Achieve SSO through Chrome with CA in place

Dimitrios Koliopanos 56 Reputation points
2023-03-13T08:11:45.11+00:00

Hello,

I have a question regarding an application we are using with SSO login feature.I have already opened a question to relevant Support forum(https://learn.microsoft.com/en-us/answers/questions/1187704/achieve-sso-through-chrome-with-ca-in-place?page=1&orderby=Helpful&comment=answer-1185419#newest-answer-comment) and was proposed to continue here.

So the case is that our users are using a Public Application(Managed Playstore/Appstore) called Dataminr Pulse. Application has been registerd to Azure tenant in order to achieve SSO. The issue is that the SSO is taking place on Chrome due to WebVview and on Safari for iOS. We have a Conditional Access which does not allow access to resourves from non approved clients. Everything is working perfect through Managed Edge, but the app itsels does not open it or even prompt for opening. We did everything from Intune side and there is no way to force the SSO login process to Microsoft Edge. I suppose that App developer can customise the code and do this but I am wondering if from AzureAD side I can do anything else.

More info about the story can be found on the above link.

Microsoft Intune Application management
Microsoft Intune Application management
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Application management: The process of creating, configuring, managing, and monitoring applications.
870 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,295 questions
{count} vote

1 answer

Sort by: Most helpful
  1. 2023-03-15T05:22:39.23+00:00

    Hello again, there's nothing that can be done from the Azure AD side. If you really need to make this application comply with protected app or app protection policies, the developer has to implement the Intune SDK.

    That being said, and out of Azure AD boundaries, I will test the aforementioned application and see if there's something that can be done from the Android side and come back to you ASAP.

    Let us know if you need additional assistance. If the answer was helpful, please accept it so that others can find a solution.