Being Prompted for Username/Password After Office 365 ADFS is Deployed?

Posted on Updated on

Problem

When your administrator deploys Active Directory Federation Services (ADFS) for use in Office 365, you were told that you would no longer need to provide separate username’s and passwords, as your Active Directory credentials (username/password) can be used instead.  However when you attempt to access OWA, SharePoint or other online services, you are prompted to enter your username and password, potentially multiple times, such as when accessing the Microsoft Online Portal (MOP) [enter UPN, get redirected to ADFS and enter username/password].

Reason

This is due to your Internet Explorer not having the ADFS endpoint, such as sts.contoso.com, added to the Intranet Security Zone setting.  IE sees sts.contoso.com as an Internet address, falling into the Internet security zone, which does not automatically release/send username/password or the logged on user.

Resolution

To resolve this issue you must add your ADFS endpoint into this IE Intranet Security Zone location.

Internet Explorer

  1. Tools
  2. Internet Options
  3. Security
  4. Local Intranet –> Sites
  5. Advanced
  6. Add this website to the listhttps://*.contoso.com
  7. OK all the way out of this IE setting

Test

  1. Close all Internet Explorer browsers
  2. Login to the Office 365 Online Portal (MOP): https://portal.microsoftonline.com
  3. Enter your login User Principal Name (UPN) and notice that you are not able to enter password, instead click the link to login using ADFS

At this point, your browser is redirected to your local ADFS endpoint for Active Directory authentication.  With the IE setting in place, your machine logged in credentials are passed to ADFS, you are authenticated and redirected back to the Online Portal (MOP) and granted access!

One thought on “Being Prompted for Username/Password After Office 365 ADFS is Deployed?

    testing said:
    July 2, 2014 at 7:46 pm

    This is a really good tip particularly to those fresh to the blogosphere.
    Simple but very accurate info… Many thanks
    for sharing this one. A must read article!

Whatcha thinkin?

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s