Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
This article can help you resolve a problem in which you receive Code 403 (Forbidden) when using Azure Seamless Single Sign-On on Windows 10.
Original product version: Microsoft Entra ID, Windows 10
Original KB number: 4135083
Symptoms
The Azure Seamless Single Sign-On authentication does not work after you upgrade to Windows 10. When this problem occurs, you may receive the following error message:
Integrated Windows Authentication failed with status code 403 (Forbidden).
Resolution
To resolve this problem, follow these steps:
Check the following Group Policy object, and make sure that it is set to not defined:
Network security: Configure encryption types allowed for Kerberos
If you update the Group Policy setting, run
gpupdate /forceto push the changes to the devices.Start Registry Editor, and browse to the following subkey:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\kerberos\parametersDelete the
supportedencryptiontypesDWORD entry if it exists.Restart the device.
Contact us for help
If you have questions or need help, create a support request, or ask Azure community support. You can also submit product feedback to Azure feedback community.