Share via

How can I configure the AD FS federation service so that avatars of users synchronized with Azure AD Connect are displayed and Windows applications are automatically logged in?

Кирилл Евгеньевич 0 Reputation points
2024-09-24T10:09:18.6833333+00:00

Good day! Given:

A server running Windows Server 2022 Datacenter, domain: chuc218.ru

Is it necessary to: configure the AD Federation Service (AD FS) so that avatars of users synchronized with Azure AD Connect are displayed on client PCs running Windows 10 and there is an automatic login to Windows applications, for example, Microsoft Edge? Because it's critically important to me.

How to do it? I've already tried all the options, nothing helps.

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,619 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,261 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,065 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Raja Pothuraju 7,135 Reputation points Microsoft Vendor
    2024-09-26T20:00:19.99+00:00

    Hello @Кирилл Евгеньевич,

    Thank you for posting your query on Microsoft Q&A.

    Based on your description, I see that you are using Windows Server 2022 Datacenter with the domain chuc218.ru and are looking for an SSO experience where users can log into applications without needing to enter their username and password. To achieve this, you do not need to set up an ADFS environment. You can enable SSO on Windows 10 devices by enrolling them with Microsoft Entra. Since you already have Microsoft Entra Connect and are syncing users from on-premises to the cloud, you can enroll the devices as either Microsoft Entra Joined or Microsoft Entra Hybrid Joined.

    If your Windows 10 devices are domain-joined, you can follow the Microsoft documentation to configure Microsoft Entra Hybrid Join:

    Configure Microsoft Entra hybrid join

    If the devices are not domain-joined, you can easily make them Microsoft Entra Joined by following the guide below:

    How to join a Windows device to Entra ID

    I hope this information is helpful. Please feel free to reach out if you have any further questions.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Thanks,
    Raja Pothuraju.

  2. Кирилл Евгеньевич 0 Reputation points
    2024-09-27T15:48:25.8966667+00:00

    Thanks! Thanks! But all the same, I want to configure AD FS so that when my users log into their Microsoft 365 personal account, they display CHUC Corporation (what I have configured for federations)

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.