Cerficate Based Authentication with ADFS works in Safari for iOS, but not Chrome or Edge in iOS.

The Squirrel 111 Reputation points
2023-03-09T21:29:33.4833333+00:00

We have had Certificate Based Authentication (CBA) working on iOS for email, etc. If the user opens portal.office365.com and gets redirected to our ADFS they eventually get "No valid client certificate found in the request." We have forms authentication disabled for Extranet so we can only use certificates.

For some reason Chrome and Edge aren't submitting the certificate. Everything works fine when using Safari.

This issue started about two weeks ago (we think). We are thinking either an iOS update broke it or a windows update. Anyone else seeing this?

Microsoft Edge
Microsoft Edge
A Microsoft cross-platform web browser that provides privacy, learning, and accessibility tools.
2,117 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,188 questions
0 comments No comments
{count} votes

Accepted answer
  1. ShiJieLi-MSFT 7,236 Reputation points Microsoft Vendor
    2023-03-30T07:54:21.0066667+00:00

    Hi @The Squirrel ,

    According to the latest modification of CBA documentation, only Safari has a perfect support for CBA on iOS devices.

    As to Edge, only Edge with profile, when users add account and logged in a profile support CBA. You'll need to be logged into a profile.

    As to Chrome, unfortunately there seems to have been no solution yet because Chrome does not have MSAL integrated into it. For more information, you can refer to this answer by Vimala_Ranganathan.


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    Best Regards,

    Shijie Li

    0 comments No comments

0 additional answers

Sort by: Most helpful