Shared Computer support Office365 and Citrix with AD PTA
One of the issues that has been with delivering Office 365 on a non-persistent Citrix environment is how to manage licensing and activation. Previously we needed to have a ADFS infrastructure in place with Group Policy to allow “Automatic Activation with federated credentials” to allow for seamless activation without the end-user to need to do enter any type of information. This was needed because when a user logs onto a XenApp host and starts Office they will need to login with their Azure AD credential. This process would generate a license token that was bound to that machine the user was logged into. If the user then switched to another virtual machine the next day they would need to repeat the process there.During Ignite, Microsoft announced that Azure AD Connect PTA (pass-trough authentication) was now generally available. This provides seamless sso authentication against Office365 without then need to setup an ADFS infrastructure. This makes a lot of sense for small businesses who doesn’t want to have the complexity with ADFS just to get automatic activation and or authentication for Office365.
However AD Connect PTA had one issue for Office365 was that:
- It does not work together with “Automatic Activation with federated credentials” policy
- The user is required to type in their UPN to get authenticated.
This makes the authentication process a bit simpler but the license token was still machine bound and therefore a user would need to repeat the process the next day.
Read the entire article here, Shared Computer support Office365 and Citrix with AD PTA
Via Marius Sandbu.