n2tmz (n2tmz) asked a question.
Good Afternoon Everyone,
We have now switched over to Ws-federation in O365 with Okta with Azure AD connect in place.
We have had a few users report issues with desktop applications and Single Sign On. Microsoft desktop applications (Namely Outlook and Teams) have an error logging in and it isnt until you delete the Local appdata of teams that it allows for you to reauthenticate with SSO and log back in to the application (teams). Deleting Outlook app data does not work as their must be another folder holding this information. Outlook says 'needs password' and when you click on Type password it pops an Okta authentication window but it instantly vanishes and you can no longer do anything. For profiles that have been reset when you try to open Outlook it says: "Outlook cannot log on. Verify you are connected to the network using the proper server..etc"
The only way we found we could get back to being able to load their profile is by recreating their FSLogix profile container and starting again completely; not even a new outlook profile would authenticate.
Web applications work / The users can login to okta fine; its purely web applications that are having issues.
Has anyone experienced this? Is there a possible solution out there?
Hi Daniel,
Thank you for reaching out to Okta Support, my name is Stefan.Because this behavior only occurs on rich clients (Outlook and Teams) we would recommend that you delete the user's profile for these apps on their machine Credential Manager . Details on how to access this can be found on this Microsoft Article :
https://support.microsoft.com/en-us/windows/accessing-credential-manager-1b5c916a-6a16-889f-8581-fc16e8165ac0
I was also able to find another Microsoft Article that might help you reset their app state :
https://docs.microsoft.com/en-us/office/troubleshoot/activation/reset-office-365-proplus-activation-state
For further investigation we would recommend that you Open a ticket with us.
Thank You,
Stefan Boca
Technical Support Engineer