I'm having a bit of an odd experience that I'm hoping someone can shed some light on. In my demo environment I'm using DirSync and ADFS 2012 R2 with the same directory across Azure, O365 and Intune.
All was fine until I started playing with Azure AD Premium features, now whenever I try and access any Intune site (account... manage... portal...) the ADFS login form just refreshes with blank fields, whilst access to O365 and Azure is unchanged. Removing
the federation and relying on Azure AD works fine. An arbitrary rebuild of ADFS resolved the issue on Friday, now it's back.
When I say "playing with the Azure AD Premium features" I enabled users for password reset, enabled device registration and turned it back off without making any of the on-prem changes (I think this is the culprit), and I also enabled group management.
Testing has shown:
- The ADFS server issues a security token and O365 and Azure accept these for SSO auth.
- The Intune service appears not to accept this security token.
- The Remote Connectivity Analyser tests are successful.
Has anyone come across this?
↧
ADFS Integration with Intune Portal
↧