cancel
Showing results for 
Search instead for 
Did you mean: 

Azure AD SAML and Pre-desktop login

SOLVED
ItsMe
Visitor

Azure AD SAML and Pre-desktop login

Hi,

 

Today we have Machine-Then-User-at-Credprov enabled with regular AD user lookup. We want to move the user auth part to Azure AD with MFA.

 

I've managed to get SAML user auth via Azure AD working with embedded browser in the Pulse client within a Windows session. But not having any luck with pre-desktop login.

 

When logging in using the full email address, the embedded browser opens, but its completely blank. It disappears after a few seconds and I'm back at the Windows login screen. No connection attempt is logged in Pulse as far as I can see, and no auth attempt in Azure.

The machine auth has completed and I can see it has gotten an IP from Pulse, it disconnects when its trying to do the user auth.

 

Is pre-desktop auth supported with SAML against Azure AD at all?

 

Any ideas?

1 ACCEPTED SOLUTION

Accepted Solutions
r@yElr3y
Moderator

Re: Azure AD SAML and Pre-desktop login

@ItsMe I don't think it is supported. CredProv type connection will attempt to do SSO with the provided windows credentials and I don't think it can be done over a embedded browser session (browser framework) as there will be web content that need to be rendered (provided by SAML IDP).

PCS Expert
Pulse Connect Secure Certified Expert

View solution in original post

1 REPLY 1
r@yElr3y
Moderator

Re: Azure AD SAML and Pre-desktop login

@ItsMe I don't think it is supported. CredProv type connection will attempt to do SSO with the provided windows credentials and I don't think it can be done over a embedded browser session (browser framework) as there will be web content that need to be rendered (provided by SAML IDP).

PCS Expert
Pulse Connect Secure Certified Expert

View solution in original post