I have solved the problem.
In client's Internet Options, I added the AD FS host to the list of local sites. This is rather strange, as the check box to add all otherwise not listed sites is already checked.
In server's AD FS Options, I added =~Windows\s*NT.*Chrome
to WIASupportedUserAgents
using Set-ADFSProperties
. This is pretty strange, as apparently there is a typo in the original list of Windows Server 2022. The defaults should contain =~Windows\s*NT.*Edg.
since Windows 2016 according to the document found at https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-ad-fs-browser-wia (so it matches both =~Windows\s*NT.*Edg
and =~Windows\s*NT.*Edge
), but actually the list only contains =~Windows\s*NT.*Edge
. As latest Edge reports as both, Chrome
and Edg
, the original RegEx does not match. I think the difference between the actual list and the list in the documentation proofs that this is a bug in latest Windows Server 2022.