This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 38%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
ADFS with web application proxy. We have remote users only, no vpn. Azure AD Join works for remote devices, but users can't sign into the device afterwards. No azure ad connect server.
We use AD and ADFS/WAP primarily for signing into 365 for onsite applications. We have RDS servers onsite for SSO to 365. works great.
REMOTE Users/Devices.
Users with devices outside of the network (not joined to corp. domain) , trying to do azure domain join works, but can't sign in. Is there something more we need to do?
The device shows up in the Devices area in Azure AD.
The client shows in the logs: 1088 wstrust response error: failedauthentication: msis7068 access denied"