge to complete the process. This does not work for many other apps. Is there a way to not require Edge to complete MFA?

Microsoft Security | Intune | Microsoft Intune iOS
Microsoft Security | Intune | Configuration
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Edge | Microsoft Edge development
{count} votes

Accepted answer
  1. Wenying Lu-MSFT 2,095 Reputation points Microsoft External Staff
    2024-02-16T10:16:26.28+00:00

    Hi @PaulHart-3528 ,
    To narrow down the issue, please help check if there are some policies set default browser or enforce MFA for Edge browser. Also, you could refer to this doc and try to customize browsers for iOS.


    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
    Regards,
    Wenying Lu


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.