Teams for VDI, FSLogix and Single Sign In Apps
I'm currently deploying Teams Machine Wide Installer 1.6.0.1381 in a Citrix DaaS implementation with Non-Persistent VDAs.
To roam user's personalisations I am using FSlogix.
I have also disabled Workplace AAD join via the registry key
- HKLM\SOFTWARE\Policies\Microsoft\Windows\WorkplaceJoin,
“BlockAADWorkplaceJoin”=dword:00000001
The following issues are experienced by the user;
- Launch teams and sign in.
- Select an app such as Zoom,
- Click Sign in
- User is redirected to the Zoom web page to sign in
- User signs in successfully
- The web page auto closes and redirects back to teams.
- The user is not signed in and presented with a sign in page.
- The user clicks sign in and steps 4-7 are repeated.
The following workaround allows a user to sign in successfully.
- Exit Teams
- Delete AppData\Roaming\Microsoft\Teams
-
- The user launches and signs back into teams.
- A notification is presented in teams that they need to restart Teams to enable the new meeting experience.
- The user doesnt restart teams
- The user clicks on zoom and clicks sign in
- The sign in page is loaded in Teams and not a local browser.
- The sign in is completed successfully and zoom is working.
The important step is step 6. If the user does restart teams before signing into Zoom they are redirected to a sign in with a local browser and the sign in death spiral continues.
Why is the new meeting experience stopping SSO working with Teams Apps?
The above "workaround" is not a suitable fix as this will need to be communicated to all staff internally.