SanjayD.80117 (Customer) asked a question.
SAML for Outlook and Teams desktop applications
I have searched this community for an issue I am facing but didn't see a resolution that has worked or any follow ups indicating that issue was fixed.
I have switched SSO method from SWA to WS-Federation for Office 365 application. All online apps in O365 were accessible through SWA. All of my users prefer using desktop applications for Office. On switching to ws-fed, users don't get the Okta authentication prompts. The applications that need MFA more importantly than others in Office suite are Outlook and Teams.
Can someone please point me in the right direction? I have covered most of the articles in Okta, also reached out to Support with limited help.
Thanks
I suggest you review your Okta system logs to see which sign-on policies/rules are coming into play in your tests and make sure you have them configured as you would expect. I don't know how MFA prompts for desktops apps work and if you might perhaps have agentless sso configured that might somehow impact authentication flow behavior. Not something I have much experience with but hopefully something here will help with your next step forward.
These are probably articles you have viewed before but I'm providing just in case.
Thanks for the info and response, Matthew. Users with desktop applications were expected to see the same behavior as they would when they access web-based applications. We are currently using IWA agents.
I did manage to get authentication for desktop apps to work. I had to revoke token and change the refresh interval for all users on the MSFT Azure side.