Thanks! Thanks! But all the same, I want to configure AD FS so that when my users log into their Microsoft 365 personal account, they display CHUC Corporation (what I have configured for federations)
How can I configure the AD FS federation service so that avatars of users synchronized with Azure AD Connect are displayed and Windows applications are automatically logged in?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 35%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Кирилл Евгеньевич
0
Reputation points
Good day! Given:
A server running Windows Server 2022 Datacenter, domain: chuc218.ru
Is it necessary to: configure the AD Federation Service (AD FS) so that avatars of users synchronized with Azure AD Connect are displayed on client PCs running Windows 10 and there is an automatic login to Windows applications, for example, Microsoft Edge? Because it's critically important to me.
How to do it? I've already tried all the options, nothing helps.
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Microsoft Security | Active Directory Federation Services
Microsoft Security | Active Directory Federation Services
Federated identity management using Active Directory Federation Services
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
2 answers
Sort by: Most helpful
-
Raja Pothuraju 47,165 Reputation points Microsoft External Staff Moderator2024-09-26T20:00:19.99+00:00 Hello @Кирилл Евгеньевич,
Thank you for posting your query on Microsoft Q&A.
Based on your description, I see that you are using Windows Server 2022 Datacenter with the domain chuc218.ru and are looking for an SSO experience where users can log into applications without needing to enter their username and password. To achieve this, you do not need to set up an ADFS environment. You can enable SSO on Windows 10 devices by enrolling them with Microsoft Entra. Since you already have Microsoft Entra Connect and are syncing users from on-premises to the cloud, you can enroll the devices as either Microsoft Entra Joined or Microsoft Entra Hybrid Joined.
If your Windows 10 devices are domain-joined, you can follow the Microsoft documentation to configure Microsoft Entra Hybrid Join:
Configure Microsoft Entra hybrid join
If the devices are not domain-joined, you can easily make them Microsoft Entra Joined by following the guide below:
How to join a Windows device to Entra ID
I hope this information is helpful. Please feel free to reach out if you have any further questions.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Thanks,
Raja Pothuraju.-
Кирилл Евгеньевич 0 Reputation points
2024-09-27T16:44:20.57+00:00 Thanks! Thanks! But all the same, I want to configure AD FS so that when my users log into their Microsoft 365 personal account, they display CHUC Corporation (what I have configured for federations)
-
Raja Pothuraju 47,165 Reputation points Microsoft External Staff Moderator
2024-10-01T21:32:57.11+00:00 Hello @Кирилл Евгеньевич,
I see you are trying to configure ADFS farm on your environment. If that is the case, please refer the below documents to configure ADFS farm on your Windows server.
https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/ad-fs-deployment
Thanks,
Raja Pothuraju. -
Raja Pothuraju 47,165 Reputation points Microsoft External Staff Moderator
2024-10-05T00:57:55.77+00:00 Hello @Кирилл Евгеньевич,
Following up to see if the below suggestion was helpful. And, if you have any further query do let us know.
Sign in to comment -