반품
-
제목
User is required to type the UPN address when authenticating with Azure federation -
설명
When using an external federation to Azure, if the option for "ForceAsDefault" is True and "Require User to Always Authenticate" is enabled then the user would have to enter in their UPN every time. -
원인
When "ForceAsDefault" is True, Safeguard automatically redirects the user to the IdP login page (which is Azure login page this case) without actually knowing the login username, and therefore the login_hint is empty. -
해결 방안
STATUS:
This is an expected behavior.
WORKAROUND:
if the intention is to have the user authenticate to SPP with a seamless login without having to enter in their UPN, then you could configure an Identity Provider Initiated logon via the Azure portal. This way the user would click on the SPP App, then be redirected to SPP which would already know the UPN, and authenticate the user into SPP seamlessly.