Persistent browser session issues with Chrome

Question

Persistent browser session issues with Chrome

André Borgeld 431

Hi everyone

I have 2 Enterprise apps with SSO installed and to prevent MFA trigger everytime a user logs on I have enabled Persistent browser session.
I want MFA to sustain a higher level of security.

Now in Edge there is no problem. Persistent browser session works fine there. The users gets a one time MFA challenge and then can work on his/her session the next day when he or she logs on.
Only the Chrome user has to verify MFA every time he/she logs on.

I've enabled third party cookies.
Whitelisted all the Azure pages including: https://autologon.microsoftazuread-sso.com
Roaming profile and user policy Chrome.
Installed the Windows 10 user account extension: https://chrome.google.com/webstore/detail/windows-10-accounts/ppnbnpeolgkicgegkbkbjmhlideopiji

I've seem to run out of options. Am i overlooking someting in the profile of the user that's resetting a session state?
Chrome does know my idenity, but doesn't know that I have an open session.

Many thanks for your help.

Kind regards,

Andre

amon 126 Reputation points Microsoft Employee

2021-02-01T15:45:48.657+00:00

Some things to check:
Did you check the sign in report? Would be interesting to see what type of login is indicated there (under the session control column) for Chrome vs Edge.
Is the session token present in the browser storage?
Do you have a redirect that might be interfering with the session?
André Borgeld 431 Reputation points

2021-02-01T16:35:04.75+00:00

@amon
The site starts is our Intranet page and it directory start authentication.
So no redirect.

The sign in report comes with succes because it gives you an MFA offer which you approve, you see that in the log.
When you don't approve it comes with an intterupt. So that part is working.
Only the saved session state a next day or when you log off is gone. In Edge your still logged on, on that persistent session.
In Chrome you need to approve MFA.
BIJUMON 10 Reputation points

2023-02-08T04:17:19.19+00:00

has this issue resolved ? if yes, please share me the work around . we have similar issue with chrome
BIJUMON 10 Reputation points

2023-02-08T18:35:36.4866667+00:00

Has this issue resolved ? . we have similar issue . if resolved , please let me know what is the workaround ?
Joao Pedro 0 Reputation points

2023-11-21T13:36:25.1766667+00:00

Is there any solution for this issue? I have the same problem here.

3 answers

Your answer

amon 126 Reputation points Microsoft Employee

2021-02-01T15:45:48.657+00:00

Some things to check:
Did you check the sign in report? Would be interesting to see what type of login is indicated there (under the session control column) for Chrome vs Edge.
Is the session token present in the browser storage?
Do you have a redirect that might be interfering with the session?
André Borgeld 431 Reputation points

2021-02-01T16:35:04.75+00:00

@amon
The site starts is our Intranet page and it directory start authentication.
So no redirect.

The sign in report comes with succes because it gives you an MFA offer which you approve, you see that in the log.
When you don't approve it comes with an intterupt. So that part is working.
Only the saved session state a next day or when you log off is gone. In Edge your still logged on, on that persistent session.
In Chrome you need to approve MFA.
BIJUMON 10 Reputation points

2023-02-08T04:17:19.19+00:00

has this issue resolved ? if yes, please share me the work around . we have similar issue with chrome
BIJUMON 10 Reputation points

2023-02-08T18:35:36.4866667+00:00

Has this issue resolved ? . we have similar issue . if resolved , please let me know what is the workaround ?
Joao Pedro 0 Reputation points

2023-11-21T13:36:25.1766667+00:00

Is there any solution for this issue? I have the same problem here.

Answer 1

It looks like you have tried a number of steps to resolve this issue with Chrome not maintaining a persistent browser session.

Have you tried clearing the browser cache and cookies to see if that resolves the issue? Another suggestion would be to see if there are any browser extensions that may be conflicting with the persistent session and disabling them to see if that resolves the issue.

It may also be helpful to check the browser settings to see if there is an option to maintain persistent sessions or keep the browser logged in.

Lastly, it may be worth reaching out to the support team of the enterprise apps that you are using with SSO to see if they have any specific suggestions or troubleshooting steps to resolve the issue.

Answer 2

André Borgeld 431

@BIJUMON @Khurram Rahim It places cookies with session state so you want to keep them.

In my case the Azure Hybrid Join is works fine. Because it trust the device (Conditional Access) it logs you on even in Chrome.

Or another solution

I've researched it and tested it, it is a while a go. What you need to do is allow third party cookies and cookies. Play with it a little, you can add url's too. I've researched it and that worked for machines who had less strict policies.

Answer 3

Joao Pedro 0

the same here... any solution?

André Borgeld 431 Reputation points

2024-01-22T14:09:02.6566667+00:00

Joao Pedro You have to look at your cookies settings in Chrome and if there is a Group policy

Share via

Persistent browser session issues with Chrome

3 answers

Your answer