Edge browser sign in for Hybrid AD joined devices/users

Question

Hi,

We have all of our devices as Hybrid AD Joined devices, and our users are synced from on prem to Azure AD.
We are trying to configure Microsoft Edge to sign in automatically with the users' Windows/Azure AD credentials, but cannot get it working.

Could someone advise how to force browser sign in and have it be done automatically for Hybrid users?

Many thanks
James

Answer 1

This has nothing to do with Seamless Sign-On or ADFS. If you are using Edge Chromium in a hybrid joined scenario, you will get SSO automatically.

Microsoft says:
If the device is hybrid/AAD-J: Available on Win10, down-level Windows, and corresponding server versions. The user gets automatically signed in with their Azure AD account.

Source: https://learn.microsoft.com/en-us/deployedge/microsoft-edge-security-identity

Check if your hybrid join setup works by using dsregcmd.

https://learn.microsoft.com/en-us/azure/active-directory/devices/troubleshoot-device-dsregcmd

Answer 2

Hi James,

Seamless SSO should work with Microsoft Edge, but there are some limitations. For example, it doesn't work with Windows 8,
Windows Server 2012 R2, or Mac OS X. Microsoft Edge legacy also is no longer supported.

The full list of limitations is noted here: https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sso

If none of those limitations apply to you, I would recommend going through the Quick Start steps if you haven't already. https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sso-quick-start